Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/tp4m8rknGukmHhdYFOlqNcp3yOw.roa
File: tp4m8rknGukmHhdYFOlqNcp3yOw.roa (raw, json)
Hash identifier: YbD+PL1vucx3caasiWBflX9ZUS5+qbJ51bUvU2N3iFY=
Subject key identifier: B6:9E:26:F2:B9:27:1A:E9:26:1E:17:58:14:E9:6A:35:CA:77:C8:EC
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0955
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/tp4m8rknGukmHhdYFOlqNcp3yOw.roa
Signing time: Sun 07 Feb 2021 13:08:42 +0000
ROA not before: Sun 07 Feb 2021 13:08:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:08:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B69E26F2B9271AE9261E175814E96A35CA77C8EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:80:5f:7a:be:a3:cf:50:b6:2e:ab:15:62:bc:
73:67:45:59:27:4d:e9:6f:1e:23:e3:99:02:e5:37:
43:64:2e:27:7a:cd:a2:85:c7:04:f6:65:60:5e:90:
ad:58:8d:95:3c:23:21:3c:46:5b:ec:6c:65:c0:d7:
af:4a:1d:9b:57:81:a0:a2:71:e0:02:8d:5d:14:6e:
56:0b:b4:92:15:a4:c1:31:77:1a:90:66:e5:3b:cb:
bf:f5:ca:0e:3e:66:56:59:0d:e8:29:c8:c6:74:b9:
5d:fb:59:da:30:79:3c:3a:87:e0:33:2a:4b:2a:c3:
7a:c8:75:c9:34:6f:9f:f3:30:d7:42:4d:8f:56:c5:
28:99:83:08:a4:6d:9a:41:2d:83:9f:e4:a1:a9:6e:
55:17:75:f6:14:28:a1:0f:c4:64:1e:f3:68:3b:45:
5a:86:01:4b:7b:fb:2b:6d:7d:99:b2:fb:2b:f2:03:
4b:b7:0b:04:84:b6:a8:da:75:b1:92:17:9f:d2:e6:
94:94:bf:2f:f6:a0:69:20:64:39:84:e0:26:4d:dc:
be:55:04:fa:ae:c9:d5:95:a2:0e:dd:cb:99:96:8f:
53:98:22:34:b5:3b:9c:48:86:c4:df:36:91:03:6d:
50:b0:cf:74:b4:eb:4e:49:99:c6:00:36:24:c9:ac:
b5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9E:26:F2:B9:27:1A:E9:26:1E:17:58:14:E9:6A:35:CA:77:C8:EC
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/tp4m8rknGukmHhdYFOlqNcp3yOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:bc:c4:66:87:b3:8a:54:8e:42:bf:2d:c7:55:00:fd:3d:2a:
23:7a:da:ed:a5:94:33:30:ba:19:aa:21:a2:72:43:41:25:00:
9c:78:c1:d1:6f:07:b7:be:5b:1d:10:fe:a0:6f:b4:ed:c4:d6:
14:3a:25:9a:f3:81:6a:de:8e:7d:de:b8:2c:15:aa:fc:f0:5d:
25:ea:6f:ae:7c:75:0d:55:a0:a7:1d:6c:20:c2:72:a6:ca:a5:
e8:eb:64:46:6c:06:b2:d0:d7:a8:d0:26:e1:5a:23:7b:94:96:
f7:80:2e:02:e8:43:86:d4:d5:fe:eb:68:bf:54:ac:b7:4b:3c:
62:94:23:0e:f9:33:d8:fc:b8:e9:be:d1:50:53:de:02:11:d5:
39:11:60:ad:bb:65:1f:3c:2b:b7:70:4b:67:e3:65:db:04:7c:
c6:37:16:84:11:6b:84:7c:7a:d9:d6:23:09:21:4e:3f:fc:db:
fe:1e:95:ec:9e:2d:c0:01:93:77:e6:17:55:39:67:1e:ab:93:
96:c8:82:f7:4b:66:d0:3e:08:84:18:d1:ce:e0:65:1f:cc:65:
03:8f:2d:e6:28:4c:0e:29:fd:00:e8:3e:9c:d7:23:7d:01:51:
eb:1f:ec:d6:98:fa:9f:38:4b:54:38:6c:5d:db:60:f2:48:72:
f9:da:49:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org