Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Sg0CWLAB_6kRGnMj5jnryaKzF-M.roa
File: Sg0CWLAB_6kRGnMj5jnryaKzF-M.roa (raw, json)
Hash identifier: e5CirLNe2kuOKlfkE2UTYFLGH8T9vG6qoluU4cJnEUs=
Subject key identifier: 4A:0D:02:58:B0:01:FF:A9:11:1A:73:23:E6:39:EB:C9:A2:B3:17:E3
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Sg0CWLAB_6kRGnMj5jnryaKzF-M.roa
Signing time: Thu 15 Sep 2022 02:42:25 +0000
ROA not before: Thu 15 Sep 2022 02:42:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4A0D0258B001FFA9111A7323E639EBC9A2B317E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:88:10:d1:8a:b7:36:40:60:81:31:6b:ce:
f7:82:96:df:a5:99:5f:d9:59:ea:0c:cd:59:3d:ed:
0f:c1:bd:84:0a:6d:5f:72:95:9b:56:71:2e:36:7e:
be:6a:c1:7c:50:01:d7:6d:b2:6a:f0:aa:b6:1e:82:
aa:e3:ae:f0:7c:a4:1a:81:b0:be:42:c3:b4:15:26:
c5:d9:97:78:22:3e:0c:46:78:03:72:d6:c1:74:1e:
a4:e7:95:28:58:4b:ed:97:c0:bc:39:59:a7:3d:5e:
19:30:57:ef:45:70:88:2d:99:5a:9b:35:28:ba:83:
88:fc:cb:0b:34:26:11:6e:e5:22:fc:e3:8d:7e:67:
80:cc:b7:19:b5:94:ff:69:25:18:91:ab:0f:b5:37:
6c:01:88:5b:0f:3a:e6:a3:09:52:83:cd:91:9d:9d:
22:55:e2:5b:72:d7:a4:85:80:07:74:bd:b7:48:5d:
5c:f1:58:ac:32:74:7b:f3:ec:c3:74:dc:22:3f:cc:
b8:70:cc:31:f7:e5:8a:88:aa:83:8b:ad:e9:b9:c9:
7e:c7:9e:a6:1e:91:20:ad:9b:cf:40:00:fa:1f:7a:
b3:9f:55:bd:5f:5e:65:19:bd:a5:a7:50:60:34:ea:
65:93:d1:9a:4e:99:64:09:dc:88:77:4a:54:68:b9:
fd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0D:02:58:B0:01:FF:A9:11:1A:73:23:E6:39:EB:C9:A2:B3:17:E3
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Sg0CWLAB_6kRGnMj5jnryaKzF-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.37.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:96:da:64:b7:d3:4e:05:b8:83:71:5a:97:d5:ae:6b:27:8a:
18:04:24:7d:1d:09:c8:19:f3:06:ed:8f:a7:bd:4e:ba:ec:68:
fa:4f:b3:f4:e8:ea:10:6d:ca:dc:f2:d7:80:c7:1d:61:d1:40:
e3:64:e6:66:91:ff:f5:59:4c:ac:97:f1:b5:35:07:9e:43:6a:
e1:65:37:f4:8a:a6:9c:39:0a:36:6d:af:82:ca:96:a5:25:89:
3f:5a:57:b4:2a:96:e4:6b:19:e4:8b:39:c2:0e:26:2a:d4:39:
b3:85:46:b3:d9:39:9f:9e:05:c9:d8:dd:b7:9a:d6:1b:6a:30:
c2:ff:7b:61:1e:55:4d:c4:ed:0c:3b:ee:07:c1:b7:48:60:6a:
23:0b:6b:35:4a:b4:22:88:4f:88:5e:ec:27:7b:60:f6:1f:ea:
6d:9f:6a:f4:20:d6:66:cd:f1:87:e4:85:12:a1:97:c9:b3:df:
1e:60:03:f8:5b:a1:1b:23:b2:16:ca:f1:54:5f:a2:07:34:ca:
a6:00:e6:87:31:69:a1:e0:b0:e6:2f:80:60:8f:d7:fb:ff:87:
81:27:38:fd:9a:7e:d6:55:bf:68:29:33:a9:32:42:42:6a:44:
76:7f:be:08:5a:47:2c:0d:7c:c6:3e:92:14:9c:57:5a:a7:06:
ad:a9:bf:6d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDRBMEQwMjU4QjAwMUZG
QTkxMTFBNzMyM0U2MzlFQkM5QTJCMzE3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3A4gQ0Yq3NkBggTFrzveClt+lmV/ZWeoMzVk97Q/BvYQKbV9y
lZtWcS42fr5qwXxQAddtsmrwqrYegqrjrvB8pBqBsL5Cw7QVJsXZl3giPgxGeANy
1sF0HqTnlShYS+2XwLw5Wac9XhkwV+9FcIgtmVqbNSi6g4j8yws0JhFu5SL8441+
Z4DMtxm1lP9pJRiRqw+1N2wBiFsPOuajCVKDzZGdnSJV4lty16SFgAd0vbdIXVzx
WKwydHvz7MN03CI/zLhwzDH35YqIqoOLrem5yX7HnqYekSCtm89AAPoferOfVb1f
XmUZvaWnUGA06mWT0ZpOmWQJ3Ih3SlRouf31AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUSg0CWLAB/6kRGnMj5jnryaKzF+MwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vU2cwQ1dMQUJfNmtSR25NajVqbnJ5
YUt6Ri1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bJTAN
BgkqhkiG9w0BAQsFAAOCAQEAbJbaZLfTTgW4g3Fal9WuayeKGAQkfR0JyBnzBu2P
p71Ouuxo+k+z9OjqEG3K3PLXgMcdYdFA42TmZpH/9VlMrJfxtTUHnkNq4WU39Iqm
nDkKNm2vgsqWpSWJP1pXtCqW5GsZ5Is5wg4mKtQ5s4VGs9k5n54Fydjdt5rWG2ow
wv97YR5VTcTtDDvuB8G3SGBqIwtrNUq0IohPiF7sJ3tg9h/qbZ9q9CDWZs3xh+SF
EqGXybPfHmAD+FuhGyOyFsrxVF+iBzTKpgDmhzFpoeCw5i+AYI/X+/+HgSc4/Zp+
1lW/aCkzqTJCQmpEdn++CFpHLA18xj6SFJxXWqcGram/bQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org