Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/URXxF52F9BXR6ptjFeubVKRySns.roa
File: URXxF52F9BXR6ptjFeubVKRySns.roa (raw, json)
Hash identifier: +gF5GFtImX7CYqkriUlS00ME0wZ7EFW8nEXnnua/48s=
Subject key identifier: 51:15:F1:17:9D:85:F4:15:D1:EA:9B:63:15:EB:9B:54:A4:72:4A:7B
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 096F
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/URXxF52F9BXR6ptjFeubVKRySns.roa
Signing time: Sun 07 Feb 2021 13:09:09 +0000
ROA not before: Sun 07 Feb 2021 13:09:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2415 (0x96f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5115F1179D85F415D1EA9B6315EB9B54A4724A7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:63:6f:c1:3c:81:13:34:dc:ff:e8:04:09:a3:
3e:12:79:76:86:83:20:00:fd:24:b2:fe:b2:1c:96:
99:0f:18:10:e9:a1:cb:7f:62:10:bc:cb:4b:68:31:
15:cc:fd:40:77:4b:6e:2d:8b:fd:74:24:30:1b:dd:
61:2a:ae:4c:4c:bf:8d:18:5e:44:e9:02:8e:9c:ad:
1e:a4:02:a6:f8:f5:bb:99:44:3d:f4:1e:2e:68:70:
fb:80:88:8d:e4:56:7e:e5:a1:b9:12:80:44:40:a5:
a1:61:4d:4e:7e:f5:c8:c4:1a:f2:e6:13:25:50:0b:
cf:82:e9:13:83:b1:a3:c8:29:a9:44:ae:69:b0:37:
41:a4:c5:7d:1a:ab:4b:e2:73:a8:bf:b8:88:a9:9a:
15:e3:0e:51:3f:f3:9d:30:ad:26:2e:46:c3:e6:a0:
19:e1:40:8c:13:32:ed:b2:fc:9b:4a:74:42:56:57:
f3:c0:44:ad:cd:a9:3b:a4:25:c5:a1:20:65:ad:fc:
40:69:29:05:b7:78:31:96:a2:b4:cb:3c:8f:e8:a9:
7d:28:0b:8e:ee:71:76:86:6b:bd:4f:72:1e:9a:3a:
25:40:9f:b6:9c:28:08:8b:3c:3b:92:7f:c1:0e:60:
7e:39:4c:b9:c1:6d:ea:5e:a7:d3:78:13:11:4e:ab:
52:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:15:F1:17:9D:85:F4:15:D1:EA:9B:63:15:EB:9B:54:A4:72:4A:7B
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/URXxF52F9BXR6ptjFeubVKRySns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.43.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e7:00:9c:ce:b2:f5:d3:e5:b2:10:8d:f5:36:bd:4f:0b:b6:
f6:4e:97:a2:9d:f7:e8:f3:0d:6f:9a:02:5f:0c:01:dd:a9:03:
93:5c:5d:e9:b9:9f:24:67:83:57:dd:2f:42:fc:a1:10:3e:48:
67:9b:92:ab:e6:8c:80:80:50:1b:2c:d9:dc:4e:da:9d:2f:3e:
48:86:0f:c9:35:c3:2d:2b:9f:e1:ff:2c:58:04:00:e3:80:03:
af:22:d3:a6:dd:50:a1:81:3d:85:bd:c5:b4:b3:a9:cb:43:74:
4f:4c:20:11:20:bb:06:07:2a:7d:f7:f4:9a:63:0f:ef:f4:bf:
1b:c7:2e:b5:d8:67:be:d0:e8:11:6a:4d:fd:4d:7c:7b:bd:a3:
94:e9:49:81:4c:f8:38:ab:c7:1d:6c:3d:91:ea:43:c6:16:f6:
c4:49:81:dc:fd:5b:8a:f2:be:a9:71:d8:7e:50:e5:37:d5:aa:
b5:21:b0:e7:3e:fe:1d:74:36:bd:2a:49:82:bf:89:1e:93:a6:
65:15:1f:06:63:79:09:95:d3:71:2b:af:dd:da:85:ee:89:fc:
16:05:66:8a:81:47:12:00:a9:5a:17:17:a8:7c:17:c1:1f:e6:
17:77:8e:c2:ce:22:ea:55:9d:01:49:de:2a:db:cb:cb:c0:73:
ba:e4:eb:73
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5MDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDUxMTVGMTE3OUQ4NUY0
MTVEMUVBOUI2MzE1RUI5QjU0QTQ3MjRBN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRY2/BPIETNNz/6AQJoz4SeXaGgyAA/SSy/rIclpkPGBDpoct/
YhC8y0toMRXM/UB3S24ti/10JDAb3WEqrkxMv40YXkTpAo6crR6kAqb49buZRD30
Hi5ocPuAiI3kVn7lobkSgERApaFhTU5+9cjEGvLmEyVQC8+C6RODsaPIKalErmmw
N0GkxX0aq0vic6i/uIipmhXjDlE/850wrSYuRsPmoBnhQIwTMu2y/JtKdEJWV/PA
RK3NqTukJcWhIGWt/EBpKQW3eDGWorTLPI/oqX0oC47ucXaGa71Pch6aOiVAn7ac
KAiLPDuSf8EOYH45TLnBbepep9N4ExFOq1JXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUURXxF52F9BXR6ptjFeubVKRySnswHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vVVJYeEY1MkY5QlhSNnB0akZldWJW
S1J5U25zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bKzAN
BgkqhkiG9w0BAQsFAAOCAQEAcOcAnM6y9dPlshCN9Ta9Twu29k6Xop336PMNb5oC
XwwB3akDk1xd6bmfJGeDV90vQvyhED5IZ5uSq+aMgIBQGyzZ3E7anS8+SIYPyTXD
LSuf4f8sWAQA44ADryLTpt1QoYE9hb3FtLOpy0N0T0wgESC7Bgcqfff0mmMP7/S/
G8cutdhnvtDoEWpN/U18e72jlOlJgUz4OKvHHWw9kepDxhb2xEmB3P1bivK+qXHY
flDlN9WqtSGw5z7+HXQ2vSpJgr+JHpOmZRUfBmN5CZXTcSuv3dqF7on8FgVmioFH
EgCpWhcXqHwXwR/mF3eOws4i6lWdAUneKtvLy8BzuuTrcw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org