Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/gh-rybYqTw05iaoY77dPDHo5YkA.roa
File: gh-rybYqTw05iaoY77dPDHo5YkA.roa (raw, json)
Hash identifier: iCt8A/fANyjhgozPLryHgN9BQHCoxBHM37KwF9zgb4s=
Subject key identifier: 82:1F:AB:C9:B6:2A:4F:0D:39:89:AA:18:EF:B7:4F:0C:7A:39:62:40
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gh-rybYqTw05iaoY77dPDHo5YkA.roa
Signing time: Thu 15 Sep 2022 02:42:29 +0000
ROA not before: Thu 15 Sep 2022 02:42:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=821FABC9B62A4F0D3989AA18EFB74F0C7A396240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:af:6a:35:f0:c9:b9:35:1f:69:53:d8:b1:c1:
96:b4:0f:ee:d8:43:5b:0e:8b:ca:8c:d6:1c:5c:7b:
f7:de:34:00:f2:6a:b5:ff:86:3e:d4:94:ef:35:5e:
d4:72:af:94:2b:c8:3a:19:c7:4a:4c:24:30:07:42:
e8:cc:ac:b1:50:b2:e9:12:d9:62:15:40:04:02:67:
29:14:98:04:6a:17:78:4d:f3:ad:c9:10:35:34:a7:
8c:16:7c:65:9c:ee:ed:ac:26:cf:d3:49:94:7b:98:
2c:e8:5b:3c:57:df:d6:04:54:59:dd:fb:79:91:8d:
b8:29:74:8b:d0:d7:37:75:6b:b7:ed:32:49:18:84:
10:2a:62:9a:c1:0a:b0:a7:29:7f:53:74:51:31:da:
44:4d:87:5d:9f:80:e7:c2:e7:22:64:8b:c0:a6:30:
7a:6b:ca:e5:47:1c:f3:01:f6:43:de:6a:bf:3d:25:
3c:91:82:84:59:69:0b:42:0e:53:38:c1:9a:b7:6b:
76:87:a4:b1:b7:59:7c:a0:1f:1f:7e:dc:65:5c:c3:
c3:25:a3:6f:83:ae:a0:b9:48:7c:31:5e:89:a4:e6:
5a:5a:ff:c8:0f:89:3a:2a:2b:b7:76:ec:e9:a5:f3:
6d:6a:98:37:c0:f1:96:0a:08:47:a8:85:75:75:d8:
d5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1F:AB:C9:B6:2A:4F:0D:39:89:AA:18:EF:B7:4F:0C:7A:39:62:40
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gh-rybYqTw05iaoY77dPDHo5YkA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.57.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:4b:57:62:bb:47:f5:02:a4:67:d5:29:2e:e0:b5:c8:69:76:
4f:ca:05:5f:3e:ad:97:4e:e9:ee:e2:66:07:f0:b9:6e:09:f8:
18:45:f6:71:44:9e:cd:4a:53:91:f3:93:19:55:34:32:2e:88:
5f:79:13:cd:cf:b7:19:dc:eb:02:ec:2a:f4:18:d5:dc:1e:83:
d2:2b:4f:66:5c:b2:61:db:b1:92:a7:df:e3:1a:eb:14:b9:34:
59:30:49:3e:94:cb:10:f6:37:0b:ac:fd:f1:29:79:cc:75:da:
eb:9c:db:f4:52:bc:56:36:b2:e8:74:1f:16:c5:69:f6:41:8a:
2b:0d:8e:15:72:60:18:f2:ac:e4:e1:02:85:75:5e:ec:4c:df:
af:05:91:b5:dd:20:de:21:18:ca:5e:6a:6f:b0:58:7f:dd:ef:
57:96:27:5a:18:9d:c4:93:80:d4:03:b5:d1:ec:66:b6:b8:c3:
c1:69:dc:19:81:f4:bf:45:c4:7e:34:15:8d:d2:f5:05:ad:a3:
d6:96:1c:9f:91:c3:b8:34:59:67:59:1e:15:45:fb:eb:6e:7d:
07:22:f0:0c:39:06:6e:b9:13:c0:b2:8d:6b:72:65:21:c2:62:
fd:bd:eb:e8:a0:18:f5:77:ac:fe:e2:78:9b:09:81:a3:f2:c7:
bb:0e:6c:c4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMjlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDgyMUZBQkM5QjYyQTRG
MEQzOTg5QUExOEVGQjc0RjBDN0EzOTYyNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEr2o18Mm5NR9pU9ixwZa0D+7YQ1sOi8qM1hxce/feNADyarX/
hj7UlO81XtRyr5QryDoZx0pMJDAHQujMrLFQsukS2WIVQAQCZykUmARqF3hN863J
EDU0p4wWfGWc7u2sJs/TSZR7mCzoWzxX39YEVFnd+3mRjbgpdIvQ1zd1a7ftMkkY
hBAqYprBCrCnKX9TdFEx2kRNh12fgOfC5yJki8CmMHpryuVHHPMB9kPear89JTyR
goRZaQtCDlM4wZq3a3aHpLG3WXygHx9+3GVcw8Mlo2+DrqC5SHwxXomk5lpa/8gP
iToqK7d27Oml821qmDfA8ZYKCEeohXV12NVtAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUgh+rybYqTw05iaoY77dPDHo5YkAwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vZ2gtcnliWXFUdzA1aWFvWTc3ZFBE
SG81WWtBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bOTAN
BgkqhkiG9w0BAQsFAAOCAQEApEtXYrtH9QKkZ9UpLuC1yGl2T8oFXz6tl07p7uJm
B/C5bgn4GEX2cUSezUpTkfOTGVU0Mi6IX3kTzc+3GdzrAuwq9BjV3B6D0itPZlyy
Yduxkqff4xrrFLk0WTBJPpTLEPY3C6z98Sl5zHXa65zb9FK8Vjay6HQfFsVp9kGK
Kw2OFXJgGPKs5OEChXVe7EzfrwWRtd0g3iEYyl5qb7BYf93vV5YnWhidxJOA1AO1
0exmtrjDwWncGYH0v0XEfjQVjdL1Ba2j1pYcn5HDuDRZZ1keFUX76259ByLwDDkG
brkTwLKNa3JlIcJi/b3r6KAY9Xes/uJ4mwmBo/LHuw5sxA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:36 2025 by rpki-client