Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Rc3OZO3lMiswpaOgmur5REFIS_g.roa
File: Rc3OZO3lMiswpaOgmur5REFIS_g.roa (raw, json)
Hash identifier: soRQAvYVu7wtBVgzLM1lIkPmAPZzDVnqsD1LJULlLZQ=
Subject key identifier: 45:CD:CE:64:ED:E5:32:2B:30:A5:A3:A0:9A:EA:F9:44:41:48:4B:F8
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0981
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Rc3OZO3lMiswpaOgmur5REFIS_g.roa
Signing time: Sun 07 Feb 2021 13:09:25 +0000
ROA not before: Sun 07 Feb 2021 13:09:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2433 (0x981)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=45CDCE64EDE5322B30A5A3A09AEAF94441484BF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:17:b4:49:2b:fc:f1:74:f0:9a:f3:09:0b:f1:
07:9b:02:7d:ee:e0:41:d4:9b:64:8c:7c:ed:36:0f:
db:41:a2:25:70:a6:92:b5:37:cf:74:b0:7b:79:01:
5c:05:43:29:c9:20:b3:83:92:d4:a1:0a:e9:eb:fe:
56:79:d9:03:a4:b1:46:99:9a:12:7d:d7:1f:0d:ff:
49:7e:fd:aa:f4:3b:83:3f:3d:eb:5a:e7:92:b0:b2:
a1:4c:7c:9f:7e:53:3e:91:bb:47:d1:58:9d:e7:50:
6e:4e:ea:b5:f9:03:c3:65:c5:cb:4b:04:3a:7d:85:
2c:d3:2a:2c:25:c4:09:ae:2b:a8:70:6c:2d:89:a3:
4a:86:8e:90:cd:1a:04:90:e8:d6:95:08:8a:31:32:
45:cc:d0:9b:43:b6:d9:2d:46:a7:67:6f:41:a8:a4:
fc:63:2e:4e:0c:52:45:f7:ce:3f:b5:88:55:ee:02:
9c:0b:7d:b1:47:42:53:1a:f0:69:61:16:15:c8:9c:
3b:19:70:88:4f:69:cd:b5:6d:ef:e3:82:55:e3:5d:
99:2e:18:1a:13:7a:2d:9b:10:b7:0d:39:ad:d1:c9:
c5:41:18:8b:5d:49:90:b0:8b:77:b5:89:0f:8f:24:
dd:a4:37:ac:00:70:c7:c4:15:08:88:ee:6b:6a:d4:
f8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CD:CE:64:ED:E5:32:2B:30:A5:A3:A0:9A:EA:F9:44:41:48:4B:F8
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Rc3OZO3lMiswpaOgmur5REFIS_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.130.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:87:6e:eb:91:e4:f4:b1:46:2c:1e:f2:40:42:93:40:f9:35:
85:32:77:36:b6:52:1b:7f:f1:82:6a:49:57:41:a2:8d:8b:b9:
66:5d:73:c9:06:91:4d:ad:59:f0:89:e1:33:c1:83:0b:06:8c:
b4:b9:61:27:50:46:5c:f6:ea:b5:db:b2:4f:07:44:df:98:d7:
4f:16:81:bb:df:1f:0e:38:96:74:14:3e:89:93:32:1e:64:ab:
42:48:7f:18:4c:22:ef:8e:d9:90:97:b1:e5:0e:4d:f7:cb:cc:
26:ec:e9:ee:a8:7b:43:4f:54:65:57:3a:f8:f3:09:44:b2:eb:
d7:b6:c6:95:3f:a5:07:f4:65:cd:6a:6d:22:a0:78:12:d0:b3:
1f:a1:99:20:51:77:63:97:3c:b8:08:4e:30:8e:83:ed:c2:ad:
ad:57:d8:33:5a:89:1a:57:22:4e:2e:3a:92:88:89:8a:97:c9:
bc:4c:0a:cd:24:97:b3:50:95:57:f6:d0:2a:b3:15:78:81:88:
d0:f2:10:c5:76:a7:9e:28:d5:de:ec:3e:f4:fd:de:69:a6:b6:
bd:6f:bf:35:24:c2:a3:67:79:b0:df:d2:25:fa:5c:56:d1:e1:
f7:74:91:36:15:4d:d9:30:a7:a2:dd:b0:2b:85:d8:fa:65:34:
45:36:7b:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org