Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/e2FAkNAU-hc0f0uNRuJydLTU0vk.roa
File: e2FAkNAU-hc0f0uNRuJydLTU0vk.roa (raw, json)
Hash identifier: q5W/FDeXWZPAH7zJy+yJasI5tXxu9R2JJrqkFiOYnf4=
Subject key identifier: 7B:61:40:90:D0:14:FA:17:34:7F:4B:8D:46:E2:72:74:B4:D4:D2:F9
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0969
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/e2FAkNAU-hc0f0uNRuJydLTU0vk.roa
Signing time: Sun 07 Feb 2021 13:09:04 +0000
ROA not before: Sun 07 Feb 2021 13:09:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2409 (0x969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7B614090D014FA17347F4B8D46E27274B4D4D2F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:9d:60:49:91:85:74:31:56:85:16:4f:b2:
c1:07:0e:25:0c:f8:38:b8:d8:da:14:f0:f1:8f:eb:
55:91:00:af:ce:f9:8a:58:39:3b:c6:fe:64:8f:e8:
c2:6f:46:12:64:3c:19:dc:f2:f5:89:7e:16:f4:41:
39:56:51:3f:d8:3c:2a:ec:85:76:1b:8a:c0:f0:47:
b3:c7:5b:02:5a:76:33:87:8d:37:27:68:a8:f1:47:
71:5d:99:36:48:93:15:37:5e:6e:52:ea:4d:71:c1:
bc:e2:cd:66:d9:c2:19:62:30:29:88:49:f7:84:6b:
10:c8:97:1d:91:34:7f:52:b0:cd:f2:12:d2:0c:27:
12:6d:0e:be:2b:3b:26:f1:dc:31:3d:c9:14:0a:f6:
fb:c8:5f:e2:29:de:06:66:d2:3c:9d:6b:83:90:77:
2a:00:ce:24:c2:20:c8:e0:04:57:6e:f3:5d:b0:c9:
93:65:57:43:73:62:ad:2b:06:2e:43:b8:a3:60:b5:
bd:47:18:b8:d0:60:5f:92:65:3b:6f:54:30:bb:b3:
5f:d1:fc:e5:2a:e6:64:67:27:ae:2c:af:63:b1:f7:
1e:47:9d:97:01:2b:44:bc:05:b9:ef:a5:d2:bf:e4:
c1:72:ba:3e:0a:d7:81:42:e3:e5:a1:0d:da:01:7e:
77:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:61:40:90:D0:14:FA:17:34:7F:4B:8D:46:E2:72:74:B4:D4:D2:F9
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/e2FAkNAU-hc0f0uNRuJydLTU0vk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.38.0/24
Signature Algorithm: sha256WithRSAEncryption
97:01:be:fd:1c:26:1d:a9:23:80:2d:c8:49:c9:59:2d:30:a4:
94:e4:23:a0:ca:49:54:47:49:bc:82:ce:df:5f:c1:2f:5d:57:
3e:f5:e6:3d:05:03:da:d2:77:4c:81:24:82:bc:98:13:26:e5:
04:23:4a:25:19:8d:4c:b1:ee:83:ab:92:a2:3b:b0:75:b2:57:
a8:73:fd:d6:94:dc:a2:8f:1f:39:4d:95:45:3a:d6:13:43:e7:
6f:15:dd:08:f7:cd:55:ea:16:8b:b0:44:f7:eb:da:d2:62:e9:
8a:e0:a3:12:d7:53:85:34:2c:b6:fc:c4:dd:de:45:3b:24:a0:
91:6c:dd:6b:45:47:ea:5b:83:5f:e6:ba:58:ba:99:a3:23:57:
30:cd:d8:38:89:8f:2b:57:71:0b:f1:e0:54:a1:3c:43:e3:66:
76:53:2c:dc:00:04:26:3b:bd:e4:de:df:dd:ef:de:79:d1:d2:
3c:3f:e9:86:39:05:bc:c2:5f:45:52:cd:39:cf:6d:e2:7a:14:
ab:dd:2a:c6:87:8a:a2:9c:17:49:b4:dd:80:52:4c:76:65:61:
9a:cb:2b:81:75:07:a6:fc:61:9f:f2:b0:af:07:22:f6:d2:5b:
a8:e0:ff:c2:0a:13:83:cb:04:fd:39:b0:41:30:0d:19:97:dc:
ea:27:4c:fc
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5MDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDdCNjE0MDkwRDAxNEZB
MTczNDdGNEI4RDQ2RTI3Mjc0QjRENEQyRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtEp1gSZGFdDFWhRZPssEHDiUM+Di42NoU8PGP61WRAK/O+YpY
OTvG/mSP6MJvRhJkPBnc8vWJfhb0QTlWUT/YPCrshXYbisDwR7PHWwJadjOHjTcn
aKjxR3FdmTZIkxU3Xm5S6k1xwbzizWbZwhliMCmISfeEaxDIlx2RNH9SsM3yEtIM
JxJtDr4rOybx3DE9yRQK9vvIX+Ip3gZm0jyda4OQdyoAziTCIMjgBFdu812wyZNl
V0NzYq0rBi5DuKNgtb1HGLjQYF+SZTtvVDC7s1/R/OUq5mRnJ64sr2Ox9x5HnZcB
K0S8BbnvpdK/5MFyuj4K14FC4+WhDdoBfneLAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUe2FAkNAU+hc0f0uNRuJydLTU0vkwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vZTJGQWtOQVUtaGMwZjB1TlJ1Snlk
TFRVMHZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bJjAN
BgkqhkiG9w0BAQsFAAOCAQEAlwG+/RwmHakjgC3ISclZLTCklOQjoMpJVEdJvILO
31/BL11XPvXmPQUD2tJ3TIEkgryYEyblBCNKJRmNTLHug6uSojuwdbJXqHP91pTc
oo8fOU2VRTrWE0PnbxXdCPfNVeoWi7BE9+va0mLpiuCjEtdThTQstvzE3d5FOySg
kWzda0VH6luDX+a6WLqZoyNXMM3YOImPK1dxC/HgVKE8Q+NmdlMs3AAEJju95N7f
3e/eedHSPD/phjkFvMJfRVLNOc9t4noUq90qxoeKopwXSbTdgFJMdmVhmssrgXUH
pvxhn/Kwrwci9tJbqOD/wgoTg8sE/TmwQTANGZfc6idM/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org