Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/VWY3UT2UkJe6xZbkD7lk0JLgqOk.roa
File: VWY3UT2UkJe6xZbkD7lk0JLgqOk.roa (raw, json)
Hash identifier: idsbKe0ahIfaiWm0v5zafYf8+1pluwi1p8EdQt/PRt0=
Subject key identifier: 55:66:37:51:3D:94:90:97:BA:C5:96:E4:0F:B9:64:D0:92:E0:A8:E9
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0953
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/VWY3UT2UkJe6xZbkD7lk0JLgqOk.roa
Signing time: Sun 07 Feb 2021 13:08:40 +0000
ROA not before: Sun 07 Feb 2021 13:08:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:08:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=556637513D949097BAC596E40FB964D092E0A8E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c9:2d:17:26:72:52:49:60:a4:c3:49:d6:34:
4c:95:0b:e1:8f:d1:4e:62:af:f7:4e:83:da:14:1a:
c6:88:3d:1f:7d:cb:9d:37:3e:d6:d1:34:c6:c5:5d:
14:f6:45:09:a8:6c:a1:18:42:74:fa:22:a5:0a:44:
ab:40:3d:d8:5d:bd:cc:5d:8b:6e:62:9e:11:9f:bb:
d2:b3:96:b0:bd:27:46:f3:88:56:f1:c6:57:9a:ad:
59:41:9a:6c:09:b5:35:3e:39:ad:90:e9:57:16:78:
a6:d3:7e:ab:a5:31:6b:e4:b2:35:78:11:f5:5d:62:
99:d5:74:c5:75:3f:01:0a:f6:3a:2b:aa:20:06:90:
14:d6:41:61:6d:e1:d8:fc:f7:87:8f:14:20:77:b6:
90:22:cd:e3:1d:ee:f1:5e:88:ec:12:2f:3f:fa:0c:
e6:6e:18:5b:cb:4c:b5:64:5f:82:09:53:14:bc:2e:
3d:ef:4d:2f:40:f2:02:0f:b8:0e:1e:b0:8f:e4:f1:
0e:36:2c:16:03:19:44:df:88:c1:e5:64:35:69:3d:
1c:53:e7:98:67:9f:3d:5e:3d:d0:cd:95:bf:43:75:
57:3b:2e:e7:c4:70:27:ff:45:dc:60:d2:4c:71:65:
6f:9b:1e:bb:e7:62:06:da:7c:d3:37:5b:b5:de:36:
a1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:66:37:51:3D:94:90:97:BA:C5:96:E4:0F:B9:64:D0:92:E0:A8:E9
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/VWY3UT2UkJe6xZbkD7lk0JLgqOk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.130.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:83:49:9d:d3:6f:83:ae:7c:81:ef:08:fa:9f:a7:00:2f:96:
e2:ba:9a:5c:90:56:91:e6:eb:76:ca:f1:50:18:98:74:3e:ba:
8d:57:22:51:71:b3:86:25:4d:cf:cc:5f:b8:e7:bf:38:06:3f:
b2:f0:6e:37:fe:5f:bc:3e:56:6d:d5:59:84:ad:1f:9d:32:f4:
7e:d0:de:bd:2d:26:ee:95:a5:62:a4:dd:45:c6:9a:5b:72:e1:
bb:c9:90:e1:9d:d6:07:7a:e1:40:4b:1c:79:75:ed:99:d2:a0:
cb:77:18:c3:2f:51:75:bf:89:28:6f:e7:c9:f4:f4:3a:76:90:
b5:18:d9:0a:97:07:97:82:65:1e:d2:4a:7f:0e:e1:d2:91:be:
70:86:f9:50:62:9e:4c:ff:b3:01:17:a1:bd:db:8e:27:6d:80:
19:e5:1f:fe:46:42:8a:bf:bc:ea:01:b8:3a:f4:b5:22:3d:14:
37:3f:a0:b7:5c:aa:ea:d1:98:a9:76:bb:24:a3:26:0a:21:bb:
21:91:39:19:1d:11:ba:1f:52:39:bf:0b:db:47:93:98:ff:a7:
fd:13:6e:6a:1a:50:de:43:7d:3e:80:14:f3:21:33:14:a6:ac:
c4:5a:d6:fa:6c:9b:72:19:a4:f3:53:dc:94:5b:a3:ef:02:da:
57:90:2d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org