Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/tkxMTYiP3ZvHEQBaqdmO6iZH4Nc.roa
File: tkxMTYiP3ZvHEQBaqdmO6iZH4Nc.roa (raw, json)
Hash identifier: gs6dvzqaFCxJTGfoafT0tj7nmuFRQFWEU572TuVTVYw=
Subject key identifier: B6:4C:4C:4D:88:8F:DD:9B:C7:11:00:5A:A9:D9:8E:EA:26:47:E0:D7
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0898
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/tkxMTYiP3ZvHEQBaqdmO6iZH4Nc.roa
Signing time: Fri 11 Dec 2020 08:53:43 +0000
ROA not before: Fri 11 Dec 2020 08:53:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2200 (0x898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:53:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B64C4C4D888FDD9BC711005AA9D98EEA2647E0D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c7:4e:0f:23:c3:aa:e9:d4:c4:99:0d:b5:e4:
6e:af:83:72:01:53:6d:4a:ef:8b:ba:60:5a:af:18:
a0:55:3c:ca:84:23:06:52:3d:42:e5:39:67:04:9e:
ce:49:a4:fd:e3:e9:35:10:e6:e1:ca:ad:dd:76:59:
ae:1c:e7:ac:8b:25:a2:ec:e9:b3:10:5a:e9:bb:fb:
1f:dd:39:ec:f8:c3:ce:67:71:65:8e:12:4d:fd:ed:
12:85:54:68:e8:2a:36:85:8c:e5:76:69:9f:ec:5f:
1e:3e:de:1b:a9:1f:99:2f:84:6f:38:9a:22:46:61:
39:bc:31:d8:d2:89:4d:8e:d2:b4:5a:1a:59:08:4a:
55:4b:3c:03:50:e3:cc:7f:7f:48:ba:cc:63:9a:a9:
3e:70:6a:06:4f:00:dc:f3:c1:b0:eb:b6:6a:e5:51:
1e:66:ca:1b:a2:9e:fc:c7:49:82:36:49:b0:28:53:
54:d0:ca:62:47:9b:3b:16:90:8f:5f:32:ab:51:be:
eb:93:fb:83:2d:e5:a9:ff:71:42:d1:85:3e:b8:86:
a6:57:4b:b2:28:bb:b0:dc:8b:34:16:d2:a6:fe:c5:
ca:6e:42:f0:c2:95:13:97:c2:92:0d:7c:3f:42:66:
76:38:06:53:0d:ab:a5:dd:50:d6:5f:94:f4:d5:27:
c1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4C:4C:4D:88:8F:DD:9B:C7:11:00:5A:A9:D9:8E:EA:26:47:E0:D7
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/tkxMTYiP3ZvHEQBaqdmO6iZH4Nc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.132.0/24
Signature Algorithm: sha256WithRSAEncryption
72:78:6d:b8:0f:9e:42:72:b7:71:e8:9d:f6:f6:ff:12:40:33:
be:1b:bf:96:23:39:c4:c3:87:64:fa:53:1c:65:50:19:81:aa:
f9:b2:36:a3:64:74:a4:0b:b2:60:47:83:77:d5:af:3d:a9:4b:
da:3d:84:55:5a:42:ff:7b:7e:cf:99:fd:19:9a:9b:c3:ef:0e:
8a:4a:43:32:eb:db:c1:43:14:8c:0c:68:39:69:fc:c5:96:10:
88:99:a6:fb:68:65:89:97:6c:e3:6a:98:a9:eb:d2:1a:a0:da:
de:8d:44:8e:78:b1:1b:0b:d7:6a:44:2e:6f:5c:8d:3d:52:e0:
ed:6a:f3:1c:e9:a3:f4:2d:81:e2:de:6d:0a:6c:69:b8:d5:c7:
3f:a2:1b:07:7f:54:9e:97:3e:d3:30:9e:0b:bb:9c:d4:05:77:
a0:e7:e5:6e:94:4c:60:51:d1:ef:54:81:55:01:95:e1:47:b8:
63:85:27:d6:23:6b:ce:72:43:50:10:5a:86:9b:90:e3:ed:b9:
22:35:ec:f1:d4:a5:72:d2:b1:8c:17:4e:52:41:a4:66:77:03:
c8:26:04:6b:1c:17:30:44:a5:00:37:08:e0:70:de:d9:a3:45:
c1:d0:75:89:f1:67:fd:f7:dc:20:43:69:dd:19:5f:0a:0c:3c:
89:01:2e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org