Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/2Co9GILe082V4IT4658O5Iwr2xY.roa
File: 2Co9GILe082V4IT4658O5Iwr2xY.roa (raw, json)
Hash identifier: vDu5twX11ppVJu5aQgdu4x3KXgU3WEAmqVX1+dQ6JlQ=
Subject key identifier: D8:2A:3D:18:82:DE:D3:CD:95:E0:84:F8:EB:9F:0E:E4:8C:2B:DB:16
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0994
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/2Co9GILe082V4IT4658O5Iwr2xY.roa
Signing time: Wed 29 Sep 2021 02:42:30 +0000
ROA not before: Wed 29 Sep 2021 02:42:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 39.12.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2452 (0x994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D82A3D1882DED3CD95E084F8EB9F0EE48C2BDB16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:31:0e:54:3f:4c:d9:b9:a4:0c:bd:8e:d7:88:
3b:e1:7f:56:82:20:44:d7:f6:0e:26:f5:c0:83:ef:
dd:ee:a3:88:09:83:a3:a8:d3:71:eb:e4:6e:6e:ec:
19:a3:8e:cd:cc:73:b8:fa:a5:84:5a:4c:07:de:12:
a2:c6:c5:2e:ca:3e:49:c4:49:39:73:7b:9c:a0:12:
0f:9f:7d:4d:a1:b5:19:61:c9:7a:43:d3:25:2e:10:
3e:e8:51:c6:9c:31:d8:a9:76:a9:c9:bc:a2:fb:4d:
4e:8e:f2:72:fb:7a:b3:be:aa:f1:34:dc:a0:de:85:
84:ba:ce:85:31:b0:12:fe:e8:20:72:68:2f:31:23:
66:6f:10:7a:b4:bc:f7:ad:c8:31:fd:87:8f:46:f8:
8f:11:f0:0d:f9:8e:54:14:b6:1d:3c:76:79:b9:cd:
cc:d3:9c:48:26:99:66:e1:9e:3a:d1:1c:67:70:66:
f8:3f:7e:ad:fa:1c:d2:fe:38:5d:ba:45:80:97:23:
d3:1a:85:82:e7:1b:9e:33:58:21:c2:11:fa:1e:2b:
a9:23:d0:64:53:98:ab:ff:90:5f:cb:fb:1f:09:be:
4e:71:5f:8a:22:ef:ed:33:3c:d1:81:9d:7a:d0:87:
27:ef:a0:15:47:d1:c1:41:2f:d9:62:2a:88:78:61:
c9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2A:3D:18:82:DE:D3:CD:95:E0:84:F8:EB:9F:0E:E4:8C:2B:DB:16
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/2Co9GILe082V4IT4658O5Iwr2xY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.0.0/14
Signature Algorithm: sha256WithRSAEncryption
03:73:82:ed:c7:6b:06:4b:10:bc:61:87:ad:71:4b:82:ff:37:
73:3b:39:5e:20:32:cc:2d:69:69:2d:71:c6:cf:85:d0:d8:f1:
8d:5c:a0:cc:4d:66:2c:c0:12:26:74:0b:d6:92:ee:e0:28:7a:
af:40:a6:9b:68:fb:7b:84:d8:d8:2e:da:6c:de:bd:f0:60:be:
62:39:cb:01:6c:dc:96:62:35:87:b2:3d:5a:04:65:a1:cd:1a:
28:57:85:ae:21:9e:bb:69:2b:1d:1a:3a:5e:b6:67:b9:55:a8:
df:70:58:ec:5e:25:3e:76:c0:11:4e:22:57:7b:b4:44:97:e7:
26:4a:84:de:7d:90:68:ca:0f:cd:34:97:fa:01:5a:62:73:ea:
c9:3f:d3:cb:b1:95:be:03:69:68:3d:17:64:d9:db:88:e4:ea:
f8:f4:7b:4a:2d:ab:d5:87:03:70:d1:92:8f:66:a2:83:ad:44:
5f:4f:9a:29:65:10:61:3f:d1:81:08:cb:ed:32:19:18:23:c1:
40:47:2c:f0:9b:0c:32:cf:b7:dd:8b:72:28:1a:0c:01:d8:cb:
86:0a:16:96:fb:30:ac:0b:52:53:2b:e3:89:c4:8f:f6:51:eb:
5f:8d:86:b7:89:06:bb:d9:92:e7:ec:5c:3f:e2:bc:1f:93:ff:
32:6c:9d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org