Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/X8n7M29SO_ExNOBuFFSjtsYp47I.roa
File: X8n7M29SO_ExNOBuFFSjtsYp47I.roa (raw, json)
Hash identifier: S1V6cBYSIh2Lq/U9D7Tlm1dfa8xUTrT8DABDgRdHVOQ=
Subject key identifier: 5F:C9:FB:33:6F:52:3B:F1:31:34:E0:6E:14:54:A3:B6:C6:29:E3:B2
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 099B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/X8n7M29SO_ExNOBuFFSjtsYp47I.roa
Signing time: Sun 07 Feb 2021 13:09:50 +0000
ROA not before: Sun 07 Feb 2021 13:09:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2459 (0x99b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5FC9FB336F523BF13134E06E1454A3B6C629E3B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:17:de:9f:23:8d:76:4a:fb:af:ba:a6:66:59:
b3:3e:b6:13:14:ce:eb:85:18:a6:bd:f2:fa:2d:96:
dc:71:c5:6e:5a:be:10:26:9b:34:a6:a5:a9:22:68:
e5:b8:79:32:e3:95:50:54:00:e4:6e:85:c2:4d:38:
d3:3a:57:47:80:bc:b6:8b:e1:5b:7a:1a:d5:b3:7d:
97:66:d3:95:da:bf:a4:fc:9c:d6:78:84:9f:79:4c:
2c:06:1a:88:a9:e2:06:18:28:37:da:3c:84:47:b4:
08:0b:d3:96:27:ce:74:11:4c:56:db:b9:23:83:6a:
41:da:b9:da:c4:d4:74:c5:a2:3c:cf:8a:91:0c:e2:
83:07:5b:24:99:0b:0d:6a:04:a3:bf:8a:eb:c4:65:
6b:65:f7:3a:3a:3e:fc:e2:28:58:05:19:56:37:62:
07:7e:c6:3e:be:79:09:59:5d:72:a8:eb:59:39:42:
b3:be:ae:fa:8d:67:ab:fe:05:fe:b7:e0:6f:af:28:
2c:e8:e5:f1:a9:ed:73:95:f2:c5:a1:61:3b:2d:df:
f7:85:c0:8d:95:54:45:6e:7d:9a:34:19:15:35:97:
eb:2b:75:ab:ee:62:05:09:08:37:2f:29:c8:d5:f1:
d1:81:ce:bf:f9:6c:ce:1e:b7:37:fd:33:b4:6c:70:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:FB:33:6F:52:3B:F1:31:34:E0:6E:14:54:A3:B6:C6:29:E3:B2
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/X8n7M29SO_ExNOBuFFSjtsYp47I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.39.0/24
Signature Algorithm: sha256WithRSAEncryption
54:0c:a3:59:10:f6:2f:cb:db:29:6e:4b:17:5c:85:e1:16:1c:
2f:44:56:a4:c8:57:31:a1:14:0f:9a:15:16:8f:e9:a9:8a:2e:
8e:1c:65:e9:37:c6:aa:69:ae:78:37:b1:3e:e3:d1:3a:77:45:
6c:b4:1d:96:f7:be:56:52:4d:7b:26:c8:24:d1:4b:be:a5:b2:
39:9f:0c:48:af:9c:45:8d:45:9b:1d:24:e4:a9:e2:d1:6e:cf:
cd:93:4b:62:48:9e:f7:34:f9:da:8a:30:96:4d:e2:b0:f0:3f:
f4:6f:67:17:48:14:4a:da:b0:54:e3:1d:03:47:53:be:b4:37:
2b:8a:64:73:64:a0:9d:e9:dc:f1:01:d2:47:db:eb:96:96:f8:
e4:03:02:15:be:26:d2:7c:f6:05:37:68:fd:87:00:69:8f:c3:
b6:7a:7b:58:c6:3e:65:9c:b0:d4:d9:19:8f:3f:f4:b5:8e:0f:
6d:c0:7e:f6:4b:35:82:10:ed:fd:34:20:0e:0f:80:0a:e4:fc:
a4:65:cd:e0:97:a8:c8:16:9d:1e:22:81:50:e7:4e:2d:0c:cf:
82:2d:35:43:18:6a:aa:e6:fa:5b:8e:fd:97:9c:47:18:f4:61:
aa:25:52:2e:71:e9:d2:3a:1f:51:c9:33:2c:a1:50:12:17:d2:
fb:59:94:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org