Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/8aw17ktiMpOPrLLNrEBOxbyDOZU.roa
File: 8aw17ktiMpOPrLLNrEBOxbyDOZU.roa (raw, json)
Hash identifier: Ztj1uJ8DYTUPG9b1buf7R2aJ5ujFg6o6TDROOdLvdHc=
Subject key identifier: F1:AC:35:EE:4B:62:32:93:8F:AC:B2:CD:AC:40:4E:C5:BC:83:39:95
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 0A39
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/8aw17ktiMpOPrLLNrEBOxbyDOZU.roa
Signing time: Thu 15 Sep 2022 02:50:22 +0000
ROA not before: Thu 15 Sep 2022 02:50:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 198949
IP address blocks: 114.29.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2617 (0xa39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Sep 15 02:50:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F1AC35EE4B6232938FACB2CDAC404EC5BC833995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3b:3c:32:16:f1:3a:b6:d1:ed:1c:2a:b9:2b:
7c:75:77:7e:04:76:72:ce:ef:74:c3:0d:dc:c0:ee:
bb:1e:3d:b9:a3:30:94:a3:d5:ab:e9:04:68:c0:16:
f5:07:ca:29:03:26:32:48:2b:60:11:76:39:4d:3a:
bb:34:b7:cf:29:cd:b3:c5:de:33:5b:25:23:9f:ed:
fa:32:61:9d:f2:90:f2:15:39:c5:b4:56:e0:d6:9d:
b6:1d:75:ec:96:0a:c1:76:36:c4:a2:b3:96:10:6c:
f9:4b:c1:b4:13:99:3f:fc:ae:8e:3d:63:dd:30:2c:
e6:8d:f8:1d:6f:46:4b:6c:3a:ed:8d:79:1a:91:60:
77:24:b1:a7:06:95:34:4e:49:41:ea:09:0e:5b:1e:
9d:93:c2:14:b7:43:46:d2:58:36:40:93:2b:dd:25:
95:51:2f:3a:fb:11:8f:6f:17:2b:1d:df:0d:a8:c7:
98:77:e2:4e:bd:7c:40:a4:c8:58:de:b5:a5:13:5d:
5d:67:b6:66:ee:11:b5:90:e7:ad:bb:83:a4:31:c2:
5b:00:76:ca:56:76:b4:96:8b:4b:34:ea:e6:a1:9c:
87:a0:a1:45:35:d1:b7:8c:c5:e1:3e:87:9f:ba:42:
01:eb:ae:b8:2c:cb:40:48:c3:a6:83:1f:10:30:26:
9e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AC:35:EE:4B:62:32:93:8F:AC:B2:CD:AC:40:4E:C5:BC:83:39:95
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/8aw17ktiMpOPrLLNrEBOxbyDOZU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.244.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:40:8e:c1:69:70:e1:6e:97:54:13:52:c5:03:2c:11:3a:e9:
7e:01:91:4b:f9:fe:26:5b:12:ed:4c:39:dc:a4:74:ce:6f:8d:
eb:d5:3c:03:0f:27:5d:79:bb:8d:9b:f3:ca:e3:79:2c:27:0a:
c0:f6:dc:07:8a:18:1f:93:67:0b:59:31:61:ee:a4:65:b9:b8:
23:50:8e:16:14:18:f4:0d:90:6e:34:ac:13:08:c7:1c:62:6b:
18:ad:fd:97:bb:8b:51:7f:87:44:28:e5:11:8b:2c:25:ab:4d:
6c:56:e9:da:21:95:8d:77:2e:a6:f6:6a:8a:de:52:77:e8:b3:
d7:5d:76:90:c9:ea:9b:84:1f:7a:3d:41:6e:a7:e1:7d:ab:a4:
c1:a6:63:a6:e9:e3:f0:a1:91:28:b0:b3:fd:c5:26:7e:c4:40:
b9:6d:dc:a5:a5:79:db:0a:d4:73:f9:c4:98:b7:34:32:91:0e:
1b:52:05:b7:c7:ac:14:ca:50:66:42:4e:90:9a:08:8d:a9:be:
08:87:51:3d:89:ce:45:d3:04:da:ff:7f:4a:f2:03:7a:7b:d5:
50:d6:34:f1:5e:fe:be:bd:52:d4:6c:ec:39:38:c1:be:b9:69:
da:47:b5:34:25:57:d5:8e:a2:c1:0e:8d:a4:aa:2b:e4:fb:00:
f0:d3:5b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org