Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/uX7cJmL1XEFwcsKEb6PjyrPKFJQ.roa
File: uX7cJmL1XEFwcsKEb6PjyrPKFJQ.roa (raw, json)
Hash identifier: qHYULChjl/d+g2d3j1Dh0OykUi7HEcXGA4jHQA3A4RE=
Subject key identifier: B9:7E:DC:26:62:F5:5C:41:70:72:C2:84:6F:A3:E3:CA:B3:CA:14:94
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08BA
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uX7cJmL1XEFwcsKEb6PjyrPKFJQ.roa
Signing time: Fri 11 Dec 2020 08:58:17 +0000
ROA not before: Fri 11 Dec 2020 08:58:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2234 (0x8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:58:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B97EDC2662F55C417072C2846FA3E3CAB3CA1494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d1:0d:e3:d0:ce:6e:aa:b6:c6:61:ce:f7:c5:
cb:ec:09:42:42:13:91:ab:40:7d:e3:d9:df:ed:22:
4e:18:3f:17:a4:13:7b:ad:d1:0f:58:15:89:ad:1a:
61:27:2e:d6:b5:06:da:1a:e6:62:a9:44:49:0f:d6:
31:48:97:c6:45:e5:da:bd:34:68:d4:b5:59:a8:93:
03:1a:2d:7e:f8:b0:8d:e3:52:f8:e0:61:fc:35:7d:
c9:76:fe:0a:bc:a5:c9:92:d1:5f:72:3d:cc:b6:55:
15:9d:08:9e:cf:0b:70:9b:11:c2:1e:7b:51:ee:2b:
71:38:dd:42:41:1b:04:8f:c2:7e:ce:36:d3:2e:58:
c7:8e:89:60:2d:c8:cc:2b:fb:db:90:bd:5e:cc:4d:
6e:af:97:89:9d:6b:b4:c9:26:1d:39:7d:3b:1b:b0:
27:ab:e9:d3:ad:0b:14:cf:cc:c1:c6:88:8c:20:53:
9a:67:2c:51:31:b2:90:03:44:5c:7d:7f:78:f8:96:
a8:4c:01:ed:00:14:59:0e:09:83:0c:91:98:20:9d:
39:ee:ec:e6:a9:14:01:7d:07:bb:3c:f8:c2:85:e5:
2b:0f:81:70:39:76:b8:ca:31:22:d3:73:c4:75:52:
07:ad:89:a0:25:8a:38:ff:e0:41:2d:15:f1:ee:e1:
ef:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7E:DC:26:62:F5:5C:41:70:72:C2:84:6F:A3:E3:CA:B3:CA:14:94
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uX7cJmL1XEFwcsKEb6PjyrPKFJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.52.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:28:5d:e5:30:56:4d:de:a4:29:d8:13:e5:3f:a9:2f:cf:3c:
4e:e1:06:33:9f:19:a9:9b:fa:29:d0:ff:08:4b:9a:1b:06:66:
50:a8:24:4d:fa:61:67:eb:72:b6:f5:ca:15:53:34:6b:9b:b3:
02:5e:0d:10:3b:19:ac:9e:77:78:52:b4:03:31:12:98:3d:1e:
de:15:72:45:8c:9e:00:4a:a7:c4:8b:86:7a:0e:55:ce:d0:d0:
76:e9:e4:76:88:e4:42:44:ae:88:92:6e:c5:aa:70:25:52:da:
6c:ca:59:24:5a:a0:7b:db:60:68:e4:06:07:fb:fe:bb:40:d4:
9e:67:bb:d4:63:3d:bd:09:1e:25:8d:5d:e8:2e:3e:59:ef:fc:
c9:f8:c0:fa:e1:8e:e1:a7:58:bd:ce:9f:a2:ec:9c:a1:7c:24:
0f:76:f1:b0:02:35:cb:2c:da:c7:cf:e3:e4:ea:1f:10:3f:b6:
f5:16:8b:e8:6c:78:51:3b:65:03:21:07:39:fb:89:2e:33:b9:
48:fd:f3:e6:a4:41:ef:7b:7c:28:5a:b0:4c:16:7c:7d:24:30:
1a:ae:28:f3:2b:5e:30:a8:6e:99:75:5a:25:b3:30:22:bf:be:
17:cb:da:82:16:4a:ea:f0:f5:eb:31:26:6e:73:02:8b:c2:22:
6b:34:aa:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org