Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/uYjyioh2g_PBgRFiV_BDd8MSRBY.roa
File: uYjyioh2g_PBgRFiV_BDd8MSRBY.roa (raw, json)
Hash identifier: a6wBOFIGKzc/oed6igTNutd74xZyBQrExKymGhs3c6Y=
Subject key identifier: B9:88:F2:8A:88:76:83:F3:C1:81:11:62:57:F0:43:77:C3:12:44:16
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uYjyioh2g_PBgRFiV_BDd8MSRBY.roa
Signing time: Thu 15 Sep 2022 02:42:27 +0000
ROA not before: Thu 15 Sep 2022 02:42:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B988F28A887683F3C181116257F04377C3124416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:86:b3:c3:85:a9:8b:2b:d0:77:4f:84:54:
98:be:71:5a:72:da:5e:11:5c:2d:4d:c7:89:c0:60:
1f:3b:f9:0b:2b:f8:e7:ce:c5:33:82:ce:79:28:48:
26:9f:4e:08:61:7d:f2:5d:14:27:eb:98:86:df:37:
43:6e:5f:4a:9d:1e:03:ed:4d:8c:32:90:22:bb:e7:
9f:cb:9d:e8:ee:13:65:9f:f2:3a:15:a7:5a:2b:80:
ce:f3:2a:b4:59:18:8e:2d:bf:a0:52:f4:59:15:c3:
e6:9d:41:fd:1d:68:5b:46:d1:59:91:d5:05:ca:9c:
bd:70:19:f1:3f:dd:d4:da:73:ff:c8:a4:22:41:03:
2f:b2:96:2a:83:83:c6:c1:2c:6c:b0:03:bb:05:d8:
86:0b:76:c2:4a:4f:28:10:25:45:da:13:80:68:d5:
e3:13:38:26:1f:5d:24:51:cf:25:e4:ad:41:be:26:
59:54:8e:94:2c:81:d3:44:63:ce:ea:9b:15:fa:d8:
33:60:82:cc:4a:2f:47:1c:5b:df:6f:64:09:4c:4b:
66:60:34:fb:df:e5:6b:72:a8:f7:fb:e4:81:ef:c1:
d9:23:18:92:e5:18:d0:96:3b:91:ec:bc:3a:8d:e7:
6a:6c:74:63:cc:41:bf:76:c1:56:ca:37:73:f2:11:
cc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:88:F2:8A:88:76:83:F3:C1:81:11:62:57:F0:43:77:C3:12:44:16
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uYjyioh2g_PBgRFiV_BDd8MSRBY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.52.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:9f:50:d5:56:c2:d7:d8:ab:56:e1:58:b4:95:41:9f:2e:79:
8c:c5:b3:e4:6a:0b:e3:13:d3:d2:f8:25:1d:42:41:4b:e2:35:
72:75:22:c8:bb:ce:e7:68:f0:b8:e9:e7:dd:66:64:70:b1:29:
ce:79:9a:3a:7c:25:5b:6e:72:0e:74:73:40:0d:70:10:8c:bf:
aa:f7:5d:dd:0a:b8:38:ec:d2:61:f8:02:17:ad:7b:15:d0:e4:
92:1e:45:10:66:c5:b2:2a:48:e8:b3:bd:5a:f4:40:e6:e3:a6:
30:bc:04:5d:df:95:5b:d9:4d:49:ca:f1:4f:8f:08:dc:1d:f3:
00:c7:ee:2e:2b:f5:98:aa:aa:df:4c:14:96:04:0c:31:11:7c:
4c:0a:38:c3:c1:1e:5b:d0:93:ff:75:12:d7:bf:db:39:0d:c5:
2c:b7:f0:4f:3d:18:af:9b:95:96:26:14:4a:d0:69:c8:51:20:
1a:9a:e2:4f:83:47:65:39:f1:38:c0:b7:c3:7f:62:db:56:5d:
64:f6:e7:20:d8:f4:30:52:30:81:90:a7:20:56:88:c7:26:8e:
8a:7d:34:10:fb:cc:86:3e:43:59:20:4b:be:55:01:09:e0:2c:
1f:78:c4:b8:ca:ba:a3:61:85:2f:c4:3b:41:7b:9f:03:50:71:
e8:5b:7e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:16 2025 by rpki-client