Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/jgqvxnnvz7RE8mB8hrO7LTxtuhQ.roa
File: jgqvxnnvz7RE8mB8hrO7LTxtuhQ.roa (raw, json)
Hash identifier: WTTcto+DIUPq2+8ZrVzX2mobvnvPZbyg2T1nlAr3Lj8=
Subject key identifier: 8E:0A:AF:C6:79:EF:CF:B4:44:F2:60:7C:86:B3:BB:2D:3C:6D:BA:14
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 09AB
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/jgqvxnnvz7RE8mB8hrO7LTxtuhQ.roa
Signing time: Sun 07 Feb 2021 13:10:04 +0000
ROA not before: Sun 07 Feb 2021 13:10:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2475 (0x9ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:10:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8E0AAFC679EFCFB444F2607C86B3BB2D3C6DBA14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:45:d9:9f:05:9c:c3:c1:71:37:84:6b:74:0f:
bb:27:19:c9:c4:76:17:6e:fc:2d:1b:0b:a4:7d:09:
bd:0c:ef:f8:d5:2c:57:2f:3f:41:81:f8:33:70:54:
75:f7:7b:10:8e:dd:8e:43:e5:fe:b2:de:28:57:97:
06:ed:9e:64:bd:b3:f8:6d:43:44:ae:99:53:c7:27:
d8:05:2f:fb:c4:a8:7f:60:c9:26:2a:8d:94:4c:08:
6f:50:eb:4e:86:75:1b:70:b2:9c:8e:54:88:1d:34:
bd:ba:a0:6e:80:5c:01:ab:37:bc:08:41:ad:a0:e0:
a0:f9:5a:a5:e7:e2:29:1f:82:15:9b:2f:54:6e:10:
ce:4a:c6:32:85:17:41:17:7d:ca:da:16:97:40:01:
7e:34:3e:d4:b1:ce:54:25:d0:f4:d5:2b:a5:97:b0:
12:8a:d5:47:5d:3c:e2:c2:6d:3e:1d:3a:bf:fd:b2:
c5:a3:bf:4b:79:c5:bc:89:83:fb:14:fa:9b:b4:f2:
21:2d:95:3c:bc:c7:66:a1:64:1e:fa:15:f5:85:62:
53:41:08:4a:2e:76:1f:61:66:d6:7e:7f:f8:f4:0b:
a6:b3:45:cd:15:05:ef:e4:be:39:f3:8f:f2:59:6b:
17:70:b7:3c:df:d4:1b:3b:3d:66:14:09:d5:f0:de:
86:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0A:AF:C6:79:EF:CF:B4:44:F2:60:7C:86:B3:BB:2D:3C:6D:BA:14
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/jgqvxnnvz7RE8mB8hrO7LTxtuhQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.60.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:c9:31:ae:41:2e:cf:aa:4e:58:05:e3:9b:68:12:ad:10:0f:
2d:5c:83:d4:66:e0:eb:db:ac:1d:42:fa:b8:29:a5:f1:be:53:
56:de:dc:4f:92:0f:38:24:8f:f5:5d:cc:2d:1f:8a:d4:b5:ac:
94:e2:e2:2c:71:d9:1f:67:bd:7e:a9:45:42:55:4e:67:46:66:
fc:ac:d9:cc:66:3d:5a:00:97:9b:58:7e:a4:0a:cb:f3:ef:39:
13:c7:28:a7:db:23:6f:50:9b:d3:83:2f:4f:4e:11:b3:03:ea:
3b:c9:76:4b:aa:d2:cc:e5:39:fa:33:6e:ae:d2:5f:4c:7f:88:
e0:eb:9d:9d:e8:31:be:60:ba:b1:46:b5:ff:f2:70:5a:1b:56:
80:5d:41:b0:7f:43:f7:ee:6d:5c:1e:0b:59:9c:fb:89:e0:00:
6d:c6:8b:80:c8:f4:7e:d6:06:f0:95:ba:28:24:08:ac:22:5e:
f1:f6:11:69:61:d9:ac:e3:27:b9:1d:8c:3c:1a:f9:64:1e:d3:
93:09:4e:94:27:d6:05:81:4c:d6:25:f3:e1:e6:0f:42:ab:7a:
a9:f4:92:4d:b4:93:8f:0d:de:5c:f2:92:d6:7b:08:80:2d:04:
03:a2:03:f3:9e:b6:97:cf:bc:45:c6:2d:f4:79:2f:9c:fe:d0:
21:2f:c9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:11 2025 by rpki-client