Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/uUY14q9p72xUTJC93x9QyWD5gzs.roa
File: uUY14q9p72xUTJC93x9QyWD5gzs.roa (raw, json)
Hash identifier: 7dLe8iLvq53cCQ4Y+OoEKdRjHDY+h3Qylsa5Laf1HEs=
Subject key identifier: B9:46:35:E2:AF:69:EF:6C:54:4C:90:BD:DF:1F:50:C9:60:F9:83:3B
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08A0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uUY14q9p72xUTJC93x9QyWD5gzs.roa
Signing time: Fri 11 Dec 2020 08:55:06 +0000
ROA not before: Fri 11 Dec 2020 08:55:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2208 (0x8a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:55:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B94635E2AF69EF6C544C90BDDF1F50C960F9833B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7c:4c:91:6a:ea:b4:51:68:8c:0c:8a:46:2a:
25:18:48:0f:68:9f:62:24:84:35:22:07:fc:19:30:
62:aa:6e:ab:3b:89:f4:f6:fc:25:16:a1:12:bc:ca:
c3:58:fb:5f:2c:c4:ec:fe:ec:61:96:a0:a4:0a:c2:
0d:49:00:86:f6:d1:4e:f8:96:bd:07:b5:c7:1f:c0:
4e:5d:9a:87:10:97:74:d5:1d:07:62:27:ee:a6:d8:
fe:61:48:a7:72:a3:fd:63:11:83:8a:90:e9:b5:63:
b7:a6:21:a7:f6:8b:cd:5e:51:9b:e2:4b:df:0e:36:
b4:8e:ed:29:7c:0f:2f:15:24:50:37:b9:dd:d6:10:
52:87:e6:af:40:9a:02:f7:c4:14:74:4a:02:72:c8:
08:6f:05:ee:9d:50:f1:1a:57:00:b2:e5:70:41:02:
6a:38:91:cb:1c:9e:41:41:a0:09:03:3b:15:ed:62:
9b:df:eb:44:27:86:8b:7f:f5:cc:1c:58:5e:ed:b6:
c1:fc:12:cd:c0:a0:2e:d4:07:ef:f4:bf:20:4e:87:
dd:84:33:c8:f0:f9:59:dd:9f:e8:5e:44:54:df:d4:
0f:e1:cf:a4:be:0d:6a:b4:8b:a4:38:65:79:8f:01:
73:95:1d:7f:37:af:28:be:50:4c:d3:1a:d6:db:88:
a8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:46:35:E2:AF:69:EF:6C:54:4C:90:BD:DF:1F:50:C9:60:F9:83:3B
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uUY14q9p72xUTJC93x9QyWD5gzs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.33.0/24
Signature Algorithm: sha256WithRSAEncryption
84:58:15:27:66:8b:fd:53:1d:49:82:45:1a:26:2b:ae:b2:60:
43:12:94:f5:5a:d4:ff:b5:4e:56:91:31:37:e7:7a:35:90:dd:
1d:00:ae:80:74:f7:1e:46:b0:72:ff:f1:68:80:c4:89:03:4d:
a8:dc:8a:27:6f:84:7a:91:be:47:84:70:64:a6:8c:c2:8e:be:
95:3f:b0:e4:d8:28:3e:01:40:74:10:77:0d:20:4b:95:0d:de:
96:c4:77:82:43:e3:81:aa:57:73:62:96:36:12:d6:57:13:ab:
bd:70:32:51:e6:6b:f0:2e:11:84:33:52:a8:e4:a7:b7:5d:ca:
72:a0:6f:b2:d8:da:b8:83:aa:5b:a7:11:7a:30:ba:1f:85:e5:
31:e4:a5:f9:bf:bc:21:c5:6b:52:e4:8d:0f:a3:20:38:03:ac:
32:6e:2b:34:82:4a:90:f0:96:16:56:a2:6d:09:59:93:0f:38:
7c:d5:2b:ad:f3:6a:6f:24:5a:2f:e5:1e:6e:64:58:f8:02:27:
e9:df:fe:57:87:9a:58:ce:08:e6:c9:80:44:9f:37:a3:46:a3:
63:c8:b3:b2:17:90:49:ca:43:a3:3a:fc:80:6a:a9:4b:0b:83:
c0:50:4e:cc:24:d6:e3:4a:58:80:82:c5:2b:23:6e:2b:fc:78:
f6:51:9c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org