Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/h-ExCuNQRxeUin_zvHLgHSlB0Tw.roa
File: h-ExCuNQRxeUin_zvHLgHSlB0Tw.roa (raw, json)
Hash identifier: zP+CN+rsx2TpvFahhJ4rbMvf6FkKNz6gTtwMw8FlUGc=
Subject key identifier: 87:E1:31:0A:E3:50:47:17:94:8A:7F:F3:BC:72:E0:1D:29:41:D1:3C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/h-ExCuNQRxeUin_zvHLgHSlB0Tw.roa
Signing time: Thu 15 Sep 2022 02:42:32 +0000
ROA not before: Thu 15 Sep 2022 02:42:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87E1310AE3504717948A7FF3BC72E01D2941D13C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c9:53:ab:28:a5:00:37:be:bb:76:60:a1:56:
83:69:46:92:ef:28:9f:8f:9a:b3:e5:ca:b9:d7:9f:
cb:ac:6f:b5:67:67:5b:b3:b6:c5:4c:b7:65:4a:50:
4f:0b:56:1a:85:46:b0:5a:35:2b:4b:ab:6d:05:fd:
ac:d5:61:fe:5f:1d:64:94:4e:32:77:8d:9e:60:a2:
3e:20:fa:ed:bc:22:9c:26:32:55:f7:17:cf:16:f6:
8d:5d:f5:51:fa:fa:3b:b4:d4:1e:e4:b5:6e:84:b1:
03:4a:41:6b:75:f7:4a:ea:0b:94:1d:12:7a:da:1d:
5e:69:cc:f6:32:60:0b:7d:9b:60:c8:78:67:c9:8c:
f8:7c:7d:db:36:59:83:0c:a6:eb:a2:cf:4b:b5:63:
60:6f:c9:fd:e5:64:da:89:a4:1b:7e:26:43:36:b0:
3e:40:ad:cb:1f:49:8c:ad:1c:df:cf:5d:72:36:18:
a8:80:d9:3a:f3:6d:8a:7c:22:b0:e0:2e:b9:a2:e3:
0f:9f:b3:56:74:af:9f:9a:4d:2e:80:f3:f6:d2:36:
05:46:e1:67:1d:0e:2a:8f:6f:ef:d8:f2:54:87:d3:
24:3d:f2:86:d7:10:f1:63:88:2a:bb:75:e3:1d:3a:
ac:2c:d6:41:cb:1e:2d:34:36:0f:90:48:38:c8:01:
be:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E1:31:0A:E3:50:47:17:94:8A:7F:F3:BC:72:E0:1D:29:41:D1:3C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/h-ExCuNQRxeUin_zvHLgHSlB0Tw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.59.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:af:d1:75:af:58:b4:93:8c:fc:29:67:d4:aa:03:83:6d:cf:
ee:f3:cb:47:3e:7a:37:0b:55:0c:98:0d:8d:e5:7f:4a:08:a9:
11:ae:84:71:55:2a:3c:3c:ed:9a:36:81:bc:ba:b1:12:90:7a:
ae:71:da:07:8f:6f:77:06:5c:50:6e:bb:4f:c9:86:e6:c8:35:
e4:5d:54:0c:a3:f9:2c:c6:c4:e4:41:1e:f7:9b:59:77:97:7a:
63:e9:fa:63:54:3f:05:b3:be:db:c5:51:df:72:59:58:82:b0:
e5:74:f3:e0:67:d6:5e:3f:a8:25:e4:68:25:ac:80:21:26:90:
12:b6:f0:70:bc:7f:8a:3d:e3:79:57:07:1c:06:57:3b:11:38:
e7:b2:6c:3b:71:f4:34:dd:51:91:2d:67:ed:70:fd:f2:1d:05:
11:10:f3:4d:ab:2b:83:79:59:1a:fa:b3:ac:22:a7:33:9d:0d:
8a:6e:35:1d:4f:4b:f8:cd:e2:0e:cf:a5:fb:47:98:1b:1e:f5:
14:9e:74:0a:56:52:a1:3b:d8:54:02:31:0d:54:00:60:7a:99:
ae:2f:d3:d6:07:f3:68:83:86:4b:14:d1:10:f0:b8:1b:6a:c4:
29:c2:90:84:ad:f2:ee:b8:c9:e8:fe:11:98:25:84:fd:af:86:
95:84:f9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org