Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/L8sIaTHyqNHu6WnEgR0iJxD1BQo.roa
File: L8sIaTHyqNHu6WnEgR0iJxD1BQo.roa (raw, json)
Hash identifier: 2xbrRyZwAzi13RsyZ6NggerXqq0UkI7bT0jHxVzI4ko=
Subject key identifier: 2F:CB:08:69:31:F2:A8:D1:EE:E9:69:C4:81:1D:22:27:10:F5:05:0A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/L8sIaTHyqNHu6WnEgR0iJxD1BQo.roa
Signing time: Thu 15 Sep 2022 02:42:14 +0000
ROA not before: Thu 15 Sep 2022 02:42:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 114.140.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2FCB086931F2A8D1EEE969C4811D222710F5050A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f9:2e:5f:3a:4c:f6:47:b6:8b:8e:4c:bc:f0:
39:e9:d8:ed:bd:98:59:d7:0c:9c:0a:9d:b6:33:0f:
31:84:5f:57:ea:2e:3f:3c:ab:e3:4c:3c:91:9e:fb:
7f:2c:29:52:16:98:e0:93:3b:a9:0d:81:21:f4:72:
a4:35:d4:c5:6c:9b:62:9d:c6:e2:8a:da:04:fa:3a:
93:97:6d:89:dc:99:48:0c:f9:4a:36:01:cb:7b:28:
61:3a:7e:14:0e:e0:a1:67:ae:cf:9f:de:d7:ef:5a:
ae:d6:e4:46:c6:75:2e:93:cc:d7:df:fe:26:27:4c:
9a:60:fc:93:c2:c6:3a:5b:90:21:fe:bf:45:f8:c7:
23:d6:32:bc:48:b9:16:3c:88:57:35:9e:08:be:cc:
a0:7b:c9:f5:ea:64:c1:10:36:91:cd:09:af:99:24:
68:4c:55:44:40:ac:80:e6:cd:ad:b4:02:3d:5a:a2:
7b:e7:5d:45:6f:9b:c3:f3:e4:92:11:9c:99:c1:e2:
b9:55:f7:1f:e9:ca:86:fe:f0:d3:e1:78:88:86:66:
05:93:e9:ec:84:06:4d:a9:8e:89:0c:e9:2f:f0:67:
bf:06:33:65:65:c3:9e:90:41:53:96:bb:15:fb:ca:
6e:2f:3d:da:ca:aa:e4:6d:04:dd:33:4f:c8:53:5d:
f8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:CB:08:69:31:F2:A8:D1:EE:E9:69:C4:81:1D:22:27:10:F5:05:0A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/L8sIaTHyqNHu6WnEgR0iJxD1BQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.140.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:69:ae:06:b4:cc:e0:20:bf:73:2d:4f:37:94:8a:10:e1:f7:
b3:a2:ba:78:c1:f6:de:58:a6:35:77:ee:96:c3:1c:af:97:43:
61:62:34:d4:09:8c:41:e3:52:cc:19:c6:f2:6e:49:c5:b2:a0:
2f:78:07:7a:1c:7d:b8:e7:4d:1a:50:25:7b:03:3b:82:48:fc:
d5:77:7d:3a:7f:88:a6:51:ef:bc:d6:65:e3:b4:5c:7e:53:6e:
51:c9:6d:b3:55:56:65:ec:7d:15:4a:8a:dc:99:8c:d2:59:b8:
53:c0:cf:9e:fd:6f:58:59:ff:75:a4:b4:e7:68:a0:9b:c0:1c:
39:11:aa:6e:7e:39:46:a5:15:4b:93:89:0d:fe:42:5d:0b:01:
5b:e2:b2:92:8d:71:35:c2:ce:91:6a:55:2e:95:b0:49:35:b9:
f8:b4:6b:0c:a6:6c:86:9d:44:f0:8d:f1:42:e7:4f:7e:3f:a4:
40:38:c4:d7:84:c1:68:76:81:60:6a:14:ad:09:27:2a:3d:d6:
b5:3a:60:32:7e:c5:f1:06:99:ec:25:7e:98:9b:62:10:7c:d7:
29:1f:5b:e6:82:15:c1:5e:52:0a:80:7c:50:bc:cc:85:04:1d:
b7:e8:30:e5:32:af:45:38:bd:ae:4c:74:66:69:f3:24:f5:74:
1e:09:c4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org