Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/b_3tpVwwuaP_IgM688B0K5NNzLU.roa
File: b_3tpVwwuaP_IgM688B0K5NNzLU.roa (raw, json)
Hash identifier: wVMKrB2tl+i6Wqlekaj+d7B7zAg/E+G4JcU+HvD6wcY=
Subject key identifier: 6F:FD:ED:A5:5C:30:B9:A3:FF:22:03:3A:F3:C0:74:2B:93:4D:CC:B5
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/b_3tpVwwuaP_IgM688B0K5NNzLU.roa
Signing time: Thu 15 Sep 2022 02:42:26 +0000
ROA not before: Thu 15 Sep 2022 02:42:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6FFDEDA55C30B9A3FF22033AF3C0742B934DCCB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:52:aa:4e:4c:fb:39:1f:af:3c:8c:82:09:
28:25:f0:8d:03:d4:d1:21:61:1e:3e:ea:b6:c3:4f:
15:c4:0d:aa:a3:20:06:2b:eb:7d:07:63:5b:3f:1d:
60:b5:ab:00:1e:cf:3d:75:ac:c4:70:fa:d7:c6:ad:
68:8b:2f:54:e0:a1:44:88:88:fd:32:f5:5d:9a:64:
a3:04:e3:01:97:7a:3b:98:1e:b4:8a:f4:52:3f:80:
d4:85:c2:b9:f4:a5:fc:4c:30:b5:d7:26:6d:78:b0:
c8:cc:2c:64:4a:6f:c2:3a:8f:28:a9:c1:13:b5:35:
a2:4a:5b:27:d5:ae:ea:3b:b1:53:da:83:05:ed:ed:
2a:f7:43:fa:41:2b:f6:e6:93:89:c7:f0:59:39:d4:
47:8e:26:4e:1a:6d:ea:51:10:de:ec:b1:28:06:55:
58:e5:40:ea:44:2d:f5:c2:22:ca:6b:cc:fa:f4:62:
c0:f2:bf:8e:0e:30:0e:64:ce:01:20:2e:e7:32:e1:
a9:41:21:af:33:3f:77:32:74:0c:5d:0c:72:a5:ac:
13:a1:1c:55:a0:f6:c3:f8:ae:77:5c:ca:39:af:5c:
24:25:5c:73:d3:19:7d:20:62:9b:5e:fc:5d:d2:9d:
a8:40:b9:fe:56:60:91:df:a8:b7:76:e0:9e:7b:13:
d2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FD:ED:A5:5C:30:B9:A3:FF:22:03:3A:F3:C0:74:2B:93:4D:CC:B5
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/b_3tpVwwuaP_IgM688B0K5NNzLU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
72:78:e2:8f:95:f1:27:d5:55:dd:7b:92:72:f4:3a:c6:9d:ff:
05:be:2d:52:47:80:65:e9:eb:dc:d9:b4:1c:ee:89:9c:00:a0:
56:c4:6b:de:26:d6:ab:52:42:b7:91:e5:bc:84:5f:dc:3f:c1:
80:9e:d5:74:a6:2b:62:f7:35:a6:08:3d:50:b5:2f:f7:a1:1a:
47:af:50:a8:a0:d6:9e:85:6b:f6:ba:79:2d:a6:91:b0:b8:cc:
97:fc:d3:d0:3c:76:8f:ef:f7:25:aa:dd:9f:ce:c1:4f:a1:d6:
0a:be:59:47:b1:e7:81:97:ec:02:e0:a0:02:b3:34:25:d0:95:
12:d1:c0:45:b2:46:b8:b3:31:19:52:1d:da:02:fe:e9:d2:60:
0f:43:9e:ca:14:d1:47:5e:80:78:bd:2a:98:ff:ae:23:86:86:
18:4d:ff:ce:56:7c:5e:8e:3b:bf:dd:5d:02:7f:55:e3:49:1b:
1e:4b:e1:22:c4:e2:e7:5a:2a:d4:a3:39:26:d8:ac:a1:8d:d4:
24:0b:5a:43:05:d9:44:13:9b:9b:00:83:a2:44:26:8c:71:63:
0d:ef:f1:48:7e:31:78:a1:99:b7:07:02:13:e6:cd:67:63:63:
28:e5:59:24:49:20:33:ed:24:7a:09:ab:53:33:a4:48:41:11:
e9:b4:7d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org