Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1UAvq9LoV50y0EsR1Te02EgoqA8.roa
File: 1UAvq9LoV50y0EsR1Te02EgoqA8.roa (raw, json)
Hash identifier: riM9JFpnIN22k/7/y3oxgP5tQGucMX4RHDLp3MobHFg=
Subject key identifier: D5:40:2F:AB:D2:E8:57:9D:32:D0:4B:11:D5:37:B4:D8:48:28:A8:0F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1UAvq9LoV50y0EsR1Te02EgoqA8.roa
Signing time: Thu 15 Sep 2022 02:42:13 +0000
ROA not before: Thu 15 Sep 2022 02:42:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 210.241.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5402FABD2E8579D32D04B11D537B4D84828A80F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:64:39:76:72:54:0b:89:ad:b7:3e:a8:7c:61:
65:24:c3:c4:12:f7:36:db:01:4e:e7:4c:93:1f:6d:
35:9e:7a:76:98:79:09:bd:bd:02:ca:9c:11:d0:c1:
29:9f:0e:08:79:7f:86:90:f4:dd:c0:cd:58:ed:98:
28:52:1b:95:66:75:1b:64:35:5e:cd:50:3a:d4:81:
38:61:cd:fa:d8:cb:24:b0:06:87:fa:9a:3d:0e:01:
a0:e0:f9:46:5b:7b:7f:4d:19:28:0c:21:99:c9:49:
34:06:55:9f:ff:e0:fa:e7:fc:86:98:7a:e0:a6:ca:
29:4e:9b:e0:73:d1:c3:a4:a1:04:c5:c9:1d:51:98:
be:38:03:5c:86:79:1e:7e:2e:ed:38:41:cf:c2:af:
65:0e:4c:04:9e:cd:9d:2c:c6:7c:59:d3:ec:ed:60:
20:2c:bd:14:e4:8f:f0:7e:16:2f:3c:26:51:f3:bd:
c6:bf:bb:d3:66:94:14:75:7a:b1:8c:cf:95:e2:2b:
29:04:4f:eb:9b:ef:4a:c4:3b:33:37:e0:02:e0:63:
31:cd:08:56:1d:b1:1a:89:10:79:f1:4b:82:72:8c:
be:2a:2e:44:83:08:9f:02:cf:43:18:46:6f:45:8e:
a1:5e:92:6e:06:dd:6d:f1:a2:d5:3a:11:31:e1:af:
43:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:40:2F:AB:D2:E8:57:9D:32:D0:4B:11:D5:37:B4:D8:48:28:A8:0F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1UAvq9LoV50y0EsR1Te02EgoqA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.192.0/19
Signature Algorithm: sha256WithRSAEncryption
62:31:32:61:92:bf:5d:8b:f2:b3:13:28:f1:5b:4c:8a:03:c5:
c1:c7:ca:30:49:34:38:a2:bc:2a:c0:06:f5:78:c8:14:21:a3:
10:a8:d9:a3:c1:2c:c2:ab:d4:96:11:b5:6f:d7:a2:85:36:42:
1b:89:4d:ae:dc:ea:83:9e:2f:7f:bc:9a:8b:ca:d5:8a:43:f6:
fa:26:1c:f1:56:18:65:ca:ab:77:94:2e:b1:9a:17:e5:9f:74:
a3:da:78:4b:1d:94:9a:16:52:ee:3a:05:90:31:f3:7f:d2:f4:
c5:fc:ee:e0:ea:f5:b1:3d:55:46:2e:21:1d:aa:1f:68:2c:e1:
19:4a:21:f8:e5:b5:18:64:03:26:91:3d:d2:bd:72:49:47:ab:
db:ab:0d:bb:28:8a:b0:a5:3f:f8:40:58:3f:87:53:67:9d:f8:
1a:b0:c9:a4:13:38:85:63:5b:06:be:67:b1:45:95:5c:d3:3f:
67:3b:39:73:4d:0c:30:6d:66:a0:80:83:45:45:e5:c7:ab:f1:
ff:86:7f:28:9e:a4:ab:d0:cb:21:f1:fd:60:01:8b:db:78:e8:
b5:7b:97:b0:d4:b8:22:f3:b2:78:d0:47:69:b2:e5:58:d6:f3:
3e:09:98:5a:20:59:98:e8:13:95:6d:6d:7e:51:eb:b4:ba:92:
c1:67:1f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org