Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/daEB5iP15KK241meyjAM25d8cbY.roa
File: daEB5iP15KK241meyjAM25d8cbY.roa (raw, json)
Hash identifier: AMQKluYAwNsZyF3NNMJrOdgYGtFOWryOpk9vgmVUzRQ=
Subject key identifier: 75:A1:01:E6:23:F5:E4:A2:B6:E3:59:9E:CA:30:0C:DB:97:7C:71:B6
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08AC
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/daEB5iP15KK241meyjAM25d8cbY.roa
Signing time: Fri 11 Dec 2020 08:56:50 +0000
ROA not before: Fri 11 Dec 2020 08:56:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2220 (0x8ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:56:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75A101E623F5E4A2B6E3599ECA300CDB977C71B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:28:c3:ff:5b:41:62:44:b0:d8:4c:02:33:ca:
66:e2:82:53:18:37:a1:c9:7e:70:db:f4:e3:d1:ca:
b5:f2:e2:b9:38:48:a3:48:2c:63:a2:ed:81:6f:9b:
10:de:4a:bd:2e:35:ae:10:61:4b:bb:0b:83:f3:17:
04:6f:07:6c:df:24:24:cd:7d:0a:b9:4a:04:dd:e1:
97:9d:77:04:5d:cd:1a:4b:99:7e:9b:83:99:19:76:
e4:85:0f:db:73:05:22:85:67:67:83:ed:73:9a:67:
59:cf:7c:50:8c:29:df:8b:14:58:cf:78:70:0d:eb:
7a:85:f5:6f:d7:37:91:15:3c:f9:86:75:6b:60:01:
34:fe:ed:ad:ad:7b:36:ea:79:a9:f8:af:c2:dd:36:
b1:0e:9e:72:28:04:30:af:59:9b:64:bc:a8:e8:e7:
a6:93:66:61:e8:07:1d:d1:15:c8:c1:f8:6e:a5:97:
f6:e9:d7:a8:b9:42:93:d6:8c:ed:ae:f9:f2:cf:90:
54:7d:83:3b:b8:9e:13:8f:b2:41:d6:0f:2a:bf:9e:
de:fb:4e:9e:2a:db:70:e5:8c:d9:cf:14:05:93:e4:
17:eb:e2:7f:45:69:a5:a0:87:a4:b5:c9:5f:32:15:
75:a0:8d:42:8a:46:6a:e4:81:df:62:a0:ea:35:20:
ab:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A1:01:E6:23:F5:E4:A2:B6:E3:59:9E:CA:30:0C:DB:97:7C:71:B6
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/daEB5iP15KK241meyjAM25d8cbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.39.0/24
Signature Algorithm: sha256WithRSAEncryption
93:64:36:f7:21:f9:cc:f2:29:ab:e3:9a:70:a9:d7:b7:06:15:
ac:03:46:6b:ba:78:71:98:06:80:64:22:03:c3:7b:6f:8f:79:
6a:4d:78:f9:00:49:af:7d:82:e3:18:2b:67:64:4d:02:68:5b:
40:a3:f5:20:ad:ec:4b:6e:c7:cc:00:50:fc:32:84:c8:04:87:
98:02:f7:02:ac:df:77:46:02:13:e8:35:c0:b2:0d:57:be:6c:
98:bb:8b:67:2a:d5:30:e2:d1:29:d7:68:38:68:b6:0a:a7:31:
c4:c4:96:f1:37:8f:f9:81:79:99:26:3d:8d:b9:aa:3c:6e:4f:
34:84:41:ce:0d:2a:4e:96:ef:af:93:4a:56:d1:92:e3:b4:b3:
cf:9e:07:b2:da:b4:89:34:8a:6c:02:a0:07:59:7a:d0:bc:0f:
2c:ae:fa:d4:ca:45:72:9c:29:7d:b5:0a:db:21:30:c6:40:d0:
ff:74:c5:67:d8:34:9c:ab:0a:b9:de:ac:c3:42:de:16:1f:42:
dd:eb:a8:8f:c0:a7:23:6a:15:e2:96:79:b7:a9:2a:a2:56:52:
8b:f9:71:9e:ce:6f:94:d8:64:42:e3:f0:1d:a7:47:d0:e8:b2:
e5:a6:d6:3c:67:67:b6:a6:0c:4e:e1:fe:da:91:04:7d:94:d2:
26:b3:cd:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org