Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/s-p6qwUqptLoKR0y_ZndI60oSRI.roa
File: s-p6qwUqptLoKR0y_ZndI60oSRI.roa (raw, json)
Hash identifier: TfL5MVxQPLHJvLpgDTs7rSOLsAf78m8n5yawrsnd61w=
Subject key identifier: B3:EA:7A:AB:05:2A:A6:D2:E8:29:1D:32:FD:99:DD:23:AD:28:49:12
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A9A
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/s-p6qwUqptLoKR0y_ZndI60oSRI.roa
Signing time: Wed 06 Oct 2021 07:09:31 +0000
ROA not before: Wed 06 Oct 2021 07:09:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2714 (0xa9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:09:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B3EA7AAB052AA6D2E8291D32FD99DD23AD284912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:3a:c4:02:43:53:fd:f5:0b:fe:a0:7d:bc:
cd:05:b6:27:d0:84:95:25:92:22:c8:3b:26:c2:de:
24:95:bf:5f:dc:a6:41:cd:44:92:75:03:33:6b:24:
2f:e3:48:ae:68:a0:57:cb:21:99:4c:eb:c6:21:c0:
b1:1c:61:21:76:00:bf:d5:ea:23:dc:35:c9:db:c2:
27:f8:29:50:5e:d7:73:aa:8b:75:97:28:01:07:6a:
96:74:c7:f3:57:54:13:36:e3:60:88:9a:cf:b5:98:
48:fe:85:55:10:f0:a1:20:cc:5b:75:52:a6:84:2c:
97:03:7b:1b:d7:3a:e1:85:28:a3:a1:b1:7d:26:81:
de:e2:a3:c7:2b:6c:a7:6b:56:36:ef:0b:1a:f5:e3:
c0:df:bd:62:88:a7:0c:27:3d:70:68:ad:6b:00:74:
7a:41:4c:1a:cb:5e:fe:d9:00:40:04:99:50:93:5a:
78:47:89:a7:e6:bf:33:ab:ad:45:e1:aa:c0:d2:b3:
04:9b:d8:e4:e7:83:fb:a4:96:a4:1e:f1:ec:6b:88:
3e:1e:2c:99:cc:41:38:1d:cc:7e:9c:53:44:94:cb:
26:83:85:b9:2c:44:e0:e5:b0:30:4a:45:26:5b:96:
28:b5:26:a0:fe:f6:33:d7:a4:c6:65:79:00:b0:9d:
28:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:EA:7A:AB:05:2A:A6:D2:E8:29:1D:32:FD:99:DD:23:AD:28:49:12
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/s-p6qwUqptLoKR0y_ZndI60oSRI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.51.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:4c:c8:43:8f:90:7b:4e:0c:08:a1:a1:6b:94:6d:9d:68:23:
19:b4:db:d6:13:41:fa:e5:35:7d:e5:0f:17:04:69:8f:c4:eb:
55:c4:fd:7b:e3:2d:f5:91:94:82:7d:52:fe:7c:3d:43:3d:bb:
10:53:79:66:38:d1:b5:f3:8a:f5:23:c4:c1:0f:aa:47:32:3d:
77:03:4d:1e:f5:5f:9c:3d:f9:d1:25:7d:9b:2a:da:19:23:9a:
23:34:ce:1c:58:cd:8d:08:3f:34:56:14:61:c0:a5:e2:68:5b:
46:e8:b5:74:5c:5d:77:02:7f:a1:60:85:12:21:ea:d9:24:48:
4f:cb:07:5a:83:87:7a:ea:fc:07:3f:8d:1e:51:2b:1e:95:58:
2f:1a:aa:88:16:63:e1:1c:f7:21:34:6e:a2:15:7a:59:32:c4:
62:9f:36:86:e3:ca:f1:06:73:c0:28:fa:6b:d9:37:ae:1e:93:
94:61:4a:b4:56:3f:6d:26:c9:d0:ab:4f:28:4f:ce:3a:4a:d3:
1e:0c:5e:94:0d:b1:24:94:43:2e:d7:c3:96:53:5d:f7:f5:ed:
9d:2a:4b:05:72:5a:f8:8f:d8:27:c8:60:ab:87:8a:98:9c:00:
d4:e7:00:b1:19:8b:20:a1:c7:78:fb:dd:5e:2b:ce:25:61:29:
38:9f:fe:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org