Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/p0Ba-SUZbjFTkxvPRrhuZAZeFrY.roa
File: p0Ba-SUZbjFTkxvPRrhuZAZeFrY.roa (raw, json)
Hash identifier: fRXbG2JP1o9LItF/+LT5vt+vudOt8U37Mi5XI02nalw=
Subject key identifier: A7:40:5A:F9:25:19:6E:31:53:93:1B:CF:46:B8:6E:64:06:5E:16:B6
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/p0Ba-SUZbjFTkxvPRrhuZAZeFrY.roa
Signing time: Thu 15 Sep 2022 02:42:27 +0000
ROA not before: Thu 15 Sep 2022 02:42:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A7405AF925196E3153931BCF46B86E64065E16B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:15:31:b2:08:7a:1d:20:2f:90:3c:83:f5:1d:
d5:66:71:4e:5a:fa:04:31:75:ac:e2:d8:44:fe:dc:
61:d5:f4:b0:6d:e9:d3:3a:c2:88:6c:1a:6f:46:10:
52:c8:62:b3:e1:c3:80:9e:be:1a:c3:44:dd:4c:fa:
e6:d7:5f:36:7c:7e:b9:9d:25:86:86:89:c1:7d:42:
9a:6c:bd:c8:fe:b4:0a:d8:48:cd:c3:ca:95:6a:b3:
5a:f9:66:7e:34:a4:24:75:87:3e:a6:cf:70:b7:dc:
dd:07:0d:f3:23:9d:c2:8c:59:d8:ef:c0:7c:06:62:
cf:97:5e:51:7a:85:11:24:b8:14:73:be:83:98:97:
98:8c:b9:20:60:72:57:81:af:43:5e:2f:21:b8:e6:
78:18:f0:b4:c6:ed:58:f4:22:13:4d:a1:bf:ce:4d:
0f:90:c6:ac:4f:99:13:89:4e:a0:1f:fd:57:c7:73:
ab:3c:53:59:16:2d:9a:a9:87:1e:24:1d:92:0b:fe:
59:83:cf:09:a1:13:af:16:12:76:94:b2:26:0e:b2:
7e:77:44:3c:bd:6c:90:85:d5:27:b6:b5:89:bf:ab:
4f:e3:cb:96:6c:c3:68:bc:98:64:6f:0a:51:c7:f4:
72:22:0b:e1:10:c2:a0:36:d6:77:1e:bc:c8:fa:43:
75:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:40:5A:F9:25:19:6E:31:53:93:1B:CF:46:B8:6E:64:06:5E:16:B6
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/p0Ba-SUZbjFTkxvPRrhuZAZeFrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.54.0/24
Signature Algorithm: sha256WithRSAEncryption
40:7f:eb:e8:7f:07:b9:a1:21:30:34:3d:b2:ad:f1:f1:11:13:
82:71:6b:73:91:85:5c:e7:82:f8:eb:df:19:2f:0c:54:5e:85:
79:6c:0f:ef:26:0a:fb:59:8d:44:ad:a9:67:1a:c5:1e:31:43:
d5:83:ef:3e:34:19:9f:02:88:ff:de:ed:9d:31:4b:14:f5:9f:
d2:a0:82:39:f4:8e:d2:79:82:ba:f4:06:7e:27:5d:40:80:6a:
c6:db:41:d4:f8:51:9f:dc:9d:a9:dd:d2:1d:66:a9:c8:8e:3e:
4e:db:45:ab:0a:b8:bc:a6:a1:99:cb:7a:9d:65:8b:dd:15:9b:
5b:3f:e2:f3:ea:74:24:c1:4a:07:6b:26:33:f4:7c:76:ee:22:
d3:02:d8:b8:12:66:0c:cd:7d:ad:1a:6a:b5:7f:2c:ee:3f:2f:
6d:46:d5:84:45:1c:d7:fd:0a:80:eb:3f:6c:aa:c3:83:3b:2a:
c7:02:8d:ef:e3:74:8a:85:83:86:e9:64:32:24:14:fa:ef:d5:
bc:b7:55:d6:ae:3b:ac:05:3b:77:80:86:36:3a:61:b0:5d:9a:
34:c2:06:4e:4d:c1:cb:6e:d7:0c:38:2d:87:51:bd:e9:29:74:
89:85:13:35:1c:58:6f:a2:be:2c:a6:78:0f:1e:e0:a2:7f:22:
64:05:8b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:21 2025 by rpki-client