Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/k9Jddy7qNoPezsfz0oVwJj5u62Y.roa
File: k9Jddy7qNoPezsfz0oVwJj5u62Y.roa (raw, json)
Hash identifier: 5cmKwG1nbNnnvz9aCRBNwd6Dm9HdOEym3V8aO92kLeI=
Subject key identifier: 93:D2:5D:77:2E:EA:36:83:DE:CE:C7:F3:D2:85:70:26:3E:6E:EB:66
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0775
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/k9Jddy7qNoPezsfz0oVwJj5u62Y.roa
Signing time: Tue 29 Sep 2020 09:51:40 +0000
ROA not before: Tue 29 Sep 2020 09:51:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1909 (0x775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 09:51:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=93D25D772EEA3683DECEC7F3D28570263E6EEB66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:15:cb:83:e5:a0:5c:72:bc:1e:31:df:d3:19:
87:67:b4:b3:de:55:5e:1c:5a:10:d8:4e:d9:79:a6:
d1:bd:eb:92:d1:e8:45:4c:74:43:f8:e9:84:ff:19:
1a:a7:82:d1:77:0b:3a:6a:e9:cb:e2:c5:01:64:a3:
cb:f7:f8:80:7a:b9:b0:7d:22:45:45:c9:38:0d:5c:
54:67:46:8b:0f:2a:c4:c6:e0:4a:fe:1d:be:94:e9:
12:df:b7:ab:d2:f5:d6:50:31:08:f4:6d:91:7a:ef:
eb:07:06:a5:1d:09:b0:73:8d:c2:4d:3d:66:16:f2:
d7:7b:44:f8:df:ea:07:cf:03:70:65:3a:10:24:6e:
0d:0b:9a:57:1f:8d:8b:fa:17:8f:95:71:17:d2:3e:
4d:f0:89:66:72:8f:59:cd:44:21:e4:18:22:20:88:
02:bd:58:72:7f:b7:7f:be:74:b2:90:af:36:82:c4:
80:6a:a6:03:fb:bb:f3:85:77:59:e1:d2:ae:00:a5:
9a:ce:86:fe:91:28:0b:71:8d:27:ce:14:99:49:17:
45:4b:76:c5:ac:1a:75:ad:68:ec:d5:a7:0d:a7:a5:
b2:7c:c5:c1:f4:ae:59:f5:73:75:4a:d5:b2:09:9a:
c0:12:3f:93:e7:51:24:30:8e:01:c8:47:56:55:3c:
9f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D2:5D:77:2E:EA:36:83:DE:CE:C7:F3:D2:85:70:26:3E:6E:EB:66
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/k9Jddy7qNoPezsfz0oVwJj5u62Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.128.0/21
Signature Algorithm: sha256WithRSAEncryption
65:f5:80:33:ed:f4:8c:af:c2:56:00:91:63:f7:63:71:80:00:
a6:5f:62:a2:63:9e:7e:fd:73:46:42:df:d1:4d:30:2f:02:0c:
19:4b:71:83:32:4b:fb:55:2e:2e:28:11:be:74:9b:37:cf:6f:
0e:c4:fc:ef:8f:86:f6:c5:35:90:d4:d4:c3:6a:ac:a6:2f:b5:
3f:fc:1d:8b:17:12:ca:1f:39:05:53:ef:c0:da:1f:a2:c4:c7:
29:07:95:c4:68:ba:c3:71:d7:36:1c:42:08:5b:0a:51:ce:7a:
8a:73:18:64:8b:58:ca:64:eb:68:c5:f5:f7:70:be:79:fc:78:
fd:15:39:73:02:ab:c6:1f:91:ed:0b:f9:71:4c:ac:5d:5a:99:
d4:09:5a:b9:9d:fb:8a:08:63:79:57:84:74:c8:b7:b2:05:83:
ef:5c:d1:0a:50:a9:47:c0:0e:9c:77:a1:53:70:95:e0:8d:87:
2b:9a:a0:6b:c2:56:10:a9:c0:25:8e:5c:e2:e4:13:86:19:30:
85:2e:ff:e6:6d:52:b7:bb:ef:8d:fb:a4:a6:c8:c5:ea:68:9a:
e2:8c:3e:9c:d8:0e:d6:a9:7c:7d:79:05:a0:16:38:95:e6:65:
eb:55:f4:c7:6a:71:32:25:57:f0:80:fd:a0:00:50:b3:e2:d7:
26:3d:aa:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org