Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/pzACOUWb1Un0Om8BZ4OSfFhsw4A.roa
File: pzACOUWb1Un0Om8BZ4OSfFhsw4A.roa (raw, json)
Hash identifier: Ixf70UhE91bCSplVe49k1YvmlTtMG7r7ksRh8mmocTE=
Subject key identifier: A7:30:02:39:45:9B:D5:49:F4:3A:6F:01:67:83:92:7C:58:6C:C3:80
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/pzACOUWb1Un0Om8BZ4OSfFhsw4A.roa
Signing time: Thu 15 Sep 2022 02:42:34 +0000
ROA not before: Thu 15 Sep 2022 02:42:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A7300239459BD549F43A6F016783927C586CC380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:39:41:d7:5a:f6:b7:87:63:e8:e6:f1:71:
b6:b2:1e:ee:d5:84:c2:16:c8:ab:d8:5a:41:5c:aa:
80:49:6b:79:e7:7d:9f:7b:07:96:01:95:b5:93:8d:
66:e0:5e:72:4d:3e:9c:f7:79:a1:81:92:f1:61:83:
a6:04:34:d8:00:09:62:b0:9e:17:ca:1f:d5:fe:d7:
e1:54:48:d3:1f:81:41:b7:92:06:6c:45:a7:0f:42:
fe:b9:8b:07:49:f7:68:be:1e:e9:f9:c8:0e:a5:23:
48:32:80:2f:f4:3e:96:d8:04:12:31:fc:c0:56:6e:
16:2a:17:60:81:df:33:c8:cc:1f:2b:62:7f:1d:a9:
c6:b3:e4:e6:66:d4:e6:01:62:fc:1b:bd:cc:37:5c:
d0:fa:30:25:23:03:67:fc:17:ad:20:2d:1f:47:6a:
a3:27:14:de:69:ba:fb:6d:ad:13:ac:39:e4:e2:de:
42:9e:b4:46:f8:1d:20:a9:80:3f:d1:1e:74:48:1d:
cb:52:4f:26:b6:00:74:db:c1:6d:14:3d:45:52:bc:
bd:0f:df:38:1d:3d:59:06:ee:c2:68:ff:8b:97:1e:
e2:1f:aa:ab:53:93:04:2e:89:68:7b:35:bc:d6:91:
9e:c7:c4:6b:b7:8c:f0:50:76:52:43:bd:43:a9:3d:
ee:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:30:02:39:45:9B:D5:49:F4:3A:6F:01:67:83:92:7C:58:6C:C3:80
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/pzACOUWb1Un0Om8BZ4OSfFhsw4A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
28:72:e0:fd:4e:db:60:62:49:8a:cc:8f:4f:37:8c:34:78:e9:
5e:22:77:ab:40:7a:61:71:04:0d:53:49:df:f3:40:c6:38:03:
24:00:7f:f7:0b:89:cb:83:a1:1b:07:99:a1:04:22:bb:d9:6b:
f5:d2:a7:b8:3f:d3:3a:eb:d7:32:1e:94:f3:a3:83:a9:19:3a:
45:d5:90:fa:ea:d5:86:86:7b:bf:cd:c2:bf:c7:69:fb:fd:0e:
3a:f1:62:c1:c4:2b:fd:9d:06:e8:28:68:0d:a0:59:a1:46:b7:
6b:fd:78:92:e9:b0:48:38:0a:71:b1:0c:c7:6d:de:cd:78:3e:
37:1a:92:21:d0:19:2f:44:bb:ec:c0:b2:2c:24:ca:04:b9:04:
e3:9f:89:1c:5a:58:cb:2f:be:ea:bc:c4:09:6d:65:1f:5d:02:
e3:68:1d:83:c2:5c:ee:9f:c3:c8:c1:79:c8:3f:14:e5:a7:08:
65:66:3f:80:e8:88:89:74:1b:fa:b5:a9:3c:dc:ae:a5:1c:96:
15:f1:08:8f:e5:9f:20:c2:dc:18:c7:de:fb:9d:27:e7:14:b1:
b6:a4:7c:b8:18:c2:48:01:48:c1:7f:05:25:eb:fc:c4:22:25:
99:c4:77:cf:7c:9e:14:e6:fb:c0:dd:f6:53:81:44:3e:d0:63:
9e:e9:78:be
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE3MzAwMjM5NDU5QkQ1
NDlGNDNBNkYwMTY3ODM5MjdDNTg2Q0MzODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6dDlB11r2t4dj6ObxcbayHu7VhMIWyKvYWkFcqoBJa3nnfZ97
B5YBlbWTjWbgXnJNPpz3eaGBkvFhg6YENNgACWKwnhfKH9X+1+FUSNMfgUG3kgZs
RacPQv65iwdJ92i+Hun5yA6lI0gygC/0PpbYBBIx/MBWbhYqF2CB3zPIzB8rYn8d
qcaz5OZm1OYBYvwbvcw3XND6MCUjA2f8F60gLR9HaqMnFN5puvttrROsOeTi3kKe
tEb4HSCpgD/RHnRIHctSTya2AHTbwW0UPUVSvL0P3zgdPVkG7sJo/4uXHuIfqqtT
kwQuiWh7NbzWkZ7HxGu3jPBQdlJDvUOpPe4jAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUpzACOUWb1Un0Om8BZ4OSfFhsw4AwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vcHpBQ09VV2IxVW4wT204Qlo0T1Nm
RmhzdzRBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWhjAN
BgkqhkiG9w0BAQsFAAOCAQEAKHLg/U7bYGJJisyPTzeMNHjpXiJ3q0B6YXEEDVNJ
3/NAxjgDJAB/9wuJy4OhGweZoQQiu9lr9dKnuD/TOuvXMh6U86ODqRk6RdWQ+urV
hoZ7v83Cv8dp+/0OOvFiwcQr/Z0G6ChoDaBZoUa3a/14kumwSDgKcbEMx23ezXg+
NxqSIdAZL0S77MCyLCTKBLkE45+JHFpYyy++6rzECW1lH10C42gdg8Jc7p/DyMF5
yD8U5acIZWY/gOiIiXQb+rWpPNyupRyWFfEIj+WfIMLcGMfe+50n5xSxtqR8uBjC
SAFIwX8FJev8xCIlmcR3z3yeFOb7wN32U4FEPtBjnul4vg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:18 2025 by rpki-client