Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZiERVEmZEYPSGW-P1r_eo9SICyc.roa
File: ZiERVEmZEYPSGW-P1r_eo9SICyc.roa (raw, json)
Hash identifier: n3/kYDBTzzGEMfifhgo1BMh94U4CvmC83TN8kQwo1xA=
Subject key identifier: 66:21:11:54:49:99:11:83:D2:19:6F:8F:D6:BF:DE:A3:D4:88:0B:27
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08C4
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZiERVEmZEYPSGW-P1r_eo9SICyc.roa
Signing time: Fri 11 Dec 2020 09:02:53 +0000
ROA not before: Fri 11 Dec 2020 09:02:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2244 (0x8c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:02:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6621115449991183D2196F8FD6BFDEA3D4880B27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:63:61:f9:18:06:b6:ba:28:6e:5f:a6:15:8b:
2f:2f:e8:77:28:03:3a:41:1c:f6:bf:52:39:ed:41:
ea:fe:de:d4:01:aa:be:7c:4c:a2:0c:22:8d:3b:c0:
9b:61:ab:64:76:ee:74:0c:29:5c:f3:fe:4c:23:ee:
1d:c0:44:05:e5:77:1a:37:1e:0a:54:33:09:8b:12:
22:fb:7a:71:e7:8c:8c:dc:29:86:dc:ef:b7:d9:d7:
66:b9:76:c9:48:30:e9:c6:30:3c:59:ef:bd:7c:6c:
f0:c5:ef:f0:bf:ad:93:09:98:5d:ce:6a:c3:38:7c:
a8:26:b4:8a:cb:45:f0:30:13:54:d5:58:5c:b6:b6:
7b:a5:13:91:98:7e:a9:c5:03:54:ac:4e:c2:2a:36:
63:2a:5d:22:f1:3d:99:5e:47:64:58:aa:1f:0d:93:
36:6b:21:e6:06:3f:f7:34:3b:3c:f3:d5:05:cf:15:
c2:85:58:cb:f2:b8:92:43:3c:14:39:7e:56:ff:14:
d3:7e:e5:1b:f4:79:bf:61:a0:29:24:44:e6:78:10:
46:72:14:07:2e:d5:03:bc:1c:1b:21:c0:02:d9:e5:
3a:c5:d9:50:da:ec:65:07:97:0c:81:5c:25:f5:03:
8d:1e:83:41:f0:21:d9:ee:47:03:61:f8:8f:35:f7:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:21:11:54:49:99:11:83:D2:19:6F:8F:D6:BF:DE:A3:D4:88:0B:27
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZiERVEmZEYPSGW-P1r_eo9SICyc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:ba:a8:69:28:90:73:99:62:67:c5:69:2c:8b:13:70:44:86:
50:99:a6:63:11:93:fb:32:76:ab:8d:02:2c:0b:92:0b:f8:df:
51:4c:0d:ea:6c:12:d8:a4:7d:4e:8e:84:15:5c:db:39:c1:6d:
14:53:ef:58:54:b6:81:37:39:ba:14:87:2b:da:4c:5d:96:7d:
39:a7:22:e8:e7:3d:4b:c3:45:ba:c1:db:db:e8:81:5e:e9:08:
50:5c:b3:1d:c1:85:36:b3:75:fc:2a:f2:a4:53:96:46:76:de:
3c:d5:46:f9:93:bf:a4:23:e7:fa:b9:fb:4f:31:08:64:9a:82:
e9:05:d0:51:34:17:3a:e2:4d:32:2a:73:78:99:3a:68:8a:a5:
b9:b1:fa:18:75:b6:6f:6f:04:1a:b7:2d:77:ea:ae:2a:be:52:
a9:40:49:f5:02:b1:77:2d:aa:20:db:11:c0:8b:85:64:e2:ed:
34:32:97:39:02:38:39:4e:aa:52:c9:81:f7:c7:e9:cf:c9:31:
13:5a:b3:1d:54:84:e3:02:f5:48:58:c0:4b:66:56:34:f8:1b:
8e:2d:c0:88:08:8b:99:50:8d:c5:6a:ca:40:d6:51:9e:0a:88:
e1:c7:d8:38:b5:ae:db:f8:cd:14:b5:d7:71:5c:e5:40:2d:76:
f1:f6:a9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org