Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/iTWatCi2dUoC4uj4cLrQ5K3vRwQ.roa
File: iTWatCi2dUoC4uj4cLrQ5K3vRwQ.roa (raw, json)
Hash identifier: xMFOf9b0FFRTmJjz8out40LtolT5MWJH3b5Q8JAP8Pw=
Subject key identifier: 89:35:9A:B4:28:B6:75:4A:02:E2:E8:F8:70:BA:D0:E4:AD:EF:47:04
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/iTWatCi2dUoC4uj4cLrQ5K3vRwQ.roa
Signing time: Thu 15 Sep 2022 02:42:23 +0000
ROA not before: Thu 15 Sep 2022 02:42:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=89359AB428B6754A02E2E8F870BAD0E4ADEF4704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:81:ad:a4:26:3d:e4:41:3b:23:d4:67:eb:eb:
64:fa:13:ba:5e:cd:4e:a8:1d:50:f2:92:29:87:1f:
da:69:93:c1:ed:1d:88:09:32:b5:85:aa:37:9e:cf:
19:bb:d0:d1:95:4d:30:40:cc:fb:fa:67:31:a1:85:
76:12:29:aa:33:b0:cc:32:07:ac:e3:20:bb:0c:ef:
d7:f5:cc:6a:13:e2:46:b3:be:61:68:ba:97:4a:e9:
f9:8e:96:f6:0d:e6:e0:82:ab:40:12:00:da:d0:69:
88:14:52:53:57:d4:77:52:b0:7d:14:e1:ba:7d:96:
56:9c:fa:48:77:37:21:6f:68:21:bb:65:58:ac:d8:
28:ea:4f:c5:55:bf:86:6d:79:73:f5:fc:ef:f9:6b:
13:9a:b4:82:3e:44:04:49:b7:53:9f:6a:cb:b5:42:
95:72:06:f6:34:12:99:ad:cd:4d:95:6d:78:a8:ad:
2f:08:ff:c5:0c:07:9e:c1:73:af:18:9f:41:e6:34:
a2:9b:e8:57:b1:83:0a:a2:9e:e5:eb:dd:cf:98:7a:
8b:f8:10:78:9a:5f:aa:9a:dd:98:6f:5f:61:43:92:
33:9c:60:cd:c3:56:45:e6:eb:e4:6e:5b:65:c2:6f:
f8:3e:03:c4:f3:2e:b8:28:3e:29:8f:5a:21:ba:a6:
c4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:35:9A:B4:28:B6:75:4A:02:E2:E8:F8:70:BA:D0:E4:AD:EF:47:04
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/iTWatCi2dUoC4uj4cLrQ5K3vRwQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.42.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:0d:1d:1d:90:2a:76:31:f9:13:45:a4:fe:bf:6c:e8:18:71:
68:1c:b2:8b:50:e3:fa:39:a8:e4:0d:2f:68:4c:6f:6b:f1:7d:
7c:cf:bc:0b:7b:01:d3:35:19:39:a4:4c:d1:94:b1:f2:b2:f7:
d5:28:3e:0c:1a:f2:97:c4:b4:d4:be:24:b2:84:7c:90:b2:d8:
d8:4d:d7:e6:5f:13:77:81:c2:37:61:02:81:e5:3b:46:d1:04:
b8:71:e3:d7:67:eb:e7:85:80:28:5e:3d:b5:2b:9c:8e:cb:57:
65:49:e3:1d:b2:68:d0:c9:df:5d:9f:87:16:71:68:34:e1:c6:
06:e3:9b:69:bd:1a:e1:a3:6b:29:84:44:90:f6:ab:5c:76:92:
f7:a4:5f:bf:fc:14:ca:df:02:e1:c3:f5:a6:12:21:fa:fe:9f:
16:8a:bb:0b:b2:7d:77:ef:2e:ac:ef:9e:a8:5a:98:9e:4c:38:
5e:75:66:39:fb:3a:7e:68:e9:ef:3c:da:0c:29:f3:38:60:ab:
23:b6:b5:7b:bb:bf:77:00:73:7d:0b:12:ae:7f:de:50:ce:c3:
a5:b6:b8:68:7d:52:af:a6:c3:8c:4d:04:16:de:45:e7:4e:b9:
ee:53:2a:63:c2:65:98:ca:80:3f:dd:6d:25:d3:28:5f:ea:82:
0d:97:48:53
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMjNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg5MzU5QUI0MjhCNjc1
NEEwMkUyRThGODcwQkFEMEU0QURFRjQ3MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7ga2kJj3kQTsj1Gfr62T6E7pezU6oHVDykimHH9ppk8HtHYgJ
MrWFqjeezxm70NGVTTBAzPv6ZzGhhXYSKaozsMwyB6zjILsM79f1zGoT4kazvmFo
updK6fmOlvYN5uCCq0ASANrQaYgUUlNX1HdSsH0U4bp9llac+kh3NyFvaCG7ZVis
2CjqT8VVv4ZteXP1/O/5axOatII+RARJt1Ofasu1QpVyBvY0EpmtzU2VbXiorS8I
/8UMB57Bc68Yn0HmNKKb6FexgwqinuXr3c+Yeov4EHiaX6qa3ZhvX2FDkjOcYM3D
VkXm6+RuW2XCb/g+A8TzLrgoPimPWiG6psQBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUiTWatCi2dUoC4uj4cLrQ5K3vRwQwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vaVRXYXRDaTJkVW9DNHVqNGNMclE1
SzN2UndRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bKjAN
BgkqhkiG9w0BAQsFAAOCAQEAsA0dHZAqdjH5E0Wk/r9s6BhxaByyi1Dj+jmo5A0v
aExva/F9fM+8C3sB0zUZOaRM0ZSx8rL31Sg+DBryl8S01L4ksoR8kLLY2E3X5l8T
d4HCN2ECgeU7RtEEuHHj12fr54WAKF49tSucjstXZUnjHbJo0MnfXZ+HFnFoNOHG
BuObab0a4aNrKYREkParXHaS96Rfv/wUyt8C4cP1phIh+v6fFoq7C7J9d+8urO+e
qFqYnkw4XnVmOfs6fmjp7zzaDCnzOGCrI7a1e7u/dwBzfQsSrn/eUM7Dpba4aH1S
r6bDjE0EFt5F50657lMqY8JlmMqAP91tJdMoX+qCDZdIUw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org