Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/eMLGyK7b4_VPlOCnvn5hfxHiHNs.roa
File: eMLGyK7b4_VPlOCnvn5hfxHiHNs.roa (raw, json)
Hash identifier: ARrR7WkAwEMJFOllgWXS1rhRNC0td5/jDMrRTMR7nc8=
Subject key identifier: 78:C2:C6:C8:AE:DB:E3:F5:4F:94:E0:A7:BE:7E:61:7F:11:E2:1C:DB
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A75
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/eMLGyK7b4_VPlOCnvn5hfxHiHNs.roa
Signing time: Wed 29 Sep 2021 02:42:49 +0000
ROA not before: Wed 29 Sep 2021 02:42:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 124.150.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2677 (0xa75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=78C2C6C8AEDBE3F54F94E0A7BE7E617F11E21CDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1e:71:b2:63:ad:42:12:e7:32:f8:c5:ab:11:
2e:24:6b:1f:6c:e2:37:c3:82:46:2f:94:b8:1d:2b:
83:a8:e8:32:60:18:8f:49:a1:ff:b5:91:4b:f6:f4:
76:df:6e:37:c2:7b:f6:8d:15:c1:fb:55:29:c6:80:
22:28:db:70:e1:8a:91:af:84:af:c7:36:9c:a9:a8:
e0:13:3b:1e:9b:30:2e:fe:ca:97:c0:39:6f:e4:6e:
1e:d8:a7:39:d3:25:b3:d7:ee:28:52:dc:1a:b6:f8:
4d:e6:69:08:cc:9e:64:bd:5a:9f:38:22:c4:93:ae:
1c:ed:15:46:14:a2:45:a5:1f:fc:f6:22:35:b9:ee:
61:6a:01:02:e6:aa:f1:1f:4f:f0:2f:5d:15:7f:9f:
7d:14:16:98:50:3e:1b:fa:52:0d:88:52:fe:6a:ef:
12:03:30:eb:0a:55:d2:52:d2:a3:51:bf:75:83:a1:
22:a3:ae:e0:05:58:69:75:52:06:a4:66:ce:71:29:
24:7f:f5:17:6a:d8:5a:bb:32:71:4f:30:3c:27:d8:
3d:11:73:19:01:0f:5f:14:65:f3:6e:b9:2d:78:4e:
b2:bc:32:64:14:86:b4:45:f4:2d:24:17:89:87:bf:
48:73:83:f4:f1:a9:56:8a:ed:59:a8:e3:92:81:c9:
7b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C2:C6:C8:AE:DB:E3:F5:4F:94:E0:A7:BE:7E:61:7F:11:E2:1C:DB
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/eMLGyK7b4_VPlOCnvn5hfxHiHNs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.130.0/24
Signature Algorithm: sha256WithRSAEncryption
20:44:3b:b7:ec:68:14:a3:5c:ef:6d:bf:06:54:66:ae:5b:da:
c3:55:7a:45:dd:30:1e:5b:3f:c8:00:e4:0b:f7:4f:4a:1b:11:
83:81:56:3b:81:84:1a:b5:75:e7:08:fc:f0:f7:46:8b:34:da:
7b:69:e1:02:9f:e6:3e:88:1b:38:ac:19:9a:9f:66:4e:09:f3:
46:26:0f:85:51:47:4f:89:ae:64:62:44:d6:21:3c:fe:86:89:
bf:1c:4e:17:ec:17:f0:e0:fb:ef:1f:e7:5e:08:70:97:3d:67:
8b:be:80:e7:23:20:49:90:d0:2f:78:7d:5c:17:e5:1b:6b:e5:
8c:92:6a:92:e5:01:73:cd:e9:f8:ad:ce:c9:d9:00:43:86:3c:
b9:cb:70:69:37:f2:4e:5a:79:b2:c6:e3:da:71:c9:60:fc:20:
87:a9:a1:4b:0a:a7:ba:ea:24:e6:a0:fc:2f:21:96:22:08:eb:
55:fb:60:b6:22:d2:89:f6:3c:00:4f:65:fa:3d:53:b1:8e:a3:
b6:c8:79:6e:93:67:06:ac:f3:b2:56:d0:10:fb:54:0b:d0:68:
9d:05:c6:c8:2c:00:9c:aa:19:35:fd:87:a4:6f:ff:5d:50:1e:
b5:a4:d6:a1:e8:33:69:98:4e:54:3c:e1:44:78:b7:79:df:33:
c4:0e:c7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:29 2025 by rpki-client