Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/mauC3r_zhrh9eonKCe_WiCwCo4U.roa
File: mauC3r_zhrh9eonKCe_WiCwCo4U.roa (raw, json)
Hash identifier: C99WxvIDk6dIMk/tWu3lsGLvro7pOUzK7SrhtOYz82o=
Subject key identifier: 99:AB:82:DE:BF:F3:86:B8:7D:7A:89:CA:09:EF:D6:88:2C:02:A3:85
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0965
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/mauC3r_zhrh9eonKCe_WiCwCo4U.roa
Signing time: Sun 07 Feb 2021 13:09:00 +0000
ROA not before: Sun 07 Feb 2021 13:09:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2405 (0x965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=99AB82DEBFF386B87D7A89CA09EFD6882C02A385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:a5:f3:f2:c6:0f:9e:f1:cd:0d:95:16:62:
55:44:49:a7:63:e2:c8:47:f7:b6:90:81:98:f7:cd:
6d:5f:cd:d6:f0:d4:47:97:e4:25:f1:01:82:f2:36:
ec:a3:fe:bc:4c:f9:f3:8e:9d:51:6b:e9:4a:8c:60:
1f:24:58:16:ae:5c:4f:6f:e3:37:8e:16:25:f6:c9:
a9:35:70:f2:53:d6:0c:61:f9:49:83:19:56:96:7c:
0d:e4:13:81:9c:11:5b:99:08:0f:d1:5e:2c:69:f6:
a8:b8:46:9d:8b:6a:22:b6:7d:de:86:0d:61:17:02:
77:3d:8b:32:34:e2:23:78:9b:6f:88:27:26:39:c7:
0a:5b:ce:bc:74:34:bf:47:59:a4:9e:c3:7a:16:31:
60:ea:a5:64:e2:db:09:e5:03:b9:ac:3a:27:7c:08:
e5:16:41:24:f8:33:ae:79:fd:2d:b3:20:eb:a5:79:
64:31:0d:e0:99:02:df:35:96:70:95:7f:50:57:2f:
4d:81:6e:b9:68:65:82:ba:af:51:ca:24:3c:89:09:
38:4e:61:1d:a1:cd:c5:c9:51:f0:a6:23:63:0e:6a:
b2:79:44:74:d3:d6:a9:c3:f7:8d:f0:61:c3:56:37:
e0:3d:b6:f5:42:9a:6c:45:36:cd:d5:e4:c4:09:8e:
d6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AB:82:DE:BF:F3:86:B8:7D:7A:89:CA:09:EF:D6:88:2C:02:A3:85
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/mauC3r_zhrh9eonKCe_WiCwCo4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:77:ab:61:d3:ec:a2:ee:a3:7b:58:e4:8b:4d:6c:fa:45:8d:
da:08:d2:27:1e:0f:75:c0:66:80:9f:f6:c0:89:45:0f:ee:ae:
1a:be:45:92:13:b0:82:e2:c2:4c:06:55:27:c9:c0:cb:97:39:
f3:2a:fd:de:05:30:a0:28:23:f3:93:94:4b:17:03:d3:30:0c:
cb:15:82:c8:ec:f6:de:a2:00:b7:66:9a:5a:a4:02:09:84:3e:
8f:f1:8a:5e:1d:13:de:7a:0c:04:65:47:c7:ac:ae:7e:30:9a:
7f:c0:3d:dd:b7:d4:02:bd:bd:59:d3:98:21:db:34:81:e9:53:
a9:3e:67:fd:bf:72:67:fc:a5:67:7c:dd:f4:a3:d7:67:9a:f2:
89:ec:ae:fd:3b:a6:68:5a:10:be:29:77:cb:c9:34:96:8a:db:
c0:d9:3f:cf:09:e7:78:88:80:d4:b2:62:41:e7:b7:d3:09:34:
89:41:8d:2d:20:72:aa:62:a5:72:c0:43:43:7c:15:6f:82:52:
ca:73:f1:c2:93:dd:f6:41:6d:19:86:40:9f:53:08:ae:be:21:
95:3e:dd:ac:db:66:f4:c0:92:f2:b2:ba:74:d9:9d:d1:ae:30:
55:eb:be:5d:38:25:50:93:be:ad:6c:9d:06:a4:d3:a6:8f:7b:
00:a9:ee:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org