Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZoDQ1aTK-YIFXWljOJhEjpinRAw.roa
File: ZoDQ1aTK-YIFXWljOJhEjpinRAw.roa (raw, json)
Hash identifier: LmWu9f2nDuCIyOBeLFb+rLaZztcqZMDSREByNhRK3Bo=
Subject key identifier: 66:80:D0:D5:A4:CA:F9:82:05:5D:69:63:38:98:44:8E:98:A7:44:0C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A74
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZoDQ1aTK-YIFXWljOJhEjpinRAw.roa
Signing time: Wed 29 Sep 2021 02:42:49 +0000
ROA not before: Wed 29 Sep 2021 02:42:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2676 (0xa74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6680D0D5A4CAF982055D69633898448E98A7440C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b1:0b:52:18:bd:32:51:4b:54:15:ef:72:7a:
ee:93:27:c3:f2:cc:9c:aa:5d:1d:ca:10:c9:03:50:
94:1d:2d:e0:c8:b2:7f:e1:72:05:e3:af:5f:ce:5e:
72:24:d9:9b:c3:d2:bc:b7:ce:50:39:58:48:b3:12:
fc:d0:ff:5b:f6:48:22:b8:f9:23:e3:ce:96:70:10:
cd:79:52:59:ff:67:23:ab:11:2b:5e:01:1f:f7:c1:
ae:f7:90:1f:c8:9f:c6:ff:0c:d7:d3:78:81:e5:38:
93:64:af:d7:26:01:70:87:eb:48:94:6b:99:4d:d4:
18:cf:07:2a:ed:6f:c8:d3:e7:1f:6c:d9:1f:2d:95:
0a:a3:6d:85:e1:57:a6:3a:d7:c5:b7:8a:e4:27:98:
46:e4:83:c8:a6:f3:d9:50:77:45:b2:ad:25:72:45:
e4:c6:19:ba:79:59:e3:5d:16:7c:1c:cd:de:79:20:
23:3a:83:7a:6c:82:27:68:a8:5e:36:35:4c:c3:8d:
bd:b3:7b:bf:ae:4a:b4:71:42:e6:75:ed:af:37:86:
a6:2c:32:8e:0b:b3:16:e3:53:84:98:96:d9:ab:f2:
1f:a4:9f:73:75:a9:f9:2e:3f:e5:ad:c0:12:09:96:
ae:05:46:30:01:1e:2c:87:8a:87:a2:53:89:57:e3:
8e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:80:D0:D5:A4:CA:F9:82:05:5D:69:63:38:98:44:8E:98:A7:44:0C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZoDQ1aTK-YIFXWljOJhEjpinRAw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
31:32:4a:d6:73:d8:6e:b7:31:b6:c9:2b:89:c8:10:16:e0:7e:
88:11:2e:02:a4:fc:c8:8e:31:96:e4:77:48:bd:3e:5f:f6:e3:
16:52:55:60:3d:12:2d:13:68:79:eb:8d:f5:59:7e:56:25:95:
c4:ea:f5:b5:48:bb:4e:f9:d4:4f:ed:45:2d:4c:00:38:a2:32:
a6:24:6c:f5:d5:45:e9:40:dd:b3:d7:64:2d:5d:8b:84:56:22:
23:c0:77:b3:cf:50:17:d2:c8:aa:2e:f7:90:e4:25:64:e2:d5:
4a:b1:c4:db:ec:23:3e:d3:cf:15:6f:6e:75:9a:9a:35:60:11:
43:b2:38:2f:1b:9b:1a:db:75:b3:03:d7:52:cf:24:dc:12:0f:
a4:8a:20:33:da:50:76:80:f0:c2:dd:d8:d5:b3:09:56:d2:c3:
2c:2a:9a:70:80:9f:83:d8:30:d5:6d:53:38:f6:a9:66:9b:c9:
f7:ff:75:1c:a5:b4:37:46:c1:ae:f4:1b:28:84:84:8a:be:9d:
40:d8:13:79:04:28:8f:6b:47:97:e5:4b:ad:c5:0a:bb:a2:12:
6d:3b:98:0e:9d:bf:f3:08:8d:a0:38:49:31:eb:17:53:fc:6f:
3d:23:34:f4:33:3a:86:9a:c4:dc:a5:44:0d:f0:03:b4:63:1b:
95:44:fc:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org