Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Qd8--2XtIxD7ud9B-HYiYhtLhz0.roa
File: Qd8--2XtIxD7ud9B-HYiYhtLhz0.roa (raw, json)
Hash identifier: UimB3OvyzBnvoZm4QDnb/gA7pqnO8eUQJXgIZSSm4Sk=
Subject key identifier: 41:DF:3E:FB:65:ED:23:10:FB:B9:DF:41:F8:76:22:62:1B:4B:87:3D
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0985
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Qd8--2XtIxD7ud9B-HYiYhtLhz0.roa
Signing time: Sun 07 Feb 2021 13:09:29 +0000
ROA not before: Sun 07 Feb 2021 13:09:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2437 (0x985)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=41DF3EFB65ED2310FBB9DF41F87622621B4B873D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:74:b8:68:d4:0d:2f:98:3a:d1:10:ad:d5:83:
01:ec:b7:4f:4d:18:a6:6f:9f:b2:18:43:05:b1:5a:
23:89:51:d5:27:7d:1c:fd:7d:e1:1c:68:af:ef:a0:
36:2e:26:34:ad:fc:38:1e:3f:ba:d6:ed:5f:d5:69:
e0:d6:07:8a:db:f7:04:9b:94:ad:6e:a1:9e:eb:12:
d5:53:72:b5:68:7f:1b:41:cf:80:ad:2a:9d:b0:47:
b6:40:9f:05:aa:4b:0f:e6:86:b6:72:16:a8:6b:e7:
38:79:84:25:92:03:46:f3:d0:23:41:5b:46:8a:37:
63:b9:1e:63:14:ab:40:f3:d4:71:84:8c:02:a9:17:
23:94:a6:f6:38:5e:98:48:bf:32:ff:a6:9b:d6:f3:
a9:4e:f3:01:6a:e1:dd:47:b0:d8:af:ed:85:b9:ff:
0f:0a:95:1c:25:20:19:cf:91:ee:69:54:a9:66:a6:
34:a8:78:2f:34:58:9b:50:a1:6e:44:a2:ce:3f:66:
9c:47:21:bd:76:4f:b1:7a:5e:15:3e:27:db:71:63:
e9:8c:c8:c1:57:03:cc:4a:37:9c:44:9c:7c:c9:71:
04:b6:41:02:91:4c:28:92:b4:52:7b:29:4f:b1:9a:
42:30:3d:a0:2c:b8:ca:f8:c2:9e:f6:5d:d7:7b:f8:
76:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DF:3E:FB:65:ED:23:10:FB:B9:DF:41:F8:76:22:62:1B:4B:87:3D
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Qd8--2XtIxD7ud9B-HYiYhtLhz0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.132.0/24
Signature Algorithm: sha256WithRSAEncryption
34:a0:6b:d6:cc:67:75:ca:b8:1f:9e:8d:f2:a9:24:57:01:ff:
1b:60:e3:02:38:fd:5e:a7:a2:9a:05:d2:57:27:a0:f4:76:97:
c5:30:2d:6c:88:26:d1:bf:22:46:5b:ce:36:2e:65:bb:b3:9f:
cf:bc:b6:af:9b:f1:7c:92:b0:27:8d:99:cc:f4:d8:6b:32:1e:
05:02:9f:96:08:6c:a3:37:38:1e:5a:c7:af:4a:34:0f:d6:4f:
ed:56:de:e6:7e:72:41:cf:77:4b:2d:d3:a3:9e:9f:85:21:8b:
4c:d2:49:14:69:d4:82:2e:f2:d2:ae:fb:33:d5:87:13:c7:e2:
24:4d:44:10:27:ff:8c:5d:51:a2:98:2f:df:9b:ec:0b:8d:3b:
83:1f:03:0d:ed:a0:3d:5f:28:01:ec:78:c1:85:ea:c9:96:e9:
94:c5:38:87:89:1e:5b:1c:1c:b4:07:c2:33:6c:6b:ea:ef:b3:
5d:93:11:b7:a9:c2:6a:6f:b9:dc:81:ea:9b:ee:35:27:88:b1:
55:cb:ff:9d:3a:e0:f4:0f:eb:26:15:f3:41:bd:38:63:0a:55:
2f:81:bd:c9:ec:13:02:a5:be:ff:21:ae:b4:85:9a:f2:4d:42:
f1:9e:ac:0d:4f:3e:69:46:29:85:a1:05:a9:51:77:55:94:fb:
76:80:d6:d5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQxREYzRUZCNjVFRDIz
MTBGQkI5REY0MUY4NzYyMjYyMUI0Qjg3M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEdLho1A0vmDrREK3VgwHst09NGKZvn7IYQwWxWiOJUdUnfRz9
feEcaK/voDYuJjSt/DgeP7rW7V/VaeDWB4rb9wSblK1uoZ7rEtVTcrVofxtBz4Ct
Kp2wR7ZAnwWqSw/mhrZyFqhr5zh5hCWSA0bz0CNBW0aKN2O5HmMUq0Dz1HGEjAKp
FyOUpvY4XphIvzL/ppvW86lO8wFq4d1HsNiv7YW5/w8KlRwlIBnPke5pVKlmpjSo
eC80WJtQoW5Eos4/ZpxHIb12T7F6XhU+J9txY+mMyMFXA8xKN5xEnHzJcQS2QQKR
TCiStFJ7KU+xmkIwPaAsuMr4wp72Xdd7+HZDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUQd8++2XtIxD7ud9B+HYiYhtLhz0wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vUWQ4LS0yWHRJeEQ3dWQ5Qi1IWWlZ
aHRMaHowLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWhDAN
BgkqhkiG9w0BAQsFAAOCAQEANKBr1sxndcq4H56N8qkkVwH/G2DjAjj9XqeimgXS
Vyeg9HaXxTAtbIgm0b8iRlvONi5lu7Ofz7y2r5vxfJKwJ42ZzPTYazIeBQKflghs
ozc4HlrHr0o0D9ZP7Vbe5n5yQc93Sy3To56fhSGLTNJJFGnUgi7y0q77M9WHE8fi
JE1EECf/jF1Ropgv35vsC407gx8DDe2gPV8oAex4wYXqyZbplMU4h4keWxwctAfC
M2xr6u+zXZMRt6nCam+53IHqm+41J4ixVcv/nTrg9A/rJhXzQb04YwpVL4G9yewT
AqW+/yGutIWa8k1C8Z6sDU8+aUYphaEFqVF3VZT7doDW1Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org