Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/3GIimx1Af-MyfsMfa2Zivsrk9wA.roa
File: 3GIimx1Af-MyfsMfa2Zivsrk9wA.roa (raw, json)
Hash identifier: Sqtg8OFEGja65VUd24ETQHxxhl+9eXm7uzBhsmjCcik=
Subject key identifier: DC:62:22:9B:1D:40:7F:E3:32:7E:C3:1F:6B:66:62:BE:CA:E4:F7:00
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 094E
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/3GIimx1Af-MyfsMfa2Zivsrk9wA.roa
Signing time: Thu 30 Sep 2021 12:16:20 +0000
ROA not before: Thu 30 Sep 2021 12:16:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9264
IP address blocks: 202.169.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2382 (0x94e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 30 12:16:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC62229B1D407FE3327EC31F6B6662BECAE4F700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f2:86:bb:71:c9:d4:b9:3f:cb:94:44:3f:2c:
fd:79:b4:67:d0:80:ac:66:46:6c:19:83:c9:e7:60:
c8:ff:46:86:e9:81:f9:0e:c4:8c:68:9a:91:25:d9:
18:ed:74:9d:62:fb:28:27:80:8b:24:27:81:b3:8b:
9e:13:dd:db:bc:93:61:ae:0a:0e:9d:37:0b:d5:2f:
46:00:ab:dd:ef:7f:29:c4:91:87:53:00:3d:22:4c:
03:6a:b0:3e:46:81:f6:6d:30:2b:c3:6d:ba:05:8f:
6e:fc:9d:65:1a:3a:61:11:cf:8e:b2:a9:89:43:51:
f9:28:c0:c3:f1:45:04:ab:d3:59:0e:6d:b0:4d:7f:
6b:57:a4:11:39:f2:8f:bf:b0:ce:d0:e1:0b:66:b3:
d6:b4:c7:fd:c7:2e:42:a5:39:e4:07:52:ac:31:6a:
66:46:7b:f4:39:7b:02:61:4a:f3:70:04:3f:da:f9:
c0:e4:b4:fb:e8:51:20:ec:51:8c:30:9d:a9:3d:58:
2f:c9:a6:53:cd:d0:34:0f:a4:97:50:1d:45:17:25:
a7:98:43:82:20:6a:3b:09:18:04:53:16:89:ff:02:
ad:1f:67:64:ac:34:7f:71:2d:d5:8e:86:13:98:5a:
7c:c3:1e:d6:72:f6:97:d9:a8:77:8d:4e:0a:73:a0:
45:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:62:22:9B:1D:40:7F:E3:32:7E:C3:1F:6B:66:62:BE:CA:E4:F7:00
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/3GIimx1Af-MyfsMfa2Zivsrk9wA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.169.160.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:40:06:09:c6:3c:5d:36:81:94:15:e9:94:fe:10:3a:2a:39:
db:ec:b4:18:ba:fc:48:d0:6b:c6:f6:87:4a:dc:55:ee:b3:af:
d6:4e:39:e4:86:e1:ed:2f:df:6a:f1:19:a5:95:d9:8a:2b:32:
6b:90:54:cc:f9:76:23:49:84:c0:6d:5a:b1:12:bb:33:ae:c8:
2b:cf:fc:07:2c:b9:02:71:b5:95:9e:ed:f0:7d:65:84:58:51:
ea:f3:b0:ca:11:b1:8b:1d:53:0c:8c:71:4e:fb:fb:65:13:38:
c6:12:8f:9c:13:e5:cc:bc:ed:ee:a0:7f:94:00:34:85:ae:56:
55:ce:d7:9d:fb:04:4e:cb:da:3d:6e:41:e0:db:6a:51:23:2c:
c0:61:41:b3:99:aa:83:6b:b1:78:8c:1b:32:fa:c0:27:0b:f7:
9f:63:49:4d:e8:b1:03:7d:ee:5c:70:8a:9a:fc:12:13:bb:ad:
50:f4:58:52:30:fd:45:79:6c:96:d7:9f:db:22:39:dd:7e:42:
75:cb:0b:a2:55:7f:0f:c2:18:c9:91:ee:70:f6:e8:88:79:73:
7c:4e:0b:53:b4:74:27:27:1d:23:09:a2:7a:c5:21:89:bc:51:
a7:44:00:88:19:f0:5d:de:b0:1c:de:88:3b:1f:ac:8c:cc:f3:
38:a6:80:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org