Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/pggCv9f1KoH58MFRyUEAVVqS0R8.roa
File: pggCv9f1KoH58MFRyUEAVVqS0R8.roa (raw, json)
Hash identifier: 5ucjkPy59i8zV2M2IxpljS3KvhcEOYZVyCtWFGGrvQA=
Subject key identifier: A6:08:02:BF:D7:F5:2A:81:F9:F0:C1:51:C9:41:00:55:5A:92:D1:1F
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0773
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/pggCv9f1KoH58MFRyUEAVVqS0R8.roa
Signing time: Tue 29 Sep 2020 09:51:39 +0000
ROA not before: Tue 29 Sep 2020 09:51:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1907 (0x773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 09:51:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A60802BFD7F52A81F9F0C151C94100555A92D11F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:03:dc:31:6e:d8:d4:90:28:a5:47:62:47:05:
eb:43:06:83:a5:ce:14:7c:d5:bd:59:a1:c0:83:94:
13:40:c2:bb:07:42:1b:ec:53:9f:b7:97:1a:51:c3:
b8:38:9e:53:ac:4a:d0:b0:c9:91:d2:ac:d1:34:a7:
f8:9e:97:f5:0d:de:1a:43:a0:e3:ba:58:ac:a1:e6:
7f:72:79:ab:9f:46:18:fb:0a:8d:ae:76:dd:56:58:
6b:44:3d:b6:43:a4:1e:e6:48:c6:4d:de:40:88:d6:
de:ef:60:c0:07:16:8e:26:48:fe:91:2b:3e:d1:75:
63:1b:0a:47:03:08:d1:91:6f:a6:d3:8a:a4:1c:8c:
b6:b0:e0:a9:a5:51:6a:3f:b5:85:de:01:16:78:22:
39:f4:f4:ae:8e:9d:37:c0:43:40:81:b8:a9:cb:ed:
c8:f6:77:db:18:cd:1b:48:00:49:f2:b6:f7:55:38:
84:cf:5f:28:f1:d6:0f:4b:68:be:22:6a:fa:44:07:
e8:b5:1b:57:cc:c0:e1:34:13:56:d4:f3:cf:1f:fd:
b0:5a:32:62:e5:29:b1:79:de:0d:ac:4d:9a:21:5b:
e2:aa:3f:48:fb:ce:23:f1:5c:13:e4:5c:0b:17:fd:
d6:c9:21:72:82:cb:a4:da:ea:df:52:c3:14:6e:bb:
43:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:08:02:BF:D7:F5:2A:81:F9:F0:C1:51:C9:41:00:55:5A:92:D1:1F
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/pggCv9f1KoH58MFRyUEAVVqS0R8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.32.0/19
Signature Algorithm: sha256WithRSAEncryption
80:cc:bc:f5:37:d8:79:18:65:0f:75:07:71:72:86:4d:f8:0d:
0a:27:5d:86:c3:7f:84:57:ba:69:80:24:88:e9:96:40:15:b0:
3c:52:4e:88:1e:97:6a:72:24:7a:22:57:42:cc:63:4a:dc:40:
7e:28:f3:1d:06:93:cf:87:0e:82:9b:7c:b3:e3:9d:0e:81:14:
c0:51:39:26:7a:1d:82:4e:6c:70:7e:80:8a:25:25:3b:53:04:
8d:96:28:0e:31:39:2d:13:29:02:8b:77:b9:13:55:96:28:33:
dd:0a:7c:c3:7d:eb:0a:4b:d2:cd:85:01:75:69:bd:be:7f:3f:
3f:98:dc:1e:2c:cb:77:98:75:69:2f:7f:b4:1c:7c:11:e1:c6:
8f:3b:26:b6:4d:90:d3:d0:aa:c5:52:88:bc:47:60:9d:36:4b:
52:d2:9a:b1:e2:98:83:34:6b:71:9e:7e:86:33:08:f3:33:7a:
66:4e:3f:4f:56:42:fc:99:eb:5c:8d:e7:3e:6b:f1:29:3f:80:
4f:f1:a4:7a:ae:7d:ac:ee:50:8e:a5:ff:0a:c3:3e:4f:66:17:
3d:84:f3:74:0f:4b:2a:a6:31:83:ff:3d:38:c9:0f:c5:42:a2:
c4:a1:fd:da:fd:3e:6f:91:66:ca:83:00:d1:08:1d:40:d3:d3:
16:3b:59:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org