Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/fEbxqN7zmFCn0-Ry1aKNm1ZX2qg.roa
File: fEbxqN7zmFCn0-Ry1aKNm1ZX2qg.roa (raw, json)
Hash identifier: je42d1kEjCDshKKD05/mhJC6RTFl4cJuW4CxUjjgUY0=
Subject key identifier: 7C:46:F1:A8:DE:F3:98:50:A7:D3:E4:72:D5:A2:8D:9B:56:57:DA:A8
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0997
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/fEbxqN7zmFCn0-Ry1aKNm1ZX2qg.roa
Signing time: Sun 07 Feb 2021 13:09:46 +0000
ROA not before: Sun 07 Feb 2021 13:09:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2455 (0x997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C46F1A8DEF39850A7D3E472D5A28D9B5657DAA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ab:97:df:2a:7f:91:36:da:36:46:61:1b:ab:
0c:54:26:1e:64:71:5f:55:1a:a3:b5:8f:37:8f:e7:
8a:04:f4:93:1a:c5:8d:85:56:24:90:6c:a4:8b:4d:
2f:6a:4f:59:a1:89:5b:b0:e6:8e:3c:c8:4d:2b:6f:
a0:01:a3:58:d2:03:47:e6:9e:55:40:69:01:ef:88:
5c:b3:97:5a:6d:b7:4b:6b:20:cb:f4:1a:8c:69:6a:
dc:c1:f1:e4:d0:60:14:a9:73:e8:d3:d9:6d:54:b9:
60:f0:05:3d:e0:05:54:f7:d6:6d:ba:27:e1:5b:d7:
c3:e2:96:ed:0a:92:0f:88:26:bf:9e:ab:2c:2a:ab:
0e:9a:ff:91:2e:9b:19:4c:c5:c2:ac:5c:57:b9:a9:
3f:05:8f:03:1a:79:70:15:cc:c2:fe:c7:68:9d:14:
c0:5f:13:30:fe:96:eb:73:89:d9:64:d9:ec:14:87:
69:d0:25:58:24:86:9c:7e:dd:14:d9:de:61:ae:36:
8c:f9:8f:dd:d4:d3:6d:25:99:fa:3d:a9:85:29:84:
23:a5:fe:8f:26:f2:22:fb:3f:a5:23:00:5c:a2:83:
57:b8:a4:2a:77:63:ec:56:98:83:84:b3:72:77:b3:
cb:66:f5:c4:df:ba:d1:ce:34:cf:17:2b:66:96:1c:
64:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:46:F1:A8:DE:F3:98:50:A7:D3:E4:72:D5:A2:8D:9B:56:57:DA:A8
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/fEbxqN7zmFCn0-Ry1aKNm1ZX2qg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.37.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:f5:2e:51:39:2e:9b:fd:42:81:8f:97:e4:e1:84:e7:f2:62:
03:e4:bd:c9:f1:1d:e6:3e:44:6e:34:91:b1:65:59:b7:5c:b2:
23:c7:c6:18:5e:ba:d4:95:48:4b:5e:81:75:de:de:f3:90:53:
51:f4:9d:53:18:f3:a1:58:b7:b6:17:58:70:61:3c:eb:c0:39:
83:4e:99:32:d1:ad:fa:cc:5b:8d:42:fe:8d:e8:b0:a5:7b:c4:
ce:43:b3:0c:61:17:77:63:5a:b9:4a:d1:c4:95:8d:8a:34:bb:
10:ed:76:58:bb:73:a0:cd:b4:81:f2:a1:51:b9:3c:4f:93:2c:
82:c9:9c:c7:87:cf:2d:a4:6a:87:09:20:f4:1e:ab:cc:4c:f7:
16:8b:7a:76:45:b2:22:1d:a8:e6:58:4b:55:40:84:ce:59:86:
72:e7:49:ae:5f:63:47:ac:6e:22:56:7d:0a:86:66:3a:46:f6:
a9:a1:6d:50:9d:23:d9:6d:13:f7:76:93:74:97:a0:ba:c0:26:
be:47:24:97:f1:3f:74:d7:ca:33:a6:54:b6:42:d2:8e:74:f7:
e7:23:48:6c:e0:65:e2:33:66:3b:e7:8d:44:29:02:c7:0f:39:
99:20:c7:5b:2a:71:ec:68:52:9f:1a:52:32:c7:a1:fb:d7:f2:
ca:50:97:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org