Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/iPjXpbDF-LfuwfJ_FqgAkwqX0Eg.roa
File: iPjXpbDF-LfuwfJ_FqgAkwqX0Eg.roa (raw, json)
Hash identifier: rqyx3lgzSEYTDBY//OL4JcApX+ZOdwkxP3E8wV6yZJw=
Subject key identifier: 88:F8:D7:A5:B0:C5:F8:B7:EE:C1:F2:7F:16:A8:00:93:0A:97:D0:48
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08C6
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/iPjXpbDF-LfuwfJ_FqgAkwqX0Eg.roa
Signing time: Fri 11 Dec 2020 09:03:05 +0000
ROA not before: Fri 11 Dec 2020 09:03:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2246 (0x8c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:03:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=88F8D7A5B0C5F8B7EEC1F27F16A800930A97D048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cc:1c:1f:8c:54:bf:c5:1d:4a:0f:72:60:1c:
23:96:2f:e8:9b:89:a9:92:85:29:e6:f1:39:63:d7:
3e:d3:7e:a9:72:fa:1b:9d:75:43:4f:98:8a:45:f1:
d7:98:e5:5c:d7:3c:18:9a:0e:b9:49:3d:ce:cb:d4:
c5:b7:b5:34:52:4b:6b:59:5d:94:8a:91:c9:f4:61:
d1:77:a4:0f:f1:fb:38:68:90:d1:58:09:92:16:54:
2c:5f:7b:67:1f:d2:70:ea:32:43:84:07:3d:3e:d4:
bf:64:cc:12:4b:0a:48:40:83:08:cd:7e:39:0d:46:
02:9c:6f:38:f9:18:93:6d:a6:51:e7:db:60:61:55:
55:b9:8a:fb:7d:83:30:18:4a:ca:05:b9:11:c0:f0:
ff:55:d5:0b:d6:aa:8d:08:5f:8e:41:23:6a:34:81:
40:53:59:f1:12:1e:ec:8b:74:0c:11:1b:2a:14:0c:
67:13:e3:1b:cd:0d:ec:b7:66:f9:f0:47:86:96:3d:
7d:65:b5:e8:ff:8c:39:0f:23:a4:46:44:3b:86:1f:
75:f5:33:30:d1:7c:e3:fe:f4:b8:b3:4d:83:ee:aa:
d2:37:e7:45:d9:ed:d8:ad:9e:f1:dd:f7:ff:6d:56:
b2:d4:99:f6:86:63:a6:65:d1:38:57:c8:1a:66:f9:
95:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F8:D7:A5:B0:C5:F8:B7:EE:C1:F2:7F:16:A8:00:93:0A:97:D0:48
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/iPjXpbDF-LfuwfJ_FqgAkwqX0Eg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.132.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e4:42:eb:3b:86:1a:97:5c:25:30:bf:22:16:46:83:3e:c0:
c1:62:be:0f:de:36:f8:f7:aa:c7:b1:31:eb:95:e9:71:0c:c9:
2a:43:9a:ec:5f:24:4f:08:64:d1:d3:4a:ae:35:b3:0f:9a:f9:
84:58:54:d3:44:4c:9e:6d:80:1b:46:80:b1:1d:d1:f3:be:af:
1b:10:8f:41:6e:38:0d:37:f4:24:3d:12:ba:83:35:f8:1d:36:
09:47:97:b7:f9:8d:8f:5c:73:a2:16:8e:0f:30:33:96:38:1a:
db:dc:c4:c9:ba:42:61:14:95:67:1c:df:1a:9c:d8:41:86:90:
43:35:57:5c:e0:8a:30:c6:6e:24:4b:ca:9e:ae:e9:a7:f6:33:
8a:d3:f7:43:71:a3:0d:fc:15:85:52:40:2c:fe:cb:35:52:b6:
17:dc:8d:f3:1d:14:6a:1c:c5:f3:4d:16:86:78:62:6b:d3:2c:
a4:f0:2d:07:7c:90:6b:8c:5f:ea:8b:a8:4f:ae:9d:67:c9:49:
fb:84:ec:7d:91:6d:ee:85:74:eb:da:58:66:d3:c6:7e:cd:d6:
94:8f:5e:97:a4:80:68:8f:69:d1:d4:44:e5:f6:34:b9:47:e2:
2b:ac:43:b3:6e:5a:92:2c:74:b4:d7:ac:2b:11:f1:34:be:0e:
de:da:1c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org