Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/g9blby0xeieE2djEZNehPEjvtAk.roa
File: g9blby0xeieE2djEZNehPEjvtAk.roa (raw, json)
Hash identifier: 3K2vR5wJUOTlLxD3kP7QYcHng5/SXH+65KM49DauI28=
Subject key identifier: 83:D6:E5:6F:2D:31:7A:27:84:D9:D8:C4:64:D7:A1:3C:48:EF:B4:09
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A7B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/g9blby0xeieE2djEZNehPEjvtAk.roa
Signing time: Wed 29 Sep 2021 02:42:50 +0000
ROA not before: Wed 29 Sep 2021 02:42:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 2400:b380::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2683 (0xa7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=83D6E56F2D317A2784D9D8C464D7A13C48EFB409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:20:5d:6a:88:3d:f0:14:bb:ea:00:3e:7e:
26:e6:bb:0a:c1:5d:02:bf:2c:9d:b5:4c:f3:2a:27:
20:43:cd:66:f0:cf:93:8d:51:6c:53:22:04:02:7e:
fe:e5:45:5b:d4:75:4e:bc:0f:43:61:79:46:a6:cd:
32:c1:22:56:cf:b4:fe:b0:ad:ca:92:76:35:1e:89:
76:26:23:a9:ff:ce:57:7a:73:49:07:c5:4b:95:8e:
eb:f5:da:2e:72:22:25:96:38:d2:91:a1:d6:bc:20:
c7:54:34:b4:00:59:dd:f2:66:48:dc:c9:17:88:6f:
5d:85:69:5a:28:f6:a4:a5:65:32:b0:1c:61:e5:ff:
c7:a2:e3:04:ba:c4:b1:2e:9e:f3:6e:ce:af:fa:b8:
06:85:47:99:68:6c:b8:b0:0b:53:ed:4c:9b:ad:0f:
69:bc:b3:b6:0a:2a:6e:4a:58:ee:6d:e7:81:f7:d1:
c8:0f:c1:07:e0:d1:37:b9:35:b5:4f:e1:d7:8f:ab:
82:e9:f6:b8:08:d9:aa:bc:46:fd:b8:46:6c:7e:8b:
70:c7:b5:6c:a0:68:03:c9:2e:52:58:b2:d7:1a:ea:
d9:1f:67:12:c8:d0:cb:40:fb:bc:ac:4b:7f:5d:d6:
bb:82:da:07:f1:08:5e:3a:2e:9c:37:0f:25:39:2a:
16:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D6:E5:6F:2D:31:7A:27:84:D9:D8:C4:64:D7:A1:3C:48:EF:B4:09
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/g9blby0xeieE2djEZNehPEjvtAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b380::/32
Signature Algorithm: sha256WithRSAEncryption
8f:1b:fa:c1:1e:7d:7a:37:c4:7e:9b:19:ef:01:8d:39:2f:f0:
32:6b:b7:dd:56:3f:fc:da:33:c8:36:94:6f:06:3b:4e:a9:ff:
46:e9:8a:9a:46:f4:f1:e7:d4:8b:6d:99:30:bd:de:3a:e2:8d:
60:93:f9:ef:67:d3:5d:b4:71:a1:4e:e3:cb:66:a6:8f:a7:d3:
d7:f7:12:07:8a:99:fb:49:1f:b5:fc:95:73:e1:5c:66:f2:30:
e2:ae:91:21:c1:05:73:73:67:2d:b1:6a:a0:a3:ca:fd:17:c2:
8a:64:51:55:59:5f:61:8e:de:89:dc:2b:e6:7f:71:2f:be:47:
be:9c:6d:51:d5:97:50:cc:c5:2a:cc:f1:1f:72:50:2a:0d:30:
b4:a5:5d:7c:4e:0b:72:ee:5c:c1:d1:9d:28:87:63:28:ed:ab:
6c:68:92:f3:7a:d0:12:64:f2:db:fa:59:44:de:09:bf:8e:07:
b8:29:df:42:52:29:10:1d:cf:77:27:36:2f:63:18:a9:bf:27:
15:90:38:00:85:b6:9e:a0:a0:e7:f5:6f:99:8e:27:8f:44:48:
b1:a7:6d:21:bf:8c:bc:b4:eb:1c:33:a4:dc:b4:d2:3c:9f:ba:
e2:80:a5:54:fa:21:74:37:28:3e:b3:3a:3b:26:89:00:27:b8:
72:ab:9a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org