Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/g2UMHidKX1AHOC0WtaGOTfDXoIk.roa
File: g2UMHidKX1AHOC0WtaGOTfDXoIk.roa (raw, json)
Hash identifier: gH0dET90jMPXkEyXbUHL/V16IHLYuIAilV3qwwTjNkA=
Subject key identifier: 83:65:0C:1E:27:4A:5F:50:07:38:2D:16:B5:A1:8E:4D:F0:D7:A0:89
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 0A16
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/g2UMHidKX1AHOC0WtaGOTfDXoIk.roa
Signing time: Wed 27 Jul 2022 07:18:36 +0000
ROA not before: Wed 27 Jul 2022 07:18:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131601
IP address blocks: 114.29.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2582 (0xa16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Jul 27 07:18:36 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=83650C1E274A5F5007382D16B5A18E4DF0D7A089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:78:30:af:5a:96:c6:ea:46:88:ea:02:ab:91:
6e:28:ec:92:e7:a1:e0:4b:5f:1a:dc:e4:f0:78:0e:
7e:bc:b8:65:fe:5c:6e:90:25:c1:45:a4:8a:92:cb:
3f:7c:44:ba:cd:cf:ed:df:4c:5f:bc:bb:4d:65:5c:
67:52:8e:79:90:09:47:64:74:cc:f8:bb:d1:88:8e:
5e:ec:18:db:8f:0c:59:d9:6c:4b:b7:b4:98:d3:e2:
49:c2:41:44:e6:36:c0:c7:c7:e1:89:b0:d3:af:e1:
ca:d2:8c:fc:66:3a:e9:13:f9:f9:9f:7f:3f:96:4b:
eb:de:f0:7b:1d:5b:6d:53:72:4d:35:7d:e8:16:63:
e2:a0:bb:09:50:e8:5f:a1:b8:47:aa:fc:53:7b:bc:
b8:83:14:9f:d5:a5:85:ea:89:a2:77:28:25:3d:ef:
e9:35:69:79:cd:66:fa:e6:0a:a0:08:aa:9c:15:57:
be:05:07:26:92:ff:61:63:04:79:af:af:0c:ff:13:
d9:34:29:24:ba:04:e6:50:77:89:f7:9e:aa:22:18:
9b:74:b0:f5:74:5d:3a:21:b1:4f:01:cf:6c:85:1e:
6e:c6:c2:29:82:78:12:2e:a0:cc:a0:44:32:05:78:
43:c0:87:c8:38:d3:e8:b1:d0:62:86:15:3b:53:db:
7a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:65:0C:1E:27:4A:5F:50:07:38:2D:16:B5:A1:8E:4D:F0:D7:A0:89
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/g2UMHidKX1AHOC0WtaGOTfDXoIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.244.0/22
Signature Algorithm: sha256WithRSAEncryption
37:2e:a1:d2:da:5e:00:52:ab:8a:d9:ad:69:36:b8:16:da:5a:
e4:eb:12:f9:3e:94:82:68:c5:90:1a:3b:c1:33:9f:f5:d1:1a:
3a:10:58:f5:db:99:b7:10:00:fa:4c:0c:1a:4d:fe:f2:87:57:
dd:0e:e6:92:29:d1:1b:92:aa:be:b5:24:76:32:ef:ca:c3:d3:
3e:b0:dc:f8:04:13:ec:20:a5:81:c8:fb:6a:bd:2e:76:c5:4c:
ed:1c:0a:a0:88:88:f6:02:d9:65:60:d2:b8:cb:26:31:bd:45:
8f:0b:5f:ad:73:87:2d:24:68:83:40:49:72:02:7e:2a:b9:ed:
41:d4:fd:32:cf:7b:85:2f:2c:f7:38:3e:6a:cd:09:a3:cc:de:
dc:5b:1e:fb:bf:a9:c2:2c:a8:10:fe:8b:05:c9:1b:c8:f4:04:
be:24:5b:77:bc:a4:53:04:44:2b:27:e0:a5:aa:f1:6e:c0:ca:
b8:e7:61:70:07:95:14:ca:88:51:2e:29:f2:2b:c0:9f:c7:3b:
3d:b1:c4:5f:e5:2a:22:67:f8:fc:d7:ec:d7:64:b3:ca:8a:21:
9c:2f:26:b6:d0:5e:93:05:68:d2:69:d8:f6:36:ea:00:ea:22:
74:f2:d9:47:2c:6e:f0:0a:c7:c2:b3:68:9a:d8:19:db:1f:9f:
33:79:37:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org