Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/ywWY_RXc-9PS6GelZqktMoSLL0M.roa
File: ywWY_RXc-9PS6GelZqktMoSLL0M.roa (raw, json)
Hash identifier: lceR8/6pXbvPVZEzJ6c4nmeuLyq0hAV8o4UQOMiKHQk=
Subject key identifier: CB:05:98:FD:15:DC:FB:D3:D2:E8:67:A5:66:A9:2D:32:84:8B:2F:43
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08B4
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ywWY_RXc-9PS6GelZqktMoSLL0M.roa
Signing time: Fri 11 Dec 2020 08:57:41 +0000
ROA not before: Fri 11 Dec 2020 08:57:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2228 (0x8b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:57:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CB0598FD15DCFBD3D2E867A566A92D32848B2F43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:f5:05:6c:b7:97:77:78:cb:5e:a5:7a:ac:
55:63:74:b4:13:7b:59:1e:5d:0f:4b:29:6b:19:45:
f6:02:35:28:b7:0e:75:74:10:59:e3:ed:aa:19:b4:
3c:e4:63:63:ee:5d:0a:ab:20:9d:38:db:92:74:e1:
d6:81:13:54:a9:ec:03:a0:e6:53:3b:86:5c:57:22:
86:8b:ee:cd:92:93:7b:12:e1:c7:fa:c3:65:61:5a:
75:07:fe:7e:ff:c7:19:f7:2a:a0:b8:b3:07:96:6d:
ae:60:fd:c4:6e:c3:64:80:1e:97:ac:3a:90:b3:07:
ab:50:78:a1:22:40:ef:59:51:9c:7a:b6:3b:42:32:
54:09:77:8d:cb:01:7f:26:50:d6:77:4c:1b:00:e3:
9c:25:05:76:68:49:b9:d0:b3:c8:a3:8c:69:ab:ef:
3e:29:4a:1f:d8:76:82:f0:ca:8a:19:ac:74:e7:a7:
a9:f0:d8:e2:fa:33:a0:f9:1e:6f:0f:6e:bc:54:7a:
8f:1c:1c:b1:d1:4e:5f:9a:14:40:36:cf:26:4e:71:
f3:02:a2:1a:45:39:be:ab:98:17:47:b9:8c:69:36:
23:9a:ea:65:4a:2e:9f:b9:9a:79:89:31:bc:d1:80:
8e:c7:79:a8:b7:b2:b4:98:2b:f0:14:15:01:2e:10:
51:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:05:98:FD:15:DC:FB:D3:D2:E8:67:A5:66:A9:2D:32:84:8B:2F:43
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ywWY_RXc-9PS6GelZqktMoSLL0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.47.0/24
Signature Algorithm: sha256WithRSAEncryption
17:88:58:01:7b:90:5a:db:ba:ce:fe:66:06:96:41:0c:d6:0f:
7c:87:c1:c2:82:94:be:4a:b0:fa:27:be:85:7a:f0:41:c3:de:
ca:ea:37:83:f4:97:b8:3e:51:6e:aa:6a:53:be:08:db:9e:65:
d1:fd:66:96:a9:b7:c8:c4:5a:4e:c3:7e:82:27:87:bd:6f:9d:
77:d5:a9:47:f7:71:8f:52:c6:4c:be:6d:89:d5:a3:2e:c6:84:
50:87:06:4d:8b:24:86:27:fa:06:60:b4:cc:73:67:d1:95:e9:
be:bc:ef:09:48:44:e0:83:6f:f9:57:a6:0c:61:a1:58:b2:b3:
bf:74:19:2d:ae:a0:72:10:bf:00:a3:26:7b:ac:4c:13:4e:8f:
e7:e9:9e:28:8c:ff:33:a7:41:2d:bd:1a:e3:c7:b9:5e:a1:3d:
64:e8:c4:56:85:8c:7c:18:42:99:87:0f:3e:ef:6a:dd:a5:c8:
8c:85:77:de:c7:7c:10:21:9f:c5:0e:3f:a8:d7:5f:85:4b:5d:
ea:6e:fb:fc:f0:3f:fe:d8:6c:1d:82:fe:67:3e:ea:79:2c:bc:
8e:6c:84:eb:d6:a7:c7:9b:07:cb:f5:e7:3f:82:d7:3d:11:f2:
0a:90:f6:d5:9d:06:57:e8:57:53:a9:f1:87:e3:ee:66:5a:c2:
d9:d7:7b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org