Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/w-yKq1P1Jvrt61BdPX1yB0qA10k.roa
File: w-yKq1P1Jvrt61BdPX1yB0qA10k.roa (raw, json)
Hash identifier: Ps//JJLBsar/NsS9SGl8GkGbbnnw1IkzeB0RSJSYQa8=
Subject key identifier: C3:EC:8A:AB:53:F5:26:FA:ED:EB:50:5D:3D:7D:72:07:4A:80:D7:49
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08CA
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w-yKq1P1Jvrt61BdPX1yB0qA10k.roa
Signing time: Fri 11 Dec 2020 09:03:29 +0000
ROA not before: Fri 11 Dec 2020 09:03:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2250 (0x8ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:03:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C3EC8AAB53F526FAEDEB505D3D7D72074A80D749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8b:cd:af:63:44:06:13:dc:0f:1c:0d:57:75:
3c:2c:c4:28:4d:37:42:2f:5d:95:e6:fa:1a:d0:de:
dc:33:d9:9a:63:3a:90:42:7f:55:52:0d:4c:9e:ab:
35:3c:a2:e4:2d:01:c8:51:28:78:9a:27:0e:21:92:
49:e3:17:3e:5e:e3:eb:7c:0a:2c:8b:29:d4:88:d1:
5e:26:0b:cb:73:0f:cc:1b:49:14:39:a8:8f:82:03:
1d:56:41:ca:1f:46:39:85:f9:19:9d:0e:6d:be:8d:
51:2d:ad:a3:be:a4:7d:47:bf:c2:be:74:72:85:14:
7f:ab:35:3f:fd:f1:14:07:2e:84:5d:43:45:20:63:
17:c9:76:bd:5e:7d:18:72:72:a9:59:01:92:4e:cd:
e3:7b:a8:64:53:03:27:2d:a7:0d:33:1c:c3:cc:45:
fc:3a:cf:45:ec:fc:b2:83:ba:a6:0f:52:f8:97:e2:
c4:bb:72:52:53:e2:df:31:f3:75:6d:20:ac:43:01:
81:0e:bb:a3:c8:06:21:be:32:96:48:81:6b:91:76:
74:36:9d:41:3d:4c:22:de:5a:7e:ce:a7:68:73:a4:
c7:1a:27:c0:57:98:3a:6c:1a:43:15:8b:3e:85:ba:
e7:97:21:1a:bb:93:cc:d0:1f:a0:d8:32:1d:6c:f5:
f1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EC:8A:AB:53:F5:26:FA:ED:EB:50:5D:3D:7D:72:07:4A:80:D7:49
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w-yKq1P1Jvrt61BdPX1yB0qA10k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
af:ee:4e:a0:c2:74:85:34:f6:8d:5e:9e:55:ea:79:0e:48:d2:
9d:35:22:22:2c:2a:24:7f:8a:69:cb:4c:6a:a2:bb:49:f5:48:
fa:9c:13:6c:a1:27:34:ec:04:5c:25:98:16:f8:6a:28:63:ab:
3b:56:b2:4a:45:14:84:d4:36:a7:0c:77:77:fe:e7:b3:7d:b5:
7f:38:34:cd:32:fd:71:f2:9f:94:f0:f5:ff:01:be:8a:66:c1:
b6:b4:9c:d1:0d:dd:90:12:b4:8b:8a:11:1a:50:fa:48:69:b4:
79:14:00:8a:91:88:65:7b:ca:b5:4c:7b:bd:2d:78:49:e5:23:
d3:7d:69:4b:5d:ce:76:36:a4:79:38:21:68:92:2f:a3:ac:67:
4b:88:d8:3a:f6:2c:9a:09:26:de:b1:1d:b1:aa:93:f7:45:58:
96:f8:eb:2d:a2:71:2a:e4:4d:28:f1:4c:d8:e1:64:14:07:b4:
88:2b:99:73:da:36:4f:08:45:63:16:f3:80:60:56:f1:76:a5:
8c:2d:c5:0c:10:71:12:31:85:57:5a:7d:10:a9:49:17:ba:7f:
ad:13:e6:c8:35:1e:8b:77:ee:cc:98:70:23:76:c4:d3:46:0a:
56:32:88:6a:0a:60:48:d5:d4:76:b4:32:ec:71:73:be:14:3f:
21:ce:cf:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org