Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/_0FGYfQ4XcuqG03_-OYc9eWFmxE.roa
File: _0FGYfQ4XcuqG03_-OYc9eWFmxE.roa (raw, json)
Hash identifier: 8AOo5zTtOgNvc5MxRyWzTrcjwXxdr3BWV1KAEudAx/w=
Subject key identifier: FF:41:46:61:F4:38:5D:CB:AA:1B:4D:FF:F8:E6:1C:F5:E5:85:9B:11
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0896
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/_0FGYfQ4XcuqG03_-OYc9eWFmxE.roa
Signing time: Fri 11 Dec 2020 08:52:57 +0000
ROA not before: Fri 11 Dec 2020 08:52:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2198 (0x896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:52:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FF414661F4385DCBAA1B4DFFF8E61CF5E5859B11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ad:eb:8e:ac:76:7b:b2:cb:b4:47:4a:a6:35:
98:c0:3a:d9:5c:ef:7d:26:18:b4:7d:6f:f2:92:80:
9e:d9:6e:9d:4d:77:9e:f7:1a:c0:03:da:31:c4:5c:
21:35:ea:bf:48:1e:8b:fd:70:5c:a6:2c:ec:44:71:
52:41:68:46:85:e4:a1:59:7f:92:ab:64:c2:ac:8f:
48:fc:9b:42:53:c2:62:5e:97:44:45:f3:8a:3a:b6:
96:09:7f:53:73:8e:bd:25:6b:ff:4a:2d:e3:05:53:
bb:f3:60:d3:4d:d0:bc:4e:2b:5d:b5:eb:e0:42:6d:
65:36:08:94:6b:bf:5a:4d:30:08:bc:b4:29:0e:d9:
5b:54:19:3e:51:7d:10:c4:97:ea:34:fb:7a:98:ba:
8a:7e:1d:4c:81:37:da:46:1b:47:6b:42:16:69:61:
65:77:09:b5:cd:72:1e:64:4b:38:0a:d4:2f:fd:4b:
74:2d:c8:28:df:c4:4d:6e:79:fe:2d:b9:b3:19:d7:
57:12:d0:d6:fb:9e:bf:04:9f:15:c5:d5:a1:0c:c6:
36:53:c0:61:0b:9e:a5:53:0d:d3:ac:e9:b3:6f:e7:
b9:0d:3f:94:c8:5d:ba:12:cd:b0:26:df:8a:19:04:
a9:93:8e:70:fa:b4:e5:4a:56:6b:0d:a1:36:79:d2:
bd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:41:46:61:F4:38:5D:CB:AA:1B:4D:FF:F8:E6:1C:F5:E5:85:9B:11
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/_0FGYfQ4XcuqG03_-OYc9eWFmxE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:6a:57:77:1b:45:56:f1:0d:23:d2:41:30:a6:ab:d4:0a:40:
40:31:d4:01:98:ca:1f:85:ff:c7:e6:7d:58:68:93:e3:87:1c:
a5:73:7b:3d:70:64:8a:55:e8:74:a2:7a:ea:42:b1:01:b1:bb:
26:22:dc:cb:da:bc:7f:d6:9f:ef:04:0d:bc:e8:ac:b1:79:9b:
90:c8:ba:b8:5d:32:36:95:31:67:70:2e:70:b9:ae:b6:fa:ed:
9d:dc:76:61:ed:54:6f:ba:af:7c:f5:24:a6:27:f0:b8:35:fd:
4c:db:63:36:80:d8:49:4d:39:76:75:ee:5e:43:a8:98:e6:02:
d3:89:18:63:03:64:5d:18:7e:54:99:ac:de:c6:c6:f3:a7:64:
83:e2:bc:b1:b2:b4:9e:10:f6:c7:02:8b:61:e4:59:29:48:8a:
67:4d:cd:b5:09:ca:ad:2e:6c:f6:12:bc:27:09:2b:17:1b:23:
79:b1:1d:b8:c9:c2:66:19:19:2f:30:dd:47:ef:7e:60:38:b7:
a7:29:dc:8b:20:d5:97:53:27:0e:19:57:96:41:70:de:10:84:
e8:57:89:db:4d:42:ab:6f:70:6e:79:ed:5a:8b:47:36:fe:d2:
1e:e3:22:c8:1c:70:34:ed:50:21:33:81:4c:ad:72:dc:2b:b7:
31:37:0d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org