Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/TlqcHooSujGYcaZzbvt0bYx-6KE.roa
File: TlqcHooSujGYcaZzbvt0bYx-6KE.roa (raw, json)
Hash identifier: 0MDKt3CUaHlJel1Iz5AnkWcPEqhX/1Edg0WdudBXYoI=
Subject key identifier: 4E:5A:9C:1E:8A:12:BA:31:98:71:A6:73:6E:FB:74:6D:8C:7E:E8:A1
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0AAE
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/TlqcHooSujGYcaZzbvt0bYx-6KE.roa
Signing time: Wed 06 Oct 2021 07:16:48 +0000
ROA not before: Wed 06 Oct 2021 07:16:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2734 (0xaae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:16:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4E5A9C1E8A12BA319871A6736EFB746D8C7EE8A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0a:a7:90:a7:9c:37:85:f3:e5:44:bd:ba:d7:
45:1e:b4:4e:33:61:e6:89:c4:8e:f7:89:8a:cf:3a:
15:1e:81:5a:75:91:5d:74:e5:c1:2a:3a:1a:de:cd:
47:47:d5:cb:31:25:83:e9:97:97:ef:e8:91:53:bb:
ec:bd:90:31:89:fd:1d:f4:7a:87:86:4f:e0:62:de:
7b:60:b2:9f:29:cb:50:cd:c9:92:db:61:e6:93:72:
59:c6:7a:ec:00:b8:9a:93:4d:63:93:21:0a:7e:c5:
a1:c6:be:85:58:2f:1a:ec:8b:b4:e4:bb:c1:f1:0b:
59:c6:d4:13:d9:fc:40:09:38:2d:e8:fb:f6:e6:70:
03:c1:bf:e2:74:e0:85:14:f8:3d:67:07:21:3f:ac:
69:b9:34:4b:87:e4:72:2a:c2:3b:c0:c1:e3:14:32:
09:02:8b:32:89:7c:3c:d1:a6:86:1d:5d:24:e8:24:
f4:fe:52:f2:71:d0:e8:13:9a:b9:43:39:d1:dd:db:
35:c6:5e:a9:41:03:90:4e:bf:78:0d:d6:82:9b:10:
49:20:12:14:b9:3c:67:c5:5c:23:10:aa:09:a0:17:
a0:a7:9e:d8:69:63:9c:28:96:dd:cc:dc:ca:db:81:
21:a1:c0:b4:4c:43:65:66:fa:cc:2e:56:a9:82:36:
e1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5A:9C:1E:8A:12:BA:31:98:71:A6:73:6E:FB:74:6D:8C:7E:E8:A1
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/TlqcHooSujGYcaZzbvt0bYx-6KE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.59.0/24
Signature Algorithm: sha256WithRSAEncryption
27:a4:d3:a3:b2:da:19:1b:bd:7a:91:fb:c2:86:ac:dc:69:e4:
54:9d:83:bb:ee:5e:a0:92:03:04:03:1f:b2:7c:aa:ad:af:8b:
0d:b4:6f:07:2d:fb:7a:7c:3d:7d:52:2a:58:18:1a:34:03:d9:
df:40:bc:59:59:99:18:39:56:10:f3:6d:14:b7:99:f9:b5:5f:
92:94:59:9a:06:b3:92:09:48:73:b6:91:c3:ec:08:c2:d8:15:
9b:0d:62:c0:86:71:e1:a0:b4:2e:00:78:d8:b4:aa:04:2a:0a:
5e:8d:f7:b3:eb:43:3c:32:6e:e4:a8:84:de:b1:f8:8b:55:64:
fb:76:0d:de:af:e3:b2:92:a1:5a:d2:2a:fc:02:35:e7:0c:da:
25:70:9e:1f:79:74:8f:88:27:27:c1:00:d3:29:23:60:f3:88:
38:b7:4c:cc:26:2a:5e:64:70:fb:bc:d8:35:56:ca:1e:e0:89:
93:63:a4:f3:ba:59:ec:93:9a:bd:8c:57:0f:94:08:c2:50:ce:
3f:e7:71:1e:93:88:d5:16:8c:78:95:d1:68:75:63:84:cb:95:
37:2c:42:36:74:12:e9:14:a8:d8:7a:42:2a:24:a8:81:80:44:
32:27:96:d0:b2:7f:81:a5:d2:5f:53:25:11:f2:da:0d:df:cc:
e7:57:b7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org