Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/e5UHa_098moegtXhnU0ePzqai3k.roa
File: e5UHa_098moegtXhnU0ePzqai3k.roa (raw, json)
Hash identifier: N1AbY6ux2XigdQ+/GHsShG/9rWOOEoCryitwx7XXjb8=
Subject key identifier: 7B:95:07:6B:FD:3D:F2:6A:1E:82:D5:E1:9D:4D:1E:3F:3A:9A:8B:79
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0963
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/e5UHa_098moegtXhnU0ePzqai3k.roa
Signing time: Sun 07 Feb 2021 13:08:58 +0000
ROA not before: Sun 07 Feb 2021 13:08:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2403 (0x963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:08:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7B95076BFD3DF26A1E82D5E19D4D1E3F3A9A8B79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d5:80:c3:d8:4f:3d:17:00:bb:d8:33:16:ef:
11:32:42:09:0a:1f:17:58:d6:0c:f6:fc:d7:42:c4:
63:59:22:ab:fc:b9:30:16:36:2a:41:33:af:6a:a1:
00:30:a5:0c:1b:eb:7b:36:3b:6e:3d:21:63:6d:6a:
d7:98:4b:2b:7a:a1:af:2d:f0:3f:ed:24:a2:13:00:
bb:40:79:e2:99:05:a0:8d:c9:4d:fc:8a:f4:c4:b8:
83:df:24:c8:45:e1:c3:cb:3b:e6:2e:a4:61:ab:3f:
7b:93:4e:94:75:4d:f6:5d:bc:6a:04:bc:e2:f6:b4:
2d:87:a9:69:63:9d:4d:e1:06:2b:ef:e0:b8:09:0d:
e2:23:88:cf:8a:80:e2:bf:15:e5:b8:f2:a0:3d:57:
16:f7:cf:df:b0:93:22:5e:98:10:37:3f:f0:19:c8:
69:98:9e:b1:8f:a9:9f:23:19:21:0a:66:18:62:e2:
df:1c:b2:7c:da:94:40:cc:f1:ff:df:26:58:5d:e0:
8a:dd:60:ca:ca:b7:47:ce:05:0a:10:f7:2a:9c:2c:
aa:87:29:ec:60:5a:50:05:a9:86:89:3b:77:85:7f:
39:8a:14:bd:ec:3a:8c:20:08:89:3e:a5:51:c4:65:
51:02:fb:6f:2c:aa:89:a0:ca:56:70:df:fb:4c:f7:
24:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:95:07:6B:FD:3D:F2:6A:1E:82:D5:E1:9D:4D:1E:3F:3A:9A:8B:79
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/e5UHa_098moegtXhnU0ePzqai3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.35.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:68:d3:c2:76:98:a1:b4:27:ff:18:c6:c1:ea:6d:20:eb:7b:
a5:17:90:94:33:fc:15:b3:8a:8e:2a:03:7c:9a:35:8f:01:15:
a8:d9:41:e1:f4:d3:dc:17:65:ef:39:f5:f9:6f:f0:79:b7:60:
a5:48:1f:39:61:14:6f:5b:2c:e3:ec:d0:62:ff:a8:b8:b5:1e:
64:b0:74:43:14:1f:6a:05:f0:fb:5f:e5:bf:d8:f1:d5:dc:0d:
d2:05:82:45:6b:5c:5f:e7:b8:a5:d1:11:72:20:12:36:49:0e:
53:2a:08:a1:58:e1:9b:0d:0c:da:09:1a:31:ce:c4:a6:23:d2:
01:42:d3:d4:b8:dc:10:cc:2f:c7:07:8f:49:39:48:65:d5:f1:
f4:f2:2a:b3:00:7e:8f:80:0f:71:2f:a6:02:db:94:af:b6:7c:
c1:91:3a:25:b1:e7:70:51:5f:7e:98:f7:a4:e8:d7:ab:7f:e1:
01:08:11:9b:de:56:08:33:b0:8b:b2:cb:97:e4:eb:31:0f:19:
1c:3d:9c:6c:6c:07:60:a4:bf:88:2c:74:4f:49:fa:e4:8b:16:
20:bd:dd:f3:a5:d4:7d:cd:88:3e:d7:1c:e2:06:ad:3a:6e:a7:
02:68:a9:23:a8:03:0c:06:5d:19:b6:bd:5d:80:9d:48:2b:66:
36:38:ac:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org