Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1aeIGVizc1-HlfimTcFg3tnuImw.roa
File: 1aeIGVizc1-HlfimTcFg3tnuImw.roa (raw, json)
Hash identifier: vkTTp48ACTxXg6E9mWyMLOxNgzm89ja+xXEheYIMOI4=
Subject key identifier: D5:A7:88:19:58:B3:73:5F:87:95:F8:A6:4D:C1:60:DE:D9:EE:22:6C
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0997
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1aeIGVizc1-HlfimTcFg3tnuImw.roa
Signing time: Wed 29 Sep 2021 02:42:31 +0000
ROA not before: Wed 29 Sep 2021 02:42:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 27.52.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2455 (0x997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D5A7881958B3735F8795F8A64DC160DED9EE226C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:49:f3:42:49:b3:f0:59:d7:29:01:78:09:52:
84:de:0c:e3:eb:81:7f:be:1b:94:f3:e1:29:7b:46:
e9:69:34:c2:c1:93:b0:14:26:44:e4:ef:86:33:bf:
48:e7:3b:75:55:c2:f9:47:a1:4f:9b:d0:36:18:b8:
d4:38:20:89:68:24:86:19:0e:05:a2:a1:f5:94:b4:
5b:36:91:e4:48:f4:bc:83:19:1f:ec:e5:fc:2e:0b:
34:6a:95:72:47:19:cc:07:97:b6:77:c5:6a:83:f1:
d7:fc:f8:f3:cf:a6:8f:fe:77:b0:2f:f7:e1:18:f2:
8b:e6:1c:1c:8a:e8:09:5e:d7:7f:1e:18:4b:6b:4f:
bc:fb:b2:fa:42:b1:50:65:bd:60:57:26:69:3a:60:
45:08:0a:df:d2:09:ef:d7:52:c8:ec:20:5a:a3:95:
ba:b5:c5:61:7b:3b:12:b1:79:42:4f:3f:29:9b:31:
1b:48:2a:da:ed:8f:d8:ae:35:48:bd:37:b0:6c:f1:
96:91:5d:8c:8a:04:02:8a:67:1b:74:cd:06:3b:f5:
b3:bf:f9:fe:75:8d:fb:c1:6d:b9:27:25:52:94:c2:
f8:99:3f:59:23:f3:6a:e6:19:bd:95:45:4e:8f:e8:
5b:d0:33:00:3f:6f:2e:2c:4d:51:3b:99:c0:b4:4f:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A7:88:19:58:B3:73:5F:87:95:F8:A6:4D:C1:60:DE:D9:EE:22:6C
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1aeIGVizc1-HlfimTcFg3tnuImw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.52.0.0/15
Signature Algorithm: sha256WithRSAEncryption
37:75:f2:65:2c:36:ee:5e:44:e7:b1:ad:72:cd:4d:4e:00:73:
87:98:f8:4b:c9:e2:6f:ad:a4:69:89:51:7e:c0:4d:9c:56:30:
55:bd:35:86:eb:2f:39:4f:0f:55:81:96:cc:b3:bf:87:ad:53:
c0:33:ec:c3:af:d6:a3:f3:9b:04:f1:97:82:c0:c0:0c:6a:e7:
43:4b:f4:87:66:cf:62:7f:a2:07:ef:b4:92:73:6b:69:1c:24:
b5:8e:87:2f:54:af:f7:c7:90:f3:81:7a:33:8e:f3:6a:a3:cc:
a2:17:eb:76:a4:f0:02:56:de:48:e3:51:83:00:ab:d0:b8:f5:
64:2b:23:42:b9:87:03:99:38:29:02:97:de:c4:64:4d:59:bd:
dd:1d:d4:04:76:e0:2c:4c:77:a0:d0:2b:48:f7:f6:da:de:db:
80:41:b3:27:d9:de:6c:30:8f:b7:d7:cd:22:20:62:d8:59:b2:
ba:fd:a9:de:2a:87:da:23:d3:8a:7a:b4:d2:17:ba:76:b8:d5:
be:7a:ba:5e:f0:65:ce:d4:e1:02:64:97:89:c4:fe:7b:06:df:
67:6a:57:b3:c6:24:60:1b:64:f3:db:95:d8:67:97:f4:83:86:
2d:8f:8c:f6:37:28:65:9f:7d:e3:b2:47:e3:46:a0:40:7d:27:
f9:e8:7a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org