Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/f9TAp5DHNasnRirUZo_-YPJQWvw.roa
File: f9TAp5DHNasnRirUZo_-YPJQWvw.roa (raw, json)
Hash identifier: m38b0K2h+cBbvgebjwHsgYdAEbQE1ZaTcu7Efb5Cme8=
Subject key identifier: 7F:D4:C0:A7:90:C7:35:AB:27:46:2A:D4:66:8F:FE:60:F2:50:5A:FC
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 098F
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/f9TAp5DHNasnRirUZo_-YPJQWvw.roa
Signing time: Sun 07 Feb 2021 13:09:38 +0000
ROA not before: Sun 07 Feb 2021 13:09:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447 (0x98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7FD4C0A790C735AB27462AD4668FFE60F2505AFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:b1:bc:8b:1a:95:2e:12:7c:d9:13:2a:45:
f8:fe:32:49:ec:2c:35:6c:88:80:21:18:4a:d1:3a:
d4:e2:74:53:c3:a5:3e:ea:e5:fc:cd:ac:b6:3f:06:
d5:f1:5a:e0:f6:0a:0f:5f:a6:e1:17:f3:f3:05:27:
7d:42:46:24:8d:fb:ab:e1:6c:2e:8a:05:1d:be:fd:
38:9d:fe:13:3a:13:09:1e:26:66:96:5c:40:be:43:
a5:c0:d0:03:a6:f8:e6:85:39:f8:48:5a:83:09:cb:
99:5e:fe:45:34:3d:86:94:9c:9c:79:a9:11:11:05:
02:79:6c:00:f3:31:96:b3:a8:20:b2:91:1b:04:c5:
7c:29:6a:91:d0:63:67:7e:28:d9:3d:2b:fb:33:48:
d8:43:c0:f5:1c:61:f7:a5:2b:7e:10:44:21:53:51:
87:56:3d:df:d2:3c:fc:38:06:47:f3:27:8a:3b:c3:
34:ba:a6:ab:dc:81:f2:16:d6:f1:a7:61:b4:96:bc:
cd:b6:03:a1:4d:72:c2:06:0c:f4:11:19:47:92:d6:
52:cd:24:5c:45:c5:dc:fe:59:80:a9:4f:fa:3b:fb:
3c:ac:56:a6:08:5d:02:d1:d6:a2:ca:f0:f8:1d:4f:
93:54:af:75:f7:2e:59:d6:67:65:7c:91:b3:88:bf:
2d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D4:C0:A7:90:C7:35:AB:27:46:2A:D4:66:8F:FE:60:F2:50:5A:FC
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/f9TAp5DHNasnRirUZo_-YPJQWvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.33.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:2c:a6:e1:c8:ff:60:b9:88:fc:fc:7b:63:2c:a9:ce:45:44:
41:b7:60:32:bd:d1:87:9e:35:d4:91:94:c1:6b:8d:19:22:2a:
5d:9b:ba:5d:00:f7:15:8b:96:1a:50:45:32:62:a8:7c:b7:fc:
28:67:79:cb:2f:dc:4f:92:fd:47:67:7c:e0:95:fc:38:63:63:
d5:04:73:8c:16:d4:ad:c0:86:11:55:0e:3d:9d:0f:25:5a:33:
b2:cf:63:cb:bb:be:84:5d:d5:72:00:5f:26:1d:20:e9:a9:dc:
97:11:f5:3d:0f:84:0d:99:65:d9:1c:c7:55:5b:74:a1:bc:c6:
be:80:e8:3b:83:83:cb:13:f3:5d:24:1b:9a:53:d8:d1:42:d7:
81:d7:68:44:a2:db:fa:69:93:25:2a:27:48:79:e4:e3:38:05:
86:b5:f1:b3:bc:cd:df:23:5d:ea:4c:8d:5d:00:d0:e2:02:c1:
19:94:1d:f6:2b:c5:62:56:99:0d:95:db:d9:0f:e4:7a:83:a7:
16:9a:f1:92:56:a7:f0:73:ae:7a:f1:dd:72:7f:47:c7:2e:5f:
86:5b:1e:bb:71:0f:8f:22:f8:ec:1c:41:55:5d:1c:70:a3:bc:
38:cc:75:95:56:aa:dd:f4:1c:c6:96:61:6d:6b:1f:b4:7e:72:
b7:98:21:86
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5MzhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDdGRDRDMEE3OTBDNzM1
QUIyNzQ2MkFENDY2OEZGRTYwRjI1MDVBRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjh7G8ixqVLhJ82RMqRfj+MknsLDVsiIAhGErROtTidFPDpT7q
5fzNrLY/BtXxWuD2Cg9fpuEX8/MFJ31CRiSN+6vhbC6KBR2+/Tid/hM6EwkeJmaW
XEC+Q6XA0AOm+OaFOfhIWoMJy5le/kU0PYaUnJx5qRERBQJ5bADzMZazqCCykRsE
xXwpapHQY2d+KNk9K/szSNhDwPUcYfelK34QRCFTUYdWPd/SPPw4BkfzJ4o7wzS6
pqvcgfIW1vGnYbSWvM22A6FNcsIGDPQRGUeS1lLNJFxFxdz+WYCpT/o7+zysVqYI
XQLR1qLK8PgdT5NUr3X3LlnWZ2V8kbOIvy3TAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUf9TAp5DHNasnRirUZo/+YPJQWvwwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vZjlUQXA1REhOYXNuUmlyVVpvXy1Z
UEpRV3Z3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bITAN
BgkqhkiG9w0BAQsFAAOCAQEAnCym4cj/YLmI/Px7YyypzkVEQbdgMr3Rh5411JGU
wWuNGSIqXZu6XQD3FYuWGlBFMmKofLf8KGd5yy/cT5L9R2d84JX8OGNj1QRzjBbU
rcCGEVUOPZ0PJVozss9jy7u+hF3VcgBfJh0g6anclxH1PQ+EDZll2RzHVVt0obzG
voDoO4ODyxPzXSQbmlPY0ULXgddoRKLb+mmTJSonSHnk4zgFhrXxs7zN3yNd6kyN
XQDQ4gLBGZQd9ivFYlaZDZXb2Q/keoOnFprxklan8HOuevHdcn9Hxy5fhlseu3EP
jyL47BxBVV0ccKO8OMx1lVaq3fQcxpZhbWsftH5yt5ghhg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org