Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/3pSQNRBwQJcdiVaZpB5XTqXM7H8.roa
File: 3pSQNRBwQJcdiVaZpB5XTqXM7H8.roa (raw, json)
Hash identifier: oUsnxqAQpTiL7RuAPt1i7ZCbYVUJ/EypiyEi8LuMjVQ=
Subject key identifier: DE:94:90:35:10:70:40:97:1D:89:56:99:A4:1E:57:4E:A5:CC:EC:7F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 09A5
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3pSQNRBwQJcdiVaZpB5XTqXM7H8.roa
Signing time: Thu 30 Sep 2021 13:57:48 +0000
ROA not before: Thu 30 Sep 2021 13:57:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 110.24.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2469 (0x9a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 30 13:57:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DE949035107040971D895699A41E574EA5CCEC7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:27:fe:79:2a:b8:9e:e0:92:8f:a4:f2:a6:
e4:1c:7f:a4:8b:86:f0:d6:a7:89:5c:ad:a0:1c:7f:
a8:52:5a:af:dd:7a:ba:76:43:0f:59:75:5d:61:33:
5f:86:8a:bb:30:72:97:7c:f1:a9:7a:ef:71:b2:ad:
f2:70:c8:a0:ce:59:b2:98:83:ed:f2:64:99:2a:07:
c1:3c:80:7d:cc:23:87:4c:ee:20:61:06:e2:67:f6:
5a:77:8d:17:aa:a4:37:68:5f:7f:36:43:8f:d0:3d:
c0:e9:1a:2d:84:50:ed:53:a9:af:d5:22:e7:6a:19:
73:03:bd:3d:d8:be:73:f5:d4:23:1c:70:a4:a8:17:
26:0d:92:e7:20:ce:8f:d6:86:e0:fd:56:3d:ad:f0:
c3:2a:5f:d8:a8:8a:70:f3:09:4c:02:ff:62:d8:8e:
31:e4:ac:7f:71:ef:ca:ef:85:d4:0d:5a:83:81:20:
87:3c:65:8d:c7:7f:63:39:40:52:5e:9c:d5:0c:be:
fd:d2:d2:05:8a:a2:72:9c:84:ce:ed:e7:34:b6:e4:
8f:b4:ee:9e:a9:14:7a:f3:19:bf:ad:00:27:6d:20:
88:f7:9e:5d:0d:f3:a6:f0:4f:c5:73:da:a8:ff:d3:
9d:74:54:3f:40:d0:dc:67:46:e8:7c:45:c9:cd:74:
7f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:94:90:35:10:70:40:97:1D:89:56:99:A4:1E:57:4E:A5:CC:EC:7F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3pSQNRBwQJcdiVaZpB5XTqXM7H8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
110.24.0.0/13
Signature Algorithm: sha256WithRSAEncryption
62:d6:51:60:8f:5f:33:0c:7a:c6:b7:d4:4b:95:ef:3a:19:20:
ca:21:4d:1c:4e:f1:a3:16:31:c3:f3:99:e2:88:4e:8d:21:22:
26:62:25:c8:bc:a4:32:57:db:ba:75:94:0f:3f:82:c3:b7:4a:
bc:02:ea:2e:27:8d:af:e0:fa:16:31:11:f3:30:d8:68:37:0f:
27:aa:b0:9c:26:4d:56:47:07:a2:a3:5e:c4:83:79:4f:83:74:
54:6a:68:9e:9a:d9:d9:ca:73:6a:89:fe:8d:30:15:af:a2:e3:
4b:ec:e5:63:99:db:01:d8:eb:cd:75:e0:5b:22:51:f4:2a:1c:
64:41:8e:11:4c:48:bb:a3:b0:90:13:49:c5:04:93:2b:6c:e0:
29:fa:19:ef:75:d2:4e:3c:fd:d5:42:e8:7b:97:c4:7c:94:c7:
93:ec:bd:6a:e8:e3:cc:9a:30:f4:69:fc:31:e5:28:b2:0d:d1:
e6:b1:8b:f1:da:4b:d1:fc:c3:41:7f:10:94:bc:59:57:e1:e8:
b7:e7:44:57:db:31:4e:40:bb:bb:76:94:d6:29:1e:1d:51:33:
08:12:d6:b6:90:aa:68:b5:b8:06:72:47:33:c1:05:6e:ac:e6:
7e:cd:f5:c9:7c:71:8a:f5:af:44:aa:aa:78:7f:a0:0a:a3:55:
1a:1c:53:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org