Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/AxuxjiR9b1iXUUEX9dPG6tpJNqM.roa
File: AxuxjiR9b1iXUUEX9dPG6tpJNqM.roa (raw, json)
Hash identifier: pB2yCJvjAYgsKISjIiWBZc3my3BxYT8L6XjpExl1f4c=
Subject key identifier: 03:1B:B1:8E:24:7D:6F:58:97:51:41:17:F5:D3:C6:EA:DA:49:36:A3
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AxuxjiR9b1iXUUEX9dPG6tpJNqM.roa
Signing time: Thu 15 Sep 2022 02:42:17 +0000
ROA not before: Thu 15 Sep 2022 02:42:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 27.52.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=031BB18E247D6F5897514117F5D3C6EADA4936A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:90:ca:a3:45:d5:99:8f:13:ff:7a:f1:a5:59:
68:f2:59:6e:0b:e0:17:51:b4:1c:7a:5b:ba:64:7b:
4c:13:7b:36:ec:d4:48:12:ec:59:da:14:b0:fc:8d:
54:e1:ab:26:f0:ab:f1:b9:bb:bb:bc:ca:59:97:a1:
52:f0:62:39:58:56:6f:aa:fd:f2:04:f5:d8:dd:46:
cb:1c:6e:96:fb:77:b2:ce:38:4e:fb:9b:7f:9f:b8:
71:2e:30:bb:22:14:c6:08:5d:b2:c7:f8:70:b8:10:
84:66:c3:9e:c2:04:f2:7e:a7:e5:f9:4c:37:c8:6a:
57:48:f2:83:a4:cd:60:8b:3c:57:1b:49:69:b7:2d:
ad:9f:5f:75:0d:48:cd:9c:ec:2a:fd:c1:32:33:86:
51:07:b9:94:5c:5c:14:00:12:17:9e:85:8f:70:4a:
da:b4:6b:82:fe:a0:52:21:e1:f6:78:d2:d5:1c:ae:
03:85:ce:97:e3:46:76:b4:03:52:7f:ab:d6:44:92:
a7:a9:ae:ac:c9:f7:5b:c8:26:99:19:0b:8f:09:15:
c8:63:2a:50:d9:a1:63:72:1d:13:2b:ba:56:c7:de:
4a:c3:89:e7:61:a2:e8:97:f1:aa:27:b9:fc:fd:f3:
ad:e6:0f:d0:80:96:cc:94:c4:21:8d:ce:ba:be:a7:
9c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1B:B1:8E:24:7D:6F:58:97:51:41:17:F5:D3:C6:EA:DA:49:36:A3
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AxuxjiR9b1iXUUEX9dPG6tpJNqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.52.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9f:2e:79:d1:e3:a0:bc:d3:3b:0c:61:df:f1:51:a5:5c:10:1d:
21:55:22:ae:33:43:1b:9c:bd:2f:b1:b2:df:e7:c8:79:1a:13:
35:e3:ac:cb:d9:a3:00:97:3b:be:7a:6c:28:28:32:27:3c:7f:
57:14:02:cc:01:01:c1:93:c4:83:32:50:7b:d9:53:0a:1d:e0:
4c:4d:49:25:02:9d:28:36:aa:14:3b:f2:eb:d9:18:e0:ea:77:
9e:f3:86:b2:c9:15:f4:89:24:ac:80:eb:3b:42:94:b4:94:80:
cd:8f:f5:5a:81:99:ab:af:b6:d8:d0:1d:aa:24:0c:2b:9b:73:
7a:58:35:91:e7:c8:5b:41:6d:52:db:32:6b:9c:6d:c6:d0:f4:
33:81:91:6a:0d:26:c5:d4:ef:f2:7f:32:58:02:88:16:90:07:
c5:81:f7:b8:c3:dd:a0:d6:62:a0:03:80:68:46:5d:f4:c1:36:
56:30:8c:68:6b:34:3f:4a:a0:7d:6c:60:91:de:cd:ef:c5:8f:
34:be:ef:4a:32:49:0d:4c:d9:a4:6f:ea:03:8c:f2:7c:1d:d7:
28:e2:f5:37:b4:78:c1:c9:1f:88:66:13:25:b7:d2:fa:b8:0a:
3b:79:5b:96:d7:fe:46:37:33:89:57:58:85:2e:5f:ab:69:a5:
1f:85:8d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org