Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/c6z94ZhBFJVV8sGt5A2EUJK7uYQ.roa
File: c6z94ZhBFJVV8sGt5A2EUJK7uYQ.roa (raw, json)
Hash identifier: RRH00I1AaYBZki//p1SX4mK+DhjrvgXEj802hr9h3Os=
Subject key identifier: 73:AC:FD:E1:98:41:14:95:55:F2:C1:AD:E4:0D:84:50:92:BB:B9:84
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A70
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/c6z94ZhBFJVV8sGt5A2EUJK7uYQ.roa
Signing time: Wed 29 Sep 2021 02:42:47 +0000
ROA not before: Wed 29 Sep 2021 02:42:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 124.150.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2672 (0xa70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=73ACFDE19841149555F2C1ADE40D845092BBB984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3d:58:4e:91:d4:33:cd:01:fb:a7:f8:1c:50:
11:f9:c9:36:11:cf:eb:3d:65:45:7a:2a:58:01:29:
da:6a:4d:f5:12:82:97:31:7f:0e:a8:22:a6:94:87:
b6:82:7c:fd:98:77:ef:af:db:25:b2:fa:b3:d0:cc:
56:ec:c4:c7:68:85:04:57:fb:a0:9b:71:22:60:b9:
d5:55:18:f6:5b:93:d0:aa:ad:1f:f5:13:57:06:4f:
6f:f6:65:d2:64:03:7d:05:55:74:ea:2f:ab:36:5d:
14:dc:47:00:d3:8c:2b:f3:5c:8b:b1:ec:89:68:52:
42:26:76:d3:3e:bb:0b:83:30:21:12:6f:bf:02:b5:
f6:54:d7:26:a6:be:ad:ae:52:10:af:c6:74:6c:1d:
7c:71:60:96:79:5c:31:2e:77:62:ca:1b:27:27:cc:
f7:bf:50:b3:ae:a1:1e:4e:ef:5e:50:7b:de:f1:93:
a6:68:f3:39:31:da:da:f5:2b:2f:36:1b:79:88:41:
39:6c:d4:18:21:38:bd:9e:7a:f8:00:cd:4e:0b:00:
3c:8a:db:8b:2a:b9:bb:0d:51:cd:0f:4a:0a:64:80:
ef:81:df:91:73:16:78:06:ae:b9:b8:61:6d:39:e2:
1e:b1:43:e1:51:b5:1b:e5:36:07:80:0d:9a:13:53:
d8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AC:FD:E1:98:41:14:95:55:F2:C1:AD:E4:0D:84:50:92:BB:B9:84
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/c6z94ZhBFJVV8sGt5A2EUJK7uYQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.135.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:13:10:19:5e:03:29:9c:13:65:2a:57:d4:7d:66:62:30:0c:
2d:74:62:94:f9:2a:bd:87:89:a6:46:7b:5f:03:25:9e:ae:31:
7c:13:96:ba:e7:84:76:93:2c:64:f1:4b:af:f0:15:45:3f:7f:
a1:9f:04:39:37:22:a5:47:e2:1c:5e:40:5b:e3:12:5a:80:ce:
f3:ef:4e:16:8d:e9:58:04:87:6a:5d:9e:5f:a8:3e:07:4c:82:
dd:1d:d7:ad:ff:80:cb:e5:ef:89:27:05:e2:71:be:01:e3:08:
e5:8a:b1:40:92:33:0a:81:ad:54:5c:06:76:42:91:89:45:aa:
1b:e8:48:8a:08:84:13:54:c8:61:95:74:28:04:69:65:94:68:
b0:53:a6:08:7d:41:b4:e1:3e:2e:6d:d4:3b:4c:36:8f:7f:fc:
32:e3:95:32:71:e7:c6:72:5c:6e:29:bb:c6:e5:c6:bf:95:cc:
b2:03:9d:a0:f5:1e:c0:be:f7:2b:85:e9:38:ca:0e:d2:ef:d0:
df:dd:99:f5:6e:bd:d8:1a:8c:1b:60:9d:e1:8c:48:41:70:24:
5b:6e:3c:a4:53:22:d6:e9:65:f5:5b:8e:68:e3:f7:b1:e6:9f:
56:47:72:db:7f:2d:86:be:57:f9:bb:dc:9e:25:47:8c:6b:a8:
9e:00:2e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:42 2025 by rpki-client