Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/LRSgCXy0No4qa7LUSIjVV0nyRxY.roa
File: LRSgCXy0No4qa7LUSIjVV0nyRxY.roa (raw, json)
Hash identifier: dgfGwBdTrjK5dD5tR8NaSvolEd/Oh6ak8kG7rxR4Cjw=
Subject key identifier: 2D:14:A0:09:7C:B4:36:8E:2A:6B:B2:D4:48:88:D5:57:49:F2:47:16
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LRSgCXy0No4qa7LUSIjVV0nyRxY.roa
Signing time: Thu 15 Sep 2022 02:42:17 +0000
ROA not before: Thu 15 Sep 2022 02:42:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 39.8.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2D14A0097CB4368E2A6BB2D44888D55749F24716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8c:20:fc:9c:c5:f8:e4:10:f3:02:3b:eb:36:
a4:3a:6e:54:bf:00:86:4e:34:f6:4e:49:28:55:8b:
26:23:9e:f9:d5:10:f3:4b:7f:66:1c:4d:6c:bd:f5:
7d:92:85:4d:3f:49:bd:4d:28:f0:8d:82:c9:b5:ad:
fc:86:37:e8:0f:41:58:a4:c8:94:99:88:ec:cc:7d:
9f:ea:17:69:0f:cb:63:cc:42:cf:47:bc:cb:0c:c8:
9d:38:18:7a:96:2a:df:b9:c5:a8:da:79:0f:33:54:
f1:d4:74:77:5d:b9:2a:d6:14:7f:86:cd:cb:87:31:
b4:e6:03:2a:19:e8:ec:9d:37:23:4a:83:96:55:e1:
b3:57:e1:9d:cc:07:83:b2:83:6e:44:f4:d6:fe:c2:
ea:a9:65:22:7d:57:84:a2:ef:79:3d:1d:e1:59:41:
d3:3e:63:ad:19:34:2c:c3:99:a8:55:05:f4:d8:5a:
97:5f:37:cd:4d:2b:f3:a1:1b:72:03:55:17:d7:1e:
c7:39:8c:0b:68:01:8f:e8:28:a6:54:22:06:64:40:
09:21:f1:57:5f:44:ca:34:e1:f4:5d:85:73:aa:31:
88:f5:ce:95:6a:57:29:9a:5f:2a:79:b0:67:c0:bc:
2d:ab:09:a2:8b:c1:73:7c:88:55:2d:49:27:9c:12:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:14:A0:09:7C:B4:36:8E:2A:6B:B2:D4:48:88:D5:57:49:F2:47:16
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LRSgCXy0No4qa7LUSIjVV0nyRxY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.8.0.0/13
Signature Algorithm: sha256WithRSAEncryption
29:f8:a7:c7:c3:04:2a:56:be:85:c5:94:22:55:cb:05:39:93:
83:03:fd:59:8c:ef:f3:9f:fb:a7:84:9a:d8:ca:9a:5b:23:40:
d3:01:1f:ca:60:38:62:7a:36:35:92:a8:aa:b7:6a:eb:94:4a:
14:a2:94:10:36:6b:c4:05:d9:31:5c:66:51:9a:1b:50:b9:e0:
0d:b8:35:cd:53:d6:a1:95:8a:18:0d:df:b0:ab:1c:80:88:37:
b6:2c:7a:76:d9:2d:7b:8c:e5:b3:3d:1b:96:d5:77:c1:23:7d:
26:13:d7:5c:aa:71:0b:89:76:f2:a9:43:f1:57:3f:9f:9f:e3:
80:1d:b5:6e:af:96:0f:e8:da:24:fc:25:ef:c1:06:62:de:3c:
3a:a7:e5:3c:80:11:2d:9f:8f:ca:41:15:db:84:3a:1c:4e:f7:
6b:c1:df:e3:6e:28:d2:d7:6f:39:b7:57:da:c9:b1:b3:d6:3b:
e6:b0:45:3b:10:48:09:32:d9:37:25:34:c7:de:14:bc:aa:82:
8e:e5:d1:e7:df:f3:da:7e:d3:56:f7:20:3a:e3:c5:c2:d6:ed:
86:17:ac:ac:65:e5:6f:86:16:85:5a:38:ac:16:dc:3b:4d:d7:
b2:c4:43:f3:cf:38:39:4f:96:69:fc:73:ff:5b:7a:4f:9c:7c:
3a:da:4c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org