Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/w6rn8OTw2Vm-3x889-obv-Pq6S4.roa
File: w6rn8OTw2Vm-3x889-obv-Pq6S4.roa (raw, json)
Hash identifier: oPHcb8l1kYmnorca8B1QoVFJvuUntDWHH9xXjMrb2ak=
Subject key identifier: C3:AA:E7:F0:E4:F0:D9:59:BE:DF:1F:3C:F7:EA:1B:BF:E3:EA:E9:2E
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08A2
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w6rn8OTw2Vm-3x889-obv-Pq6S4.roa
Signing time: Fri 11 Dec 2020 08:55:21 +0000
ROA not before: Fri 11 Dec 2020 08:55:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2210 (0x8a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:55:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C3AAE7F0E4F0D959BEDF1F3CF7EA1BBFE3EAE92E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5e:80:d2:cb:32:8e:f6:d3:df:1f:fb:17:f4:
25:36:73:76:d2:5d:63:74:be:de:48:ad:f2:b5:d0:
f4:f7:03:44:ed:8b:25:b2:50:a5:98:85:23:83:12:
60:87:1b:d7:86:54:24:21:44:16:6c:cf:0c:87:41:
04:f7:29:28:5a:b1:88:f1:24:63:53:02:fd:95:3a:
79:d3:e4:69:e4:10:18:2e:48:a2:36:e0:f9:5c:02:
6a:48:c8:cb:d5:8f:55:eb:63:36:c1:d0:b5:14:9a:
c2:98:4d:9b:aa:3f:1c:58:e0:cd:e2:19:12:e9:3a:
91:b4:96:5c:67:99:b0:23:ca:93:20:ab:7d:d3:a9:
7b:72:b9:34:90:fd:d8:a5:fe:8e:a7:d4:5c:25:f7:
e6:5c:fe:fd:cb:01:4d:92:bb:25:6a:c1:1a:45:c5:
6b:61:34:46:98:2f:49:87:07:27:16:29:81:18:9b:
47:0a:d4:4b:b4:42:0f:0c:4f:f6:74:cc:c2:8a:76:
5a:09:a6:f9:f4:13:6f:4a:c5:09:ad:2b:73:cc:46:
11:57:3b:c2:10:bf:49:20:eb:65:ef:22:8c:0f:ea:
67:e5:f8:ac:6e:9a:8b:6e:bc:1b:70:4b:b0:7b:93:
b6:19:4e:72:ac:70:9f:e3:af:dc:59:e3:13:df:8b:
42:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AA:E7:F0:E4:F0:D9:59:BE:DF:1F:3C:F7:EA:1B:BF:E3:EA:E9:2E
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w6rn8OTw2Vm-3x889-obv-Pq6S4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.34.0/24
Signature Algorithm: sha256WithRSAEncryption
75:28:27:27:4a:a7:d4:4c:74:a1:58:e1:90:c0:12:67:9d:43:
41:f1:c8:26:bd:44:ae:f0:74:4d:d0:82:98:d2:88:3c:e7:64:
b2:00:bd:c2:e9:25:23:1f:73:d3:1a:8f:19:06:d1:34:fa:63:
06:a9:a1:b2:be:2b:5b:14:63:fd:6a:dd:5e:d9:34:b5:8f:23:
25:77:62:a9:1d:2b:6d:22:f9:11:d9:b0:18:24:d5:f0:da:56:
f4:1a:3f:80:f9:5e:3f:86:5a:67:55:83:82:ec:4f:90:69:27:
e7:5c:de:91:95:92:d5:41:11:97:d8:28:a1:5d:47:6c:fd:0f:
70:20:4a:d5:97:74:c0:3e:0a:6b:b9:2b:77:80:37:4a:12:0d:
80:1c:56:94:a5:d4:6e:b4:b1:02:1c:c5:d6:cf:09:50:2d:5a:
7e:89:19:4b:e7:b3:2f:60:3c:41:6b:64:93:d9:4a:f7:f0:49:
b6:73:b7:cb:29:70:96:ff:f0:0e:20:ae:5a:2b:07:36:bb:af:
7e:a0:85:9f:e1:1f:d3:c9:9c:16:a4:d4:c7:0a:50:e7:62:53:
5c:39:88:1b:8e:e2:d0:e7:bc:5a:2f:44:17:2d:6e:28:85:5f:
3f:40:f2:f7:17:b1:5f:7d:49:68:ef:27:6a:85:ec:8f:40:d5:
fc:2b:d8:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org