Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/17c_xR28Iz0nYSXp5dqB4wtKFPE.roa
File: 17c_xR28Iz0nYSXp5dqB4wtKFPE.roa (raw, json)
Hash identifier: vBhjn+3lumifCH9AVT0CR5M4Vp5C8hXXF7lU8jg+boI=
Subject key identifier: D7:B7:3F:C5:1D:BC:23:3D:27:61:25:E9:E5:DA:81:E3:0B:4A:14:F1
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0787
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/17c_xR28Iz0nYSXp5dqB4wtKFPE.roa
Signing time: Tue 29 Sep 2020 09:51:35 +0000
ROA not before: Tue 29 Sep 2020 09:51:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 211.73.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1927 (0x787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 09:51:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D7B73FC51DBC233D276125E9E5DA81E30B4A14F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:c0:c1:65:a1:9b:54:3f:4e:27:19:76:74:
b9:41:c2:56:d4:e9:79:1d:01:fb:63:a1:bc:78:86:
51:61:af:60:c7:ff:56:e6:31:ef:3a:ff:5a:62:e1:
24:84:11:50:3e:97:3e:ee:cc:b9:14:1f:6b:01:46:
fa:d7:a5:8e:1a:ad:d9:5e:82:5e:ca:56:07:c8:e8:
18:5e:25:ed:70:6f:53:a0:1a:e0:8c:7a:ab:33:86:
9b:1d:2d:dd:9f:d8:a9:db:ae:56:4a:0a:99:b8:58:
8e:7c:e0:b3:8a:b0:2c:b8:a6:da:23:3d:e5:25:8d:
19:52:ef:26:cf:88:ee:67:e2:5c:59:69:d3:76:70:
18:0e:33:79:ba:02:76:d9:30:56:1c:61:fc:52:06:
18:83:e4:ad:0d:94:de:a2:e8:95:91:47:f2:59:15:
90:f1:eb:4f:f5:f2:c5:d4:1e:fa:e1:69:89:18:b6:
b8:5e:1c:c3:18:57:e3:5e:91:e5:06:be:c2:1a:9f:
ce:2f:40:cc:fd:e7:56:58:9f:db:77:ab:03:dc:f7:
f1:74:f9:1a:a1:15:60:10:a8:23:f2:c7:9b:c0:f5:
e7:fc:cd:de:ae:0f:c5:48:65:3e:bc:1b:5d:a9:d8:
f6:5b:00:ba:5a:b4:dd:4b:00:d6:e9:51:e9:af:f6:
ea:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B7:3F:C5:1D:BC:23:3D:27:61:25:E9:E5:DA:81:E3:0B:4A:14:F1
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/17c_xR28Iz0nYSXp5dqB4wtKFPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.128.0/19
Signature Algorithm: sha256WithRSAEncryption
31:33:ee:1e:af:62:0c:eb:80:f6:7f:59:b0:11:3b:12:a9:b4:
f7:0b:99:8f:6d:82:7b:de:b1:7a:1e:2f:05:ca:33:81:4b:53:
35:73:ad:b7:13:e2:06:ab:05:46:3d:8c:39:ae:c0:f5:1d:52:
b4:b1:d5:77:d2:f5:b8:39:b2:a4:e0:eb:cd:c9:ae:c7:0b:29:
91:0a:ba:5c:46:37:97:92:11:76:76:24:71:5e:99:36:0d:45:
6c:9e:54:3e:c1:0a:78:c1:2c:59:44:5c:f2:66:7f:aa:f5:0f:
6b:92:9c:7c:9f:f1:6e:95:57:5f:62:98:31:1f:f5:43:2e:d7:
57:51:72:1a:71:8a:1b:28:d5:d9:20:a5:a3:00:e0:84:c8:b3:
a7:11:6c:71:fb:0e:7a:87:ec:94:cf:93:81:78:ee:07:24:a1:
f6:ad:84:72:1a:b8:4c:58:1d:1c:04:f6:da:03:1c:9c:aa:28:
ac:25:be:a7:50:59:75:b8:78:0a:ba:22:31:79:04:87:d3:01:
be:48:7c:74:7e:c2:b9:c8:ab:aa:84:74:6a:52:a7:5f:a4:90:
42:9e:f6:2b:39:f0:ed:e9:ce:b4:d0:92:73:ff:b7:6e:4c:0f:
16:cc:c9:f6:06:17:cf:40:29:c5:8b:03:94:c5:83:a6:07:b0:
5f:5b:4f:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org