Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/lEhiZjLZKTr5tgzTywrCq617b5Q.roa
File: lEhiZjLZKTr5tgzTywrCq617b5Q.roa (raw, json)
Hash identifier: 3FwB3uX5qopN6fwPOlt/Z69KNtQslAQZVJxYFx6e3LA=
Subject key identifier: 94:48:62:66:32:D9:29:3A:F9:B6:0C:D3:CB:0A:C2:AB:AD:7B:6F:94
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A6C
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lEhiZjLZKTr5tgzTywrCq617b5Q.roa
Signing time: Wed 29 Sep 2021 02:42:46 +0000
ROA not before: Wed 29 Sep 2021 02:42:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9448626632D9293AF9B60CD3CB0AC2ABAD7B6F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:50:dd:81:cf:fb:dd:13:3e:2f:15:9c:fd:09:
49:2d:52:cb:06:32:62:f0:3b:24:c6:c5:4f:36:24:
54:47:d9:cb:28:c7:b3:62:b1:dd:19:3c:e6:7b:b4:
d5:b9:5a:84:eb:2c:fb:f0:3f:c5:09:c7:31:c2:ed:
f6:12:6f:b4:01:d6:08:98:a9:49:48:1c:30:19:94:
a8:94:05:be:12:d2:3f:23:24:75:b2:1e:fc:4d:e1:
0b:7c:60:4d:8b:93:00:a1:ce:ac:67:07:3a:6b:61:
df:fb:2d:f9:61:a6:ed:38:e0:9d:82:48:4e:d0:0c:
73:49:5e:93:09:e9:83:a5:e7:dd:bf:91:8a:b1:74:
eb:d5:3f:f7:6a:17:67:f9:33:37:ef:46:b4:0d:eb:
7f:9d:f7:27:89:df:8c:7b:9b:f7:de:47:f7:23:27:
da:1e:64:58:f2:07:3a:bf:b0:cb:a1:0f:e8:fd:3c:
ba:11:00:6a:33:a5:52:98:0c:34:6b:3a:ed:ab:25:
63:00:33:b0:1d:87:5e:b8:de:bd:3d:43:59:c3:29:
72:bd:fd:75:f5:3b:7c:63:4d:82:a4:d7:5f:ba:43:
5c:b7:73:d9:35:d8:be:97:52:e8:09:2b:19:bc:32:
09:2c:f2:31:48:c5:9d:18:94:8b:e1:d3:7e:c9:4c:
2c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:48:62:66:32:D9:29:3A:F9:B6:0C:D3:CB:0A:C2:AB:AD:7B:6F:94
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lEhiZjLZKTr5tgzTywrCq617b5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.35.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:00:d3:8f:fa:ff:40:10:e8:0e:0c:10:cb:55:4f:92:c3:fd:
5c:60:3a:43:5b:52:2f:47:47:a7:4d:cf:ea:f0:5d:8d:01:62:
79:67:bc:70:80:bd:95:87:9c:a9:ab:bd:85:26:3e:a8:47:ab:
c8:13:91:0d:71:21:a6:76:b0:fa:7f:b4:56:82:05:9a:44:fa:
b8:c7:fe:3a:a5:a1:5b:27:9d:b2:53:66:50:3a:04:ab:d3:ba:
33:43:a8:2d:cb:2e:c5:33:88:33:68:17:28:69:12:fa:63:f1:
84:8d:90:39:25:7b:09:e7:55:57:41:fc:17:5a:78:2e:1a:98:
68:6c:2b:fe:32:4b:d1:50:22:a7:e6:5b:f7:17:6e:a7:04:39:
0d:67:e5:e8:29:97:7c:7e:d1:32:38:a4:d7:7b:c4:4c:54:87:
4b:72:94:92:e9:4b:5d:e4:b7:c9:8f:f3:be:b4:4b:2e:81:54:
65:a0:a2:06:17:e5:90:4b:b4:09:f6:8f:5f:79:19:d5:66:21:
82:c5:fa:fc:a2:1c:aa:6f:b9:04:27:5c:54:8e:27:b7:46:86:
f7:e8:32:e8:66:ba:6a:f9:8e:47:e7:e8:bf:12:02:0d:27:99:
7a:d2:ca:5a:38:e1:73:b8:72:3d:4c:cb:a0:76:57:6a:48:9d:
73:8b:31:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org