Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/vw6iNPdFBwT2-rmRZtRRz2G8gWc.roa
File: vw6iNPdFBwT2-rmRZtRRz2G8gWc.roa (raw, json)
Hash identifier: sGP1d4DHiGs5akBMTYYpqoUy8Q8p3Itg3rSA8aa8ABs=
Subject key identifier: BF:0E:A2:34:F7:45:07:04:F6:FA:B9:91:66:D4:51:CF:61:BC:81:67
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0991
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/vw6iNPdFBwT2-rmRZtRRz2G8gWc.roa
Signing time: Sun 07 Feb 2021 13:09:40 +0000
ROA not before: Sun 07 Feb 2021 13:09:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2449 (0x991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BF0EA234F7450704F6FAB99166D451CF61BC8167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0f:9f:99:80:9b:80:8f:5d:3e:0c:c2:31:70:
c9:bf:05:10:ce:c0:ba:52:cf:a4:78:e3:ab:ad:43:
1b:5b:37:79:2b:e3:3a:9b:9c:d4:6a:37:90:98:62:
4d:c4:f2:99:eb:59:76:a7:1d:6b:74:b6:3b:d5:41:
55:da:dc:4e:d0:e9:49:3d:ab:dc:09:50:71:7c:03:
24:c1:3e:cb:f8:c4:5e:8a:d9:2a:c3:5f:0a:d7:e6:
2b:ea:a3:3b:13:20:bc:7f:25:ff:5d:5b:39:3b:31:
fe:f2:d4:9d:2b:0a:c7:f0:be:cc:2a:98:12:73:72:
d5:4f:64:ff:16:59:8c:88:f8:54:e9:2d:a6:98:34:
e1:4d:fe:6d:67:87:c8:43:4a:b0:95:00:e3:be:8f:
f1:7f:69:06:41:5c:d0:fb:75:c5:72:4f:f2:10:03:
bd:06:89:ad:2e:fb:cd:40:18:40:60:f9:e8:e5:b7:
a5:24:28:7c:22:c6:a1:58:12:f9:0d:a1:12:27:bd:
49:02:a3:da:b9:02:89:bb:56:12:b8:23:8d:b6:4c:
eb:8b:5d:db:c8:e7:fb:c0:fb:64:20:86:a2:20:bd:
b3:e5:84:12:6e:df:fc:40:45:03:b1:32:a1:bb:6e:
d5:0f:be:2a:32:5a:9c:6a:b9:e0:46:3c:30:c4:b9:
fb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0E:A2:34:F7:45:07:04:F6:FA:B9:91:66:D4:51:CF:61:BC:81:67
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/vw6iNPdFBwT2-rmRZtRRz2G8gWc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.34.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:22:fc:14:58:24:ca:cb:1e:e4:eb:51:9f:da:fc:58:e3:f3:
ae:7b:15:0e:9f:24:07:6c:0a:45:64:46:b5:aa:54:d9:6c:fb:
62:6d:78:bc:96:65:75:44:8c:f9:11:89:fc:1f:97:54:b7:ff:
74:b6:c2:34:c3:01:c9:da:95:4f:b4:18:75:15:2f:1e:a1:84:
e6:e0:5b:53:c3:fb:ba:40:59:29:61:c2:91:f4:34:88:4f:de:
70:7f:9a:2a:36:ba:98:8c:eb:6f:2c:8b:6a:7c:fe:82:d0:d8:
57:8f:fc:d2:7c:9b:b9:ef:2c:22:31:2a:66:f5:e0:f8:d3:b4:
f4:49:bc:39:85:7c:c6:28:15:1e:10:aa:51:9f:46:ee:fd:fd:
a1:47:42:56:d7:c6:89:c8:60:f1:f7:88:c1:b6:99:4f:e6:e0:
a7:c9:a8:dc:a8:1f:32:d1:8d:96:99:86:9c:cf:6c:de:51:27:
17:8e:00:8c:4f:52:7f:26:81:96:d4:aa:d8:19:dd:a6:e4:90:
79:0a:a2:d1:d0:b1:b9:52:d8:45:38:67:f6:2e:1c:9d:6c:dd:
f2:2b:49:db:6f:cf:2f:bb:0d:ef:c3:f0:9c:21:16:cc:ff:37:
47:dc:dc:75:e1:53:65:cd:7a:71:96:e0:b9:78:70:80:ed:08:
20:27:19:71
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5NDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJGMEVBMjM0Rjc0NTA3
MDRGNkZBQjk5MTY2RDQ1MUNGNjFCQzgxNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7D5+ZgJuAj10+DMIxcMm/BRDOwLpSz6R446utQxtbN3kr4zqb
nNRqN5CYYk3E8pnrWXanHWt0tjvVQVXa3E7Q6Uk9q9wJUHF8AyTBPsv4xF6K2SrD
XwrX5ivqozsTILx/Jf9dWzk7Mf7y1J0rCsfwvswqmBJzctVPZP8WWYyI+FTpLaaY
NOFN/m1nh8hDSrCVAOO+j/F/aQZBXND7dcVyT/IQA70Gia0u+81AGEBg+ejlt6Uk
KHwixqFYEvkNoRInvUkCo9q5Aom7VhK4I422TOuLXdvI5/vA+2QghqIgvbPlhBJu
3/xARQOxMqG7btUPvioyWpxqueBGPDDEufv9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUvw6iNPdFBwT2+rmRZtRRz2G8gWcwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vdnc2aU5QZEZCd1QyLXJtUlp0UlJ6
Mkc4Z1djLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bIjAN
BgkqhkiG9w0BAQsFAAOCAQEACiL8FFgkysse5OtRn9r8WOPzrnsVDp8kB2wKRWRG
tapU2Wz7Ym14vJZldUSM+RGJ/B+XVLf/dLbCNMMBydqVT7QYdRUvHqGE5uBbU8P7
ukBZKWHCkfQ0iE/ecH+aKja6mIzrbyyLanz+gtDYV4/80nybue8sIjEqZvXg+NO0
9Em8OYV8xigVHhCqUZ9G7v39oUdCVtfGichg8feIwbaZT+bgp8mo3KgfMtGNlpmG
nM9s3lEnF44AjE9SfyaBltSq2BndpuSQeQqi0dCxuVLYRThn9i4cnWzd8itJ22/P
L7sN78PwnCEWzP83R9zcdeFTZc16cZbguXhwgO0IICcZcQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org