Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/yMOIXu-0G2TGmtLR053Oj9P1ahU.roa
File: yMOIXu-0G2TGmtLR053Oj9P1ahU.roa (raw, json)
Hash identifier: s0TxbmU7OobLwYEXG5/QyBJd8tIfqplTkQJbaHzZ99Q=
Subject key identifier: C8:C3:88:5E:EF:B4:1B:64:C6:9A:D2:D1:D3:9D:CE:8F:D3:F5:6A:15
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 097D
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/yMOIXu-0G2TGmtLR053Oj9P1ahU.roa
Signing time: Sun 07 Feb 2021 13:09:22 +0000
ROA not before: Sun 07 Feb 2021 13:09:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2429 (0x97d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8C3885EEFB41B64C69AD2D1D39DCE8FD3F56A15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:99:43:66:3b:bc:7c:b3:f8:fd:ec:bf:2f:
a8:a3:98:31:f8:28:5f:b9:87:c0:19:65:9c:5d:8c:
cb:6b:d3:6d:60:ce:55:b9:7d:7d:e5:c4:e5:91:f8:
49:12:80:f9:25:5b:b5:8f:04:fe:2a:de:6d:d3:95:
43:74:84:c5:66:84:b6:7a:86:13:2a:ba:61:3c:88:
50:38:ea:e8:97:67:3e:6f:5a:b3:75:6f:c8:59:b0:
d1:16:f9:96:c1:63:6c:90:75:df:f0:33:d2:24:e4:
01:33:5e:03:07:50:6f:21:18:bf:71:af:59:57:5e:
dc:fa:ae:24:45:ba:6b:1d:56:c2:ef:4a:3c:25:d2:
4b:30:1e:68:ae:3a:ff:09:a5:d3:0e:4a:6f:da:6e:
62:42:df:78:4b:43:fa:70:44:df:24:10:b6:58:00:
23:71:c8:d9:2b:1a:b0:ca:d2:03:c0:ef:a8:29:92:
41:e8:47:35:80:77:7b:62:44:8f:db:62:d9:8f:ef:
b0:5a:84:4f:8a:29:d3:c8:a7:d3:50:f4:80:6d:30:
b5:3d:77:f7:26:46:84:a9:e4:37:4f:bd:6f:4e:c6:
7e:e9:2f:3f:af:3b:f3:6e:52:db:86:dc:fc:eb:2b:
22:f4:19:34:41:b5:3e:9d:9a:59:0c:08:13:69:b9:
cb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C3:88:5E:EF:B4:1B:64:C6:9A:D2:D1:D3:9D:CE:8F:D3:F5:6A:15
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/yMOIXu-0G2TGmtLR053Oj9P1ahU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.128.0/24
Signature Algorithm: sha256WithRSAEncryption
95:5f:87:90:b9:64:fb:8a:c2:25:67:d6:f1:71:01:e3:29:e5:
b0:c2:2b:02:e5:f0:aa:96:f9:b1:bf:96:d7:3d:44:7f:3f:01:
9d:3e:7c:d9:b1:7d:0f:d6:2b:ee:5c:fc:b3:a1:df:6f:54:c4:
14:70:58:9f:9e:07:da:06:ca:97:7c:02:e6:aa:e7:98:9c:c6:
29:cd:8c:04:b9:d5:9f:05:6d:1f:3d:b3:86:ec:a0:fb:b8:84:
0a:8e:46:0a:ba:6e:5a:5b:8b:10:53:86:b3:1c:e6:31:6d:9c:
2b:5e:ea:04:c7:4d:29:ee:6a:73:2c:5b:db:19:c1:86:4f:62:
73:0a:c9:2c:34:15:c5:3a:23:7c:86:06:d2:b5:4f:4d:fe:61:
5a:a3:1f:39:b0:76:3d:29:76:ac:fc:92:ba:b6:5a:22:97:bd:
b8:e8:46:ca:a4:df:85:26:2a:fa:6a:df:8f:44:d1:50:cc:2e:
65:8e:ae:f1:25:26:26:ca:ee:58:97:03:6e:a3:04:f8:11:06:
1a:44:cb:15:80:87:95:ad:b1:10:76:d6:7c:9f:cc:fe:1b:41:
79:9a:38:0d:19:53:9d:3a:b4:bd:3e:ba:aa:06:a1:14:e4:5e:
97:b9:b9:93:e8:ec:e3:ad:66:c6:13:db:3f:e3:e7:2d:08:e7:
ff:0a:6b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org