Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/3fHCRuJL2gF9HN8_3gKzyFWAa14.roa
File: 3fHCRuJL2gF9HN8_3gKzyFWAa14.roa (raw, json)
Hash identifier: fRsN6OJCzF8l+9j+XRCOAPIklT6bd20B6VG6/EGsPCM=
Subject key identifier: DD:F1:C2:46:E2:4B:DA:01:7D:1C:DF:3F:DE:02:B3:C8:55:80:6B:5E
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 099C
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3fHCRuJL2gF9HN8_3gKzyFWAa14.roa
Signing time: Wed 29 Sep 2021 02:42:33 +0000
ROA not before: Wed 29 Sep 2021 02:42:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 210.241.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2460 (0x99c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDF1C246E24BDA017D1CDF3FDE02B3C855806B5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bd:e9:4a:33:7b:fd:46:d2:ca:b6:f0:cf:d8:
1d:be:f4:30:f2:f0:64:99:01:89:0d:39:68:f7:c9:
72:04:2d:e2:bb:8e:81:75:0f:2a:d1:ba:6d:d2:1d:
3c:ca:a3:d0:76:d1:e8:bd:f3:86:90:43:34:39:54:
d0:bf:bc:35:e2:d7:1a:d5:fd:f8:92:19:70:59:31:
7f:e8:e2:d2:93:d7:fe:40:12:6c:a4:aa:af:7a:d6:
d8:ac:91:83:b2:00:bb:0d:b5:e5:85:64:7a:3b:7f:
c4:b8:42:68:22:5b:6e:24:c5:61:25:69:3f:55:e2:
f8:1e:b5:d0:19:44:33:2f:d4:97:d0:05:97:c1:6d:
e7:9c:30:44:a6:cc:a4:3c:d7:66:00:88:f1:40:95:
4f:a3:89:43:ac:31:c3:7f:aa:34:43:98:50:fb:78:
19:e7:4e:a4:e7:7b:38:04:bc:16:d9:0a:2a:92:2a:
5e:91:6c:a7:ff:38:58:bc:c0:d7:ab:95:4b:80:1b:
b3:67:14:26:9a:ea:07:c3:6f:8b:9d:be:37:b7:78:
e8:59:2a:67:69:d5:96:c1:07:04:db:91:cf:d2:2a:
46:90:f7:f4:29:a7:76:d1:0c:87:44:c8:91:cc:8a:
a7:8f:c1:48:8f:18:bf:74:d0:15:06:ee:5b:54:df:
89:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F1:C2:46:E2:4B:DA:01:7D:1C:DF:3F:DE:02:B3:C8:55:80:6B:5E
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3fHCRuJL2gF9HN8_3gKzyFWAa14.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.192.0/19
Signature Algorithm: sha256WithRSAEncryption
b1:50:45:56:87:6d:a8:03:11:ac:56:8d:e0:bb:03:e7:42:9e:
83:32:63:52:98:b0:cc:6a:dc:63:ed:b8:07:17:0b:5d:f7:de:
17:da:53:a4:f8:40:f6:92:7c:23:d9:75:e6:3b:db:6b:89:55:
4d:ce:16:b9:03:59:18:00:61:b2:52:1a:b4:07:dc:24:e4:d5:
09:fa:81:31:fe:a0:04:42:11:a0:1e:3c:b0:36:8f:ab:be:13:
5d:6f:ae:ed:b6:b4:0f:f5:75:e8:8a:79:40:85:f0:e5:4e:cb:
c1:94:6c:34:e2:28:8e:88:89:e1:1b:3e:77:dc:c9:64:63:10:
a8:3a:6e:d8:6f:90:e6:b5:d2:9d:0a:7b:26:7d:01:48:51:86:
1e:99:6c:8b:07:a0:f5:0e:99:c4:39:84:df:22:53:3e:67:07:
d9:32:90:e7:47:f0:3a:88:36:64:95:6d:3a:19:44:ec:83:05:
b6:a4:71:5d:59:28:5b:e4:c1:dd:0e:8f:18:33:a1:f0:92:09:
f9:c3:51:32:a1:ec:7f:50:8d:91:cf:6a:4d:4f:ce:96:92:7a:
42:1e:2b:3e:da:96:bd:a9:2c:77:61:01:fd:d0:c5:54:3f:67:
48:5f:ac:08:13:f8:cd:01:26:79:6b:39:99:a8:c7:e7:92:bf:
5f:f6:e0:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org