Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCTV/UUDDjvD4dX6qUai0NdHvxvk8-94.roa
File: UUDDjvD4dX6qUai0NdHvxvk8-94.roa (raw, json)
Hash identifier: 2crM7E8qj05KH61MmiADn8yWkqhjmgqxKPwNpswaF7Q=
Subject key identifier: 51:40:C3:8E:F0:F8:75:7E:AA:51:A8:B4:35:D1:EF:C6:F9:3C:FB:DE
Certificate issuer: /CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0
Certificate serial: 0A2F
Authority key identifier: A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/UUDDjvD4dX6qUai0NdHvxvk8-94.roa
Signing time: Thu 15 Sep 2022 02:50:08 +0000
ROA not before: Thu 15 Sep 2022 02:50:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 27.0.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2607 (0xa2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0
Validity
Not Before: Sep 15 02:50:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5140C38EF0F8757EAA51A8B435D1EFC6F93CFBDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:06:e0:16:0f:c5:04:4c:ad:2b:b4:cf:17:20:
26:11:a1:f0:03:49:57:d6:9b:62:15:d9:e7:14:8d:
93:cf:1c:fb:76:c0:0a:f4:81:b3:01:11:bb:7c:7d:
bf:fc:77:db:13:99:26:9a:75:6f:0d:f2:a7:96:ab:
c9:1e:7a:cf:2f:29:c2:5c:e7:63:b1:29:5f:02:e3:
96:0f:05:3a:23:a6:68:fd:86:97:95:7b:8e:84:e5:
e5:65:d7:02:5a:af:44:94:5d:f1:3c:02:6e:61:1b:
e4:7c:fd:b1:fa:fb:eb:a7:2e:ba:bb:ad:8f:62:d2:
e6:99:a5:69:35:34:c1:cd:4c:08:b9:b9:5e:da:89:
44:44:1d:d8:5d:39:62:47:cf:58:ec:60:c8:bd:d0:
25:05:31:06:06:9c:b6:df:4a:2a:d7:e2:b3:a3:34:
4a:ea:ad:04:1e:78:42:bf:39:9f:78:91:6f:5f:47:
70:8c:99:61:a5:a0:9c:3c:8e:a1:29:b0:56:ee:69:
a1:34:99:27:21:61:24:e4:aa:79:fc:10:b8:e2:b8:
8e:81:79:8c:a7:71:d5:c5:d6:28:91:7b:d8:96:8f:
19:95:c1:61:b8:34:8c:51:1a:c9:b0:fe:2b:90:d5:
f6:49:39:95:8f:be:86:c6:26:e2:3c:a5:97:57:38:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:40:C3:8E:F0:F8:75:7E:AA:51:A8:B4:35:D1:EF:C6:F9:3C:FB:DE
X509v3 Authority Key Identifier:
keyid:A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/UUDDjvD4dX6qUai0NdHvxvk8-94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.0.152.0/22
Signature Algorithm: sha256WithRSAEncryption
96:00:1e:7b:62:e4:86:9e:d0:71:0a:3f:02:42:b6:c0:15:43:
a5:fc:4e:c4:af:43:0c:69:09:23:2c:cb:40:24:50:c4:1b:9c:
3f:55:b1:71:41:2d:3f:01:ed:f4:8d:af:b9:cc:e5:43:2c:c7:
66:c7:62:fb:86:68:e4:0b:90:8b:8f:10:c6:b4:bb:f1:5c:19:
db:7b:9c:6c:b3:58:ba:a3:ad:88:45:31:31:8b:4f:9b:e9:ea:
2d:0d:70:9c:a4:7e:d7:32:85:c1:c4:3c:58:f8:5f:f0:11:15:
2d:17:26:e0:cb:12:d0:ed:71:b4:e9:8a:32:87:87:50:c8:72:
c4:f2:fb:0b:38:88:c6:06:ba:8a:02:f2:e6:b9:89:0a:a0:ea:
30:43:6e:52:2c:4d:15:9d:71:57:06:99:d1:7f:bc:fe:20:80:
ec:5c:e7:9a:3a:cf:3a:5f:22:65:09:b8:59:e0:0a:d3:fb:e7:
21:30:aa:06:08:d8:02:00:a3:57:d5:7e:f0:34:15:58:c2:b2:
49:4b:ce:90:b3:45:0f:b4:8a:96:80:d5:14:76:66:a5:e9:87:
bb:ca:59:20:03:3d:e8:92:ba:4e:8a:90:cd:d6:39:c0:b7:80:
eb:b6:f5:de:74:c8:59:5d:51:66:a6:df:9f:a2:75:e2:4d:16:
32:30:f4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org