Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/YR3w9xF-FP6QwaLgeWnfI4trMFg.roa
File: YR3w9xF-FP6QwaLgeWnfI4trMFg.roa (raw, json)
Hash identifier: y3L1DOK7tLoqB5kykmmr6Tfi8H8ng1KJeG0bgNzmTm0=
Subject key identifier: 61:1D:F0:F7:11:7E:14:FE:90:C1:A2:E0:79:69:DF:23:8B:6B:30:58
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08DC
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/YR3w9xF-FP6QwaLgeWnfI4trMFg.roa
Signing time: Fri 11 Dec 2020 09:05:57 +0000
ROA not before: Fri 11 Dec 2020 09:05:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2268 (0x8dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:05:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=611DF0F7117E14FE90C1A2E07969DF238B6B3058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:59:aa:fe:54:6e:20:fd:08:55:69:96:40:5b:
57:09:a2:63:73:f9:a3:b2:1b:2e:a8:80:2b:3d:23:
65:38:94:33:d5:dd:7f:36:ec:96:c9:37:f3:ba:2d:
72:83:bc:d3:d8:4e:28:a1:37:37:e2:0b:47:3c:ff:
ac:9f:80:93:ae:cb:69:c7:09:af:30:e5:44:bd:a8:
f4:0c:9b:cd:04:b7:ef:65:28:46:93:c0:a4:c0:db:
10:49:dc:57:d2:d6:ba:a1:0d:bf:0d:43:41:04:63:
8d:53:54:b6:fa:98:61:f3:54:07:67:b4:fa:f4:2c:
cb:08:df:28:45:31:ba:c9:bb:68:6b:bc:49:18:26:
ae:2a:5b:9e:d4:30:ba:8c:22:6d:94:63:9c:e1:ae:
a6:13:a7:bd:a3:ad:71:5a:35:94:46:a5:ff:cb:21:
97:fa:2d:e8:86:2c:59:9e:05:69:d1:80:e7:42:65:
42:64:48:f7:c8:50:bb:5c:b8:18:1e:c7:29:22:82:
bf:4b:b1:e2:4e:a3:3d:72:4d:eb:32:94:73:3f:ea:
97:9b:1a:64:62:3f:41:fb:8d:cd:7f:84:28:d7:a7:
6e:d6:4a:f6:c2:f8:3a:7c:9e:36:40:a1:7a:e4:de:
cd:a7:67:c6:29:23:5b:75:9a:19:f4:29:04:31:ff:
f1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1D:F0:F7:11:7E:14:FE:90:C1:A2:E0:79:69:DF:23:8B:6B:30:58
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/YR3w9xF-FP6QwaLgeWnfI4trMFg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.39.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:0b:5f:6d:91:94:87:8e:b1:33:74:a7:ff:e6:aa:07:49:24:
73:d6:b6:57:ac:7c:f1:ae:d1:27:c4:f5:1d:95:02:02:90:88:
25:be:b2:ba:ea:5c:4d:09:af:c5:cc:a0:65:fa:d2:0a:92:40:
39:0a:c0:e2:df:72:53:87:5b:9b:79:02:ee:e0:73:d9:d9:01:
46:8b:89:e9:34:60:be:c8:da:dc:35:a7:49:53:45:9f:06:ac:
95:6c:28:a4:0c:45:0a:ae:6d:ed:49:44:c0:59:20:d4:57:e5:
85:54:09:4c:93:42:d2:f8:ce:7c:cb:57:df:dc:c4:40:12:98:
e1:55:54:c0:f9:49:a2:c6:b2:d5:20:e3:6f:7c:45:b8:a7:89:
7c:aa:14:fa:eb:da:c5:a3:f4:46:33:89:9b:86:41:f5:e5:10:
c0:49:95:83:b3:f4:e3:b4:59:da:a9:21:a4:ea:26:0a:62:2c:
51:e8:73:9f:c2:10:d5:df:32:f3:2a:c1:fe:78:90:60:90:6a:
9b:2f:6f:6b:43:86:42:e5:3a:2b:35:df:ae:5d:ab:88:01:1b:
74:06:85:2d:c0:07:62:4d:a1:43:f8:71:95:07:25:b1:41:bd:
5e:ed:fe:4a:5f:0e:38:56:f9:8d:b5:30:33:c9:63:96:45:21:
7b:98:9a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org