Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/xI4s_DStXI_JkCS0hpZ7p-A5hjk.roa
File: xI4s_DStXI_JkCS0hpZ7p-A5hjk.roa (raw, json)
Hash identifier: U6DkhZliUJ149WuPJ0yEyGSNNZRoxSl57ttEuLGRdV4=
Subject key identifier: C4:8E:2C:FC:34:AD:5C:8F:C9:90:24:B4:86:96:7B:A7:E0:39:86:39
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A78
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/xI4s_DStXI_JkCS0hpZ7p-A5hjk.roa
Signing time: Wed 29 Sep 2021 02:42:50 +0000
ROA not before: Wed 29 Sep 2021 02:42:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2680 (0xa78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C48E2CFC34AD5C8FC99024B486967BA7E0398639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:c5:be:a3:88:83:30:12:88:d5:19:7d:48:
4e:2b:e2:26:51:7a:ad:1b:0a:e3:4a:b8:e1:ca:35:
53:42:cb:fd:98:0a:ca:10:c9:ae:c3:48:92:85:c4:
99:16:a7:66:9d:9c:a5:67:0a:c1:1d:3a:9a:a2:99:
0d:de:90:cf:d7:5b:74:57:12:71:fb:bf:27:c5:6d:
9c:b6:7c:44:78:39:f8:13:c5:1e:6e:6a:2b:a4:d8:
4f:54:20:ad:07:48:e0:41:1b:cb:a4:53:4f:53:17:
f6:02:da:8a:29:96:25:e7:8c:5a:26:20:86:b1:9f:
96:3d:76:4d:49:52:0f:f0:a3:f7:b1:9c:ed:b6:02:
3c:1c:a7:18:88:e5:0d:cc:c7:3a:b7:f6:24:31:b4:
60:57:fd:e7:24:e3:9e:0f:fe:01:ae:47:c4:54:d0:
4c:c7:c5:48:d5:8c:10:44:c7:4f:a9:ed:d3:aa:75:
be:bd:45:4e:0e:3c:c9:c6:75:e3:9f:e4:f5:6d:a9:
a7:09:4e:ea:6c:9a:d7:fd:0e:e0:8b:da:e3:ae:d3:
55:84:84:a5:16:7b:ed:48:ea:90:ba:8a:df:f4:08:
b3:a1:05:79:21:34:1e:2d:90:3c:8f:05:39:06:ae:
c9:51:47:c7:0c:a9:86:c1:14:70:0a:31:64:1f:ae:
d3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8E:2C:FC:34:AD:5C:8F:C9:90:24:B4:86:96:7B:A7:E0:39:86:39
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/xI4s_DStXI_JkCS0hpZ7p-A5hjk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.32.0/19
Signature Algorithm: sha256WithRSAEncryption
96:e5:74:98:4d:fc:f7:74:ff:c1:a5:39:00:0d:1a:0d:ea:47:
a7:ff:0e:bd:b7:e8:9f:cf:51:ff:3b:b0:52:79:ab:24:10:1a:
17:a3:c2:3c:ce:c7:80:c4:33:0c:b8:41:aa:03:fb:70:c2:45:
79:c0:ac:d9:6c:32:fd:14:0d:fc:cb:65:9e:38:17:66:86:17:
be:ff:25:dc:c7:d8:37:65:4c:30:c8:c4:64:1f:df:dd:5a:79:
5e:eb:e8:b6:4a:7a:88:03:ae:6b:66:75:c0:16:81:12:1a:d4:
14:36:9d:15:2a:5f:26:ae:9d:a5:00:f6:ea:8d:e5:1d:08:01:
fe:a3:c8:d9:39:38:e8:56:9b:fe:8e:08:81:70:bf:3c:07:71:
58:9a:51:29:12:a6:e2:59:37:18:ba:fe:d6:4e:93:73:b0:64:
6d:98:3e:b9:93:b0:3d:52:ff:f7:f0:d1:b3:6b:7d:9d:00:42:
ed:aa:4d:33:93:ac:08:4f:d5:46:23:f6:bf:7b:cf:8d:62:e4:
ba:ea:8f:f9:6e:31:8e:8c:c2:7b:be:d8:2b:76:de:1b:75:7a:
cd:54:7e:57:09:93:b0:f3:f1:8d:90:19:ba:f8:7f:94:93:5f:
3d:5a:61:87:f3:fe:b8:9c:9f:e8:d9:d1:29:10:3d:25:6b:2e:
4f:96:2a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org