Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/hWHvkAb80W_Fun34lT5JYjZf6bk.roa
File: hWHvkAb80W_Fun34lT5JYjZf6bk.roa (raw, json)
Hash identifier: pm3Ons7RIXzEQ/glfA9aGDf5aH5kl1k98Hm9ylLtQQQ=
Subject key identifier: 85:61:EF:90:06:FC:D1:6F:C5:BA:7D:F8:95:3E:49:62:36:5F:E9:B9
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0AA3
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/hWHvkAb80W_Fun34lT5JYjZf6bk.roa
Signing time: Wed 06 Oct 2021 07:11:21 +0000
ROA not before: Wed 06 Oct 2021 07:11:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2723 (0xaa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:11:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8561EF9006FCD16FC5BA7DF8953E4962365FE9B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:03:37:7a:94:90:90:3d:1d:67:7c:b3:44:d0:
49:4e:99:86:8a:6e:09:e6:18:69:c8:90:3e:b5:2d:
d4:e5:49:51:80:71:8b:16:55:c2:59:a2:8e:22:f5:
fd:a4:43:7a:20:81:25:35:ad:c7:ff:e6:a7:45:1e:
4c:c4:86:28:30:7a:fd:52:98:1d:5a:6f:84:0c:74:
82:99:c3:e4:3d:4c:13:6a:c8:43:f3:c4:3f:c2:4d:
38:23:67:d3:9c:50:6c:d8:56:4d:3d:df:f7:84:35:
cf:76:0e:e1:dd:42:12:41:a7:7d:9d:65:5f:59:fd:
ea:15:2f:c5:86:f1:b4:f7:a7:a8:be:70:b8:6b:dc:
69:83:14:1e:99:11:63:a7:61:69:31:e4:77:08:ab:
ba:d4:33:c5:10:d7:1f:aa:d5:43:c6:3a:6d:21:78:
71:0e:e0:0b:87:45:24:bc:98:cf:30:a9:68:d7:34:
13:4c:a5:a7:42:39:43:8f:19:8a:38:09:e8:31:94:
15:6a:a5:2f:6d:50:a4:a1:05:6f:d8:71:68:3d:8a:
9e:1d:f1:87:7b:2e:15:cc:8f:5c:da:e7:d4:95:ef:
27:ca:ae:f2:a2:47:c4:d8:33:13:4a:2a:f8:1d:c0:
fa:83:c4:67:c3:e7:79:15:3a:01:21:0e:94:88:ac:
1e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:61:EF:90:06:FC:D1:6F:C5:BA:7D:F8:95:3E:49:62:36:5F:E9:B9
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/hWHvkAb80W_Fun34lT5JYjZf6bk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.55.0/24
Signature Algorithm: sha256WithRSAEncryption
11:1f:6c:5f:e0:40:a6:b9:15:32:e7:79:f2:0b:37:99:27:7f:
be:67:02:f6:1e:58:0e:48:20:8c:2f:55:83:79:13:60:3c:c8:
71:98:83:d1:b0:9f:9b:78:4e:e9:68:28:57:ee:52:ae:67:a5:
e3:26:9c:c4:85:27:3c:89:87:67:fd:2a:ef:7b:2c:b3:22:0e:
fb:8c:fa:52:6a:7a:c5:ae:4a:d5:d2:40:d1:81:78:6c:00:e2:
4b:16:77:e8:84:68:20:31:fb:d2:e5:d9:3a:ad:ab:e2:af:9b:
6c:ab:38:72:f0:cf:f5:9a:cd:2b:5a:2d:76:5f:e5:39:52:70:
1e:23:75:e0:e2:02:a7:2e:69:1f:91:fd:f4:6b:ea:62:f7:88:
de:0e:08:37:3f:f4:a2:70:9a:43:4f:67:0d:89:e1:cc:4b:69:
45:a4:fc:4a:5f:3c:51:6e:43:a4:de:22:94:e2:f0:43:d4:23:
a8:4d:57:3c:0c:e0:0c:e0:0d:ae:a9:36:d3:d2:cc:0c:2b:ef:
5f:91:11:f1:1a:51:09:68:31:b0:cd:c8:c0:0a:08:55:0e:f7:
e4:f2:06:cb:ae:f5:d5:18:50:e5:02:aa:70:66:35:dc:43:8d:
0b:9b:48:a2:73:b0:bc:d7:aa:0a:26:1e:6b:f3:44:d5:6b:73:
40:97:1f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:21 2025 by rpki-client