Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/w09zhueMPBFbboR6J3I4ZQQmUWw.roa
File: w09zhueMPBFbboR6J3I4ZQQmUWw.roa (raw, json)
Hash identifier: Sq7xxNWQFMsHuLVlxSJM3gHbwylzx2xztRMl2hMspB8=
Subject key identifier: C3:4F:73:86:E7:8C:3C:11:5B:6E:84:7A:27:72:38:65:04:26:51:6C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0AA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w09zhueMPBFbboR6J3I4ZQQmUWw.roa
Signing time: Wed 06 Oct 2021 07:13:59 +0000
ROA not before: Wed 06 Oct 2021 07:13:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2729 (0xaa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:13:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C34F7386E78C3C115B6E847A277238650426516C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ee:9d:d9:62:c9:4e:e9:9b:d1:86:97:76:a8:
4b:74:85:1c:7b:56:28:47:91:9b:e6:36:36:50:ad:
5b:b5:06:83:d5:e1:54:dc:39:e5:52:0b:fb:2e:2d:
b5:be:fd:3e:5d:af:b9:9a:a6:53:0b:14:a5:38:78:
b2:67:e8:43:b1:c5:d7:ed:36:a7:ec:cf:92:4f:e4:
98:b5:10:1b:6d:0e:28:9b:62:27:32:67:9f:64:0f:
ae:d5:e3:cf:96:35:c9:ca:79:6d:78:be:a5:ab:af:
da:1f:26:f6:96:37:36:ea:ab:3b:d2:cf:7e:a9:77:
8f:13:06:53:a7:92:aa:f3:24:66:d3:b4:5b:46:65:
c6:7a:4c:d0:ec:f9:59:59:52:9d:b0:d1:bd:df:aa:
af:51:47:51:c1:47:83:b8:d7:e4:c5:25:1f:1b:0d:
6a:00:c8:2a:ff:d5:07:bc:08:53:ff:9e:f1:1d:18:
c9:0e:bf:89:fa:1d:ec:07:13:be:06:e0:dd:ba:d3:
18:3f:a4:e2:d3:56:2d:b0:b4:cb:20:62:5f:ea:ba:
f3:ca:4c:51:d3:f0:b0:2a:7a:0a:43:4b:11:ad:28:
36:b0:ed:36:5b:2d:f8:54:7d:3e:27:a4:67:f2:7f:
d7:36:a7:97:51:8a:e0:70:c7:80:e4:d0:f3:92:3b:
02:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4F:73:86:E7:8C:3C:11:5B:6E:84:7A:27:72:38:65:04:26:51:6C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w09zhueMPBFbboR6J3I4ZQQmUWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.58.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:30:14:bd:df:32:81:75:c6:af:94:95:5c:1a:f9:7d:37:bf:
c1:2a:e3:1b:4f:ad:09:d1:66:8c:6d:28:43:71:b1:37:64:ab:
31:55:8e:f2:8a:14:53:57:b8:39:48:5c:e2:11:1d:89:cb:ea:
35:92:12:1d:30:9c:d0:75:cd:f5:97:47:08:98:e3:23:7c:02:
a2:41:56:4a:7e:f6:37:9e:be:dd:bf:9e:80:dd:49:37:5b:ce:
21:cd:a4:0a:1d:8d:50:37:1c:da:85:7f:fb:7c:be:b8:30:e6:
dc:c6:be:e8:e5:95:5b:3a:c4:34:96:8c:f5:bc:22:38:74:c9:
30:4e:a4:b1:a2:8e:2d:aa:d5:d6:33:44:c8:4f:e2:ef:5f:6d:
71:2a:4e:3a:6e:17:54:df:15:9f:0e:ec:38:75:2b:4f:94:0c:
14:49:6c:44:9b:52:84:03:84:a3:1c:ba:dd:5b:81:23:4c:20:
60:e7:3e:23:00:28:ce:e3:51:e2:71:64:41:1c:d2:2c:4a:3f:
ee:c1:b9:5a:0b:55:00:d5:cb:22:9b:6a:8d:79:b2:7d:70:d3:
23:2f:c8:21:ad:b7:e3:dc:4b:e2:6a:6a:99:b4:3d:6b:b5:da:
43:58:b2:b5:79:6e:14:dd:f3:5b:5d:10:f4:27:8c:bb:a2:e7:
eb:51:8e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org