Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/dfIhBNFXRRd1I8YAe-U75uYfxUA.roa
File: dfIhBNFXRRd1I8YAe-U75uYfxUA.roa (raw, json)
Hash identifier: um3sWgMDdlc6gwruL99QsNZz+YLoZI98iEOzHXrWDLA=
Subject key identifier: 75:F2:21:04:D1:57:45:17:75:23:C6:00:7B:E5:3B:E6:E6:1F:C5:40
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 097F
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/dfIhBNFXRRd1I8YAe-U75uYfxUA.roa
Signing time: Sun 07 Feb 2021 13:09:23 +0000
ROA not before: Sun 07 Feb 2021 13:09:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2431 (0x97f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75F22104D15745177523C6007BE53BE6E61FC540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:87:e3:29:bc:b5:5e:5e:29:63:91:83:60:57:
92:30:f2:9f:66:ec:99:d8:ee:f9:8f:12:67:4a:37:
2d:cd:12:ee:3a:4b:9f:88:c8:75:8f:13:31:99:1f:
30:5f:45:6c:b6:bd:8f:17:07:ad:99:2f:d0:93:c1:
e5:ea:f4:bd:69:37:e0:02:7d:cf:03:2a:19:28:35:
94:4f:ae:9e:f2:86:c6:d5:7a:f3:72:92:7f:1f:9e:
ea:da:f9:57:2f:1b:35:3a:89:27:f9:b7:a4:80:5d:
68:a8:6d:30:d7:33:3e:d2:0a:4e:60:2f:27:b5:76:
35:90:a5:d6:dd:8c:33:03:ca:2a:36:7f:ae:2e:e8:
f7:ca:0e:70:a0:39:6e:2e:01:53:5b:e2:f4:02:e5:
91:7d:65:15:b4:b5:59:b8:a5:7f:0a:ce:cd:37:6f:
32:a3:66:61:a9:5b:6f:21:10:4f:51:82:a5:ce:0f:
ab:e1:75:36:10:80:89:92:6b:12:ee:8a:8c:7f:4b:
5d:a5:c7:c3:0b:d8:cf:18:8f:0f:f3:df:2a:99:d5:
d9:3a:5d:39:58:da:e5:45:04:e1:3f:eb:e2:fb:24:
a1:95:f6:98:f1:82:6b:89:d6:94:44:e4:a7:8e:1c:
81:79:be:bd:cc:a9:f9:d2:0c:63:53:11:9f:5b:98:
74:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F2:21:04:D1:57:45:17:75:23:C6:00:7B:E5:3B:E6:E6:1F:C5:40
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/dfIhBNFXRRd1I8YAe-U75uYfxUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.129.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e1:ae:f5:50:ae:05:df:b5:94:21:d6:3c:22:3a:21:d1:a2:
f1:d3:f1:54:c3:f0:e6:5e:c8:76:90:c0:e6:32:b6:df:96:28:
6e:00:28:05:43:7f:ec:9f:05:92:14:28:75:79:67:d0:d0:fc:
26:89:2c:b0:67:db:a3:91:11:dc:70:99:e0:06:d7:a7:0a:60:
1f:18:73:81:ac:31:8e:89:8d:1a:c5:19:20:f4:9f:10:a9:38:
ae:80:e5:d5:4c:5b:67:ca:ea:6e:93:6a:f6:2b:2c:22:d3:9a:
3c:e5:bb:55:51:5f:b1:c4:7a:e1:64:c2:d7:4d:f1:a0:28:1f:
12:de:c4:bf:25:0b:3d:76:61:69:25:44:98:6c:88:a2:a9:11:
62:2a:7e:1d:22:ac:85:3c:7a:8f:b4:11:db:2d:93:0e:26:a7:
fa:13:d8:d7:ba:a0:4c:ec:e9:e6:54:98:9a:9a:00:cf:9d:4f:
6f:4e:df:ae:ca:0c:8b:98:00:1a:33:51:42:9f:dc:c4:84:c3:
7f:80:fd:1d:b2:09:3e:11:3e:68:98:af:03:64:f4:0e:fa:44:
09:95:dc:90:e1:0b:92:a5:db:2f:98:86:e6:b3:2b:0e:cf:b8:
15:95:87:22:1e:b2:54:8a:42:de:ba:ae:2e:85:a7:95:07:9f:
9c:bc:50:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org