Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/xmynmENG_aMMuQ1oKnShNEBQwqM.roa
File: xmynmENG_aMMuQ1oKnShNEBQwqM.roa (raw, json)
Hash identifier: HcxBMLqns0UEOp9e9FghR+M5tmX+9oXsYhD3vBR7n0w=
Subject key identifier: C6:6C:A7:98:43:46:FD:A3:0C:B9:0D:68:2A:74:A1:34:40:50:C2:A3
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A67
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/xmynmENG_aMMuQ1oKnShNEBQwqM.roa
Signing time: Wed 29 Sep 2021 02:42:44 +0000
ROA not before: Wed 29 Sep 2021 02:42:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2663 (0xa67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C66CA7984346FDA30CB90D682A74A1344050C2A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ed:ac:89:d9:67:43:c0:83:1d:7a:79:4c:36:
fc:37:6f:c5:ae:9a:b0:df:50:d1:b4:a1:9f:14:9e:
2e:f2:61:9b:e0:fc:c8:36:d6:3c:ab:9c:99:db:e7:
72:90:fb:57:56:d8:72:e8:42:b8:8f:27:04:5b:5f:
7a:96:67:c6:0d:81:97:4b:73:5b:32:62:b5:53:8c:
23:15:1a:a5:e8:e6:52:5b:bf:ec:67:c8:72:6d:1f:
e2:11:98:69:73:28:e9:a9:2e:e9:49:af:10:75:d9:
9f:21:bb:08:b4:da:ee:fb:81:7a:5b:b1:9e:cb:2c:
aa:97:28:2d:75:fc:2b:e3:fc:c1:a4:37:b4:81:c6:
ed:37:c8:0e:de:4c:c8:54:59:bd:c9:88:f3:c1:2e:
e5:37:42:4f:d5:7a:91:10:23:aa:06:5e:ab:9e:c8:
f9:0f:fe:0f:a9:6d:64:30:bd:b2:68:31:14:92:90:
f6:74:60:ff:a6:6e:17:82:75:b2:37:53:f5:1f:dd:
c6:97:f1:35:49:15:b1:67:af:01:81:71:c0:3c:bc:
bd:08:b0:c1:dd:1e:99:37:68:08:ff:1c:5e:db:8a:
1b:23:69:d8:0d:8a:11:f0:95:45:f5:11:33:e0:0d:
f8:48:07:ee:96:6b:5e:0a:d6:ef:8d:03:02:4e:ae:
bc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6C:A7:98:43:46:FD:A3:0C:B9:0D:68:2A:74:A1:34:40:50:C2:A3
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/xmynmENG_aMMuQ1oKnShNEBQwqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.42.0/24
Signature Algorithm: sha256WithRSAEncryption
78:50:3b:f2:8c:95:63:f2:ff:1d:2c:9e:82:76:59:21:20:bc:
d3:38:15:c4:a9:6a:1d:75:6d:7a:2e:d6:ed:40:21:d6:ac:0c:
5c:a2:9a:ff:57:1d:dd:cd:42:1e:9e:c1:5c:7e:5b:68:bb:37:
cb:f6:e8:68:f4:ca:8e:63:89:91:29:7e:81:61:b3:50:a2:0a:
e5:37:fb:e9:fb:9d:63:ea:9c:56:01:49:f1:22:73:90:f7:01:
17:71:a3:73:03:f6:c4:60:74:7b:af:60:48:ac:93:f3:ad:af:
94:c7:03:c8:30:8e:cb:b4:a6:b6:ed:a9:a8:ed:d2:28:5b:e1:
b3:23:43:41:1c:85:22:c2:bd:10:74:bf:cb:40:2f:67:44:d9:
5f:33:ec:51:8f:a3:98:85:38:80:e5:e5:e4:c4:f9:3f:a3:54:
09:24:98:cb:b9:bb:d9:bd:4a:2f:47:17:6f:6f:4b:eb:80:59:
22:cd:05:1e:c9:22:20:48:66:17:e5:78:48:c0:43:4f:8f:a3:
5b:bb:22:3c:ad:18:f5:e6:aa:f9:85:33:9a:43:52:a7:a8:9f:
da:d4:41:65:69:3e:a4:1f:d6:b5:51:6d:f7:02:ad:23:2b:fe:
c6:df:65:78:5d:62:ac:21:09:80:5b:ba:c9:f6:b2:69:c8:cc:
6f:17:e6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org