Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/UFOI4q5dUsdrZ_UwHux9Z9kFwnw.roa
File: UFOI4q5dUsdrZ_UwHux9Z9kFwnw.roa (raw, json)
Hash identifier: rhPACmzqxakCdhmP3blpIF3o0CiUKUofW4+l/eJInUQ=
Subject key identifier: 50:53:88:E2:AE:5D:52:C7:6B:67:F5:30:1E:EC:7D:67:D9:05:C2:7C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/UFOI4q5dUsdrZ_UwHux9Z9kFwnw.roa
Signing time: Thu 15 Sep 2022 02:42:26 +0000
ROA not before: Thu 15 Sep 2022 02:42:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=505388E2AE5D52C76B67F5301EEC7D67D905C27C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:95:e3:4d:ae:89:52:a8:12:0e:cf:a3:4f:20:
25:9e:39:36:98:e5:7d:26:bf:70:b0:32:12:8e:5b:
03:3c:a4:05:cc:60:2a:ba:72:52:5d:e3:60:ff:59:
97:0f:2a:40:4b:21:f1:a7:2f:c1:47:42:4a:48:f9:
ad:b8:0f:95:6b:93:52:37:37:45:83:99:0a:ab:96:
a0:02:af:cf:41:9f:02:f1:4f:6b:27:d6:21:f4:d0:
cb:1c:0e:c5:b2:19:cd:cc:24:d9:fa:12:82:0a:6f:
21:92:25:ec:f7:67:af:7a:21:7e:bb:e4:05:72:8c:
e6:fc:91:52:02:43:f9:8c:ba:73:81:7e:20:d2:50:
2f:49:6b:be:65:ea:00:11:09:f1:3d:69:e1:81:d4:
0e:24:98:4a:eb:76:a6:77:88:b3:a2:8b:da:07:ad:
bc:cc:10:36:82:d3:1f:6c:ca:ba:79:ac:48:9b:41:
56:9d:9d:0d:45:59:54:05:97:44:4c:0b:d4:5d:9c:
2a:f1:bd:4b:a5:0d:ca:c9:9c:5d:e4:3f:14:6d:e2:
9d:bb:fe:a6:4e:2e:ce:cb:a0:b8:ad:2b:84:03:d1:
2b:37:d5:e0:56:41:a2:c5:48:69:82:3c:43:4b:65:
5d:28:f7:33:63:90:94:49:aa:b5:8e:16:68:fc:f6:
58:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:53:88:E2:AE:5D:52:C7:6B:67:F5:30:1E:EC:7D:67:D9:05:C2:7C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/UFOI4q5dUsdrZ_UwHux9Z9kFwnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.36.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:ab:c0:a2:12:14:1c:bd:db:bd:41:0b:0e:d9:47:34:a1:b8:
d2:31:f4:4d:44:ab:50:3e:e1:32:b0:c6:4a:7c:68:d0:ac:4e:
18:88:ed:9b:78:93:a6:6f:90:a8:27:c1:d9:ab:44:35:87:3f:
dd:a7:b2:d0:cd:a3:44:50:de:94:f1:b6:f1:75:3b:33:7d:b0:
21:44:0c:80:0f:7b:c3:dd:fc:aa:78:66:89:cc:fc:ac:0c:35:
74:19:3d:74:5d:13:1e:33:dc:5e:17:f5:67:4f:1b:1e:4c:a9:
9f:65:cd:87:de:8b:d4:48:97:1b:18:c5:fa:81:7e:bf:57:81:
f0:ab:a1:d3:de:38:5c:80:c2:1e:17:7a:64:62:c5:d6:3f:26:
f4:65:3c:1f:91:90:b0:be:d5:de:7b:65:95:7d:a1:88:0c:1c:
17:b9:64:0d:0d:21:df:35:dd:73:bd:ed:91:8a:a2:65:1e:fa:
4f:d4:fc:0b:aa:1f:19:83:fa:1f:94:95:04:a2:ff:51:95:0f:
60:fc:36:f0:1e:bf:77:aa:10:b4:6d:6b:fb:16:c3:e0:2e:ba:
22:9e:f7:3c:47:6a:1f:47:62:0d:35:21:b6:9f:17:35:64:51:
d9:44:f1:69:01:f6:94:29:3a:2c:83:0f:74:c8:18:36:86:1e:
7a:a1:b4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org