Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/eVlWymPXIRKrhcWkPREojrg9-so.roa
File: eVlWymPXIRKrhcWkPREojrg9-so.roa (raw, json)
Hash identifier: xODjhBJmIs/GxkRfprRhKXSb2arRWmg2W6Vn+HAOiSo=
Subject key identifier: 79:59:56:CA:63:D7:21:12:AB:85:C5:A4:3D:11:28:8E:B8:3D:FA:CA
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 0945
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/eVlWymPXIRKrhcWkPREojrg9-so.roa
Signing time: Wed 29 Sep 2021 02:52:47 +0000
ROA not before: Wed 29 Sep 2021 02:52:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131601
IP address blocks: 114.29.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2373 (0x945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Sep 29 02:52:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=795956CA63D72112AB85C5A43D11288EB83DFACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b5:ea:01:98:17:85:27:d7:bc:d4:78:b5:1b:
12:6d:e0:d1:c9:c7:57:59:c0:b6:8f:6b:c7:da:88:
24:4a:54:d5:b9:b3:08:d3:f8:98:77:e6:01:c4:b8:
70:d1:2a:7c:fc:53:fb:20:fd:84:61:f5:85:b3:fa:
fe:a9:be:f0:7b:42:6e:95:07:ba:b3:cd:74:51:df:
b0:ba:72:38:6a:4e:fc:ec:18:e1:a0:ae:47:f7:86:
d3:ba:c4:50:cb:8f:d0:bc:fb:49:25:52:07:d1:79:
f8:a9:ba:ec:c3:30:21:0a:8f:5a:76:3b:62:3d:e1:
d3:1f:d4:a8:5b:ff:e4:d9:e9:26:6e:b9:0e:94:a9:
85:49:b1:92:f9:5d:c7:7c:1f:3f:c9:bc:33:56:d7:
23:17:4a:dc:05:4e:9d:21:eb:f4:fa:9c:ca:b6:6e:
e5:e0:e8:b6:2a:15:42:b0:4c:fe:62:83:45:b3:50:
f3:e9:32:09:a0:04:51:e2:84:96:c2:e9:0e:9e:53:
b7:4e:3a:6e:51:0e:3c:36:6e:ef:af:a2:a6:c5:c8:
7a:ff:12:2f:92:51:71:59:8c:e0:8a:40:2b:af:ea:
ef:13:af:07:4c:16:11:7e:f1:6a:5e:8b:42:22:85:
5f:c1:e4:9e:88:53:e8:9b:31:a3:ba:a8:e6:9e:70:
50:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:59:56:CA:63:D7:21:12:AB:85:C5:A4:3D:11:28:8E:B8:3D:FA:CA
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/eVlWymPXIRKrhcWkPREojrg9-so.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.244.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:c3:82:2d:a0:62:cc:df:6a:d4:33:11:45:e6:83:63:43:b9:
ea:78:73:11:d8:12:07:bc:b2:d3:c8:cb:19:5b:08:7e:f8:37:
83:f0:38:df:0d:4f:70:0a:e7:30:ff:e3:d4:ab:df:76:11:e0:
27:9b:e1:4d:5e:4f:d1:50:3e:80:e3:b1:68:c4:90:91:3f:31:
eb:cf:f8:47:04:c1:0d:4a:c6:21:39:7c:eb:3f:d6:9f:d8:cb:
37:75:e4:a3:0e:2e:0b:0b:92:89:df:ce:d6:00:34:3b:b4:e7:
f5:69:78:fd:0f:e3:c9:dd:f0:19:8e:7a:c1:03:d6:a7:14:d9:
5a:f5:e7:f7:0b:96:3f:24:20:52:78:86:7c:82:18:32:7e:d7:
98:ff:2d:5f:34:38:08:f1:c6:53:6e:58:6b:27:06:39:36:4d:
d7:92:d7:04:ce:d8:1a:46:52:ae:a5:ba:f4:47:f9:ee:26:24:
aa:9d:0c:bd:96:e4:f4:85:4c:3b:e5:43:de:43:01:f6:83:67:
06:ca:fe:3c:a7:9d:74:f7:bf:c2:c6:c9:b1:d6:21:1b:2d:9e:
5c:5f:c7:10:fd:50:c8:71:78:0f:f7:2f:be:6e:e1:f3:dd:4e:
4b:23:4b:fc:8b:f3:ec:50:d5:07:38:ed:39:e1:4b:8c:bc:e8:
ff:5d:0c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org