Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/lCM5P7ujvtUf9RIiZfzlFQ4vdZQ.roa
File: lCM5P7ujvtUf9RIiZfzlFQ4vdZQ.roa (raw, json)
Hash identifier: Tx79PkUifopgCb/p9gfpCHS6F7GeKXZKGn98E7Yw17Q=
Subject key identifier: 94:23:39:3F:BB:A3:BE:D5:1F:F5:12:22:65:FC:E5:15:0E:2F:75:94
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A9F
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lCM5P7ujvtUf9RIiZfzlFQ4vdZQ.roa
Signing time: Wed 06 Oct 2021 07:10:40 +0000
ROA not before: Wed 06 Oct 2021 07:10:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2719 (0xa9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:10:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9423393FBBA3BED51FF5122265FCE5150E2F7594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e3:08:12:07:94:e3:ff:d7:e9:34:95:08:42:
72:6c:3c:43:b8:12:8a:c4:6b:b3:5b:22:c8:4a:58:
11:ae:41:36:a2:ff:17:45:60:48:58:84:32:9c:e3:
ff:03:c8:25:65:2b:dd:d0:bf:6f:3a:2f:fa:54:96:
4a:97:70:b4:99:34:67:70:ed:3f:19:b6:2f:92:0a:
84:90:33:7b:2e:ed:ca:d1:16:43:07:31:a1:17:99:
4a:c2:e5:1f:d0:f3:cc:ad:a1:6a:f8:10:04:e0:9e:
5f:16:f9:9a:a1:86:2d:27:13:70:0f:e0:8b:5e:7b:
e6:9a:d7:ac:2f:22:7d:93:d6:56:9c:a5:dd:cd:f5:
6e:cb:29:89:16:d7:52:da:40:d1:78:82:2d:25:3e:
ae:e9:ca:c3:65:b2:76:10:cd:79:bc:88:ad:ba:90:
76:57:13:db:89:a8:86:29:1e:22:e4:4c:51:77:dd:
40:d5:b7:d2:9f:84:cd:2c:6a:cf:3d:34:a9:99:7f:
e9:8b:75:05:ae:d1:09:0b:e8:03:72:81:bc:8a:4b:
df:d9:09:51:2c:63:e5:32:fc:b5:22:32:89:88:c5:
39:ec:48:1b:5e:39:dc:1e:d5:bd:fe:ab:84:2a:77:
70:21:c8:2a:c2:e7:1c:84:b8:b6:58:11:12:19:ec:
75:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:23:39:3F:BB:A3:BE:D5:1F:F5:12:22:65:FC:E5:15:0E:2F:75:94
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lCM5P7ujvtUf9RIiZfzlFQ4vdZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.53.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:a0:95:3b:ca:98:29:6e:ef:bc:21:31:fa:2a:0f:29:a2:a0:
7c:08:e7:20:4a:84:8a:29:65:d2:8f:55:fc:6a:ff:0b:ad:39:
43:77:16:42:07:59:77:42:19:79:eb:1d:40:0b:c3:94:b2:c4:
0c:1c:9e:b4:b8:35:fc:82:0b:7a:0a:94:12:b2:d3:7b:0a:d3:
9c:6f:ec:17:81:d4:d3:0a:a6:1c:13:ee:d8:c6:32:e2:99:bf:
21:79:8d:ad:66:4c:d4:8a:d2:38:ab:81:bc:80:61:b0:60:31:
9b:64:3f:3b:2c:50:da:78:e1:79:9e:11:83:ff:fa:9e:d1:95:
64:43:b3:fe:4f:92:32:f0:c2:e7:d8:a3:44:38:cf:f0:1b:54:
9a:d7:e5:df:a9:c3:40:0c:3d:53:ea:f6:af:b4:45:0c:db:24:
9c:69:93:73:8b:d0:80:d5:ab:f3:08:d5:2f:ec:fa:4f:cd:e9:
87:1f:94:9b:a3:2b:12:40:96:62:09:88:07:54:81:4e:46:67:
29:3d:46:0f:9a:93:c9:c7:8d:b8:b0:7e:83:04:2e:16:27:5d:
a5:f5:6b:40:13:a6:a8:91:20:f1:2d:62:c9:39:24:83:b1:4a:
3f:41:76:da:64:30:3e:86:76:bf:60:66:b8:4d:cc:7d:dc:04:
dc:b8:4e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org