Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCTV/qRsAlZl1k8HjEm-qbDbvY1uMzBc.roa
File: qRsAlZl1k8HjEm-qbDbvY1uMzBc.roa (raw, json)
Hash identifier: cjmFyQdf0WM9tqDrgx+M5vryjX2N01ToufbNo+bUcjU=
Subject key identifier: A9:1B:00:95:99:75:93:C1:E3:12:6F:AA:6C:36:EF:63:5B:8C:CC:17
Certificate issuer: /CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0
Certificate serial: 076E
Authority key identifier: A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/qRsAlZl1k8HjEm-qbDbvY1uMzBc.roa
Signing time: Tue 29 Sep 2020 09:53:47 +0000
ROA not before: Tue 29 Sep 2020 09:53:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 27.0.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1902 (0x76e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0
Validity
Not Before: Sep 29 09:53:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A91B0095997593C1E3126FAA6C36EF635B8CCC17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:94:cf:b6:bb:b1:43:d6:a6:0f:ab:f1:c9:54:
fc:41:bc:4f:bc:ce:58:bd:5b:c8:a3:21:75:b6:eb:
aa:f8:0e:95:52:fa:ae:69:80:f9:99:40:14:25:32:
14:16:f1:95:e2:79:da:5a:db:c0:66:32:a3:3d:6d:
af:53:6a:e5:b9:00:87:6b:c0:75:65:4e:ba:7a:3a:
02:45:13:2f:8a:d0:6a:dd:99:56:8e:1e:3f:16:cf:
0f:8b:f4:c5:3e:64:a3:b3:bd:f9:b5:8b:ff:82:83:
aa:d0:44:e9:75:95:54:f2:73:36:e1:51:02:e0:12:
63:2b:21:25:1c:98:89:1e:76:d4:8b:35:72:93:38:
db:c8:e5:14:d2:c1:79:fe:bc:00:8e:5a:b6:fc:fe:
f2:9b:8a:88:f2:24:dc:38:02:76:b1:bb:57:c4:8f:
ee:9d:b9:25:e7:60:d8:7c:00:61:b2:2a:d8:c4:8f:
d7:aa:bb:a1:c2:5b:dd:b1:0c:be:1b:ae:fa:2b:f3:
60:df:0c:34:33:2a:ee:17:14:8a:1b:ff:41:1d:c9:
5d:11:6c:4b:60:fc:f0:7a:ce:2f:80:81:2a:fd:ed:
ef:05:e4:e8:e6:3f:ce:97:84:85:e9:fc:98:c3:6d:
11:38:7c:03:71:f3:31:95:8f:35:7a:56:42:1c:86:
d0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:1B:00:95:99:75:93:C1:E3:12:6F:AA:6C:36:EF:63:5B:8C:CC:17
X509v3 Authority Key Identifier:
keyid:A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/qRsAlZl1k8HjEm-qbDbvY1uMzBc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.0.152.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:0d:da:f0:e7:15:69:73:2b:75:33:02:08:52:6c:ed:41:be:
c0:fa:d6:ca:10:80:0d:3a:e4:a0:1b:f5:f5:18:2b:25:59:bb:
e1:2d:b5:80:0b:d1:d2:5c:41:b6:ea:3f:3a:df:a3:fb:5d:26:
3c:d6:b0:0f:12:86:f8:ee:32:81:1d:64:df:59:f0:b4:85:ef:
51:3f:3c:e3:ad:1f:3f:48:09:56:06:a1:29:d4:72:db:f7:37:
7b:75:f2:72:33:54:01:5c:3a:53:79:ba:3f:8d:18:27:c2:09:
84:70:72:76:2c:61:6c:d0:4c:7e:9a:56:9b:94:ac:99:05:02:
fc:13:b4:29:76:93:5f:53:3d:52:9a:93:ae:b7:d9:62:8a:dc:
67:78:f6:30:7d:fc:f4:b9:ed:84:ab:09:63:79:61:e1:6e:56:
79:da:13:af:6e:79:60:27:43:38:84:26:aa:88:e5:88:64:73:
e3:58:55:0d:bb:db:a6:ee:f8:af:a2:ae:7f:ad:8b:0b:a2:4b:
e6:3b:41:18:e2:5c:64:c4:fb:4a:63:d5:ea:69:f9:aa:f7:df:
47:a9:41:5c:bb:f9:c5:e6:eb:65:9e:ba:94:83:1a:25:3a:98:
cb:5e:47:3f:4a:f8:65:86:1f:64:04:bf:6f:c2:a0:0c:40:07:
48:d0:48:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org