Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/RxBoMepFqGJx2Rhv4u6cxk7FpUU.roa
File: RxBoMepFqGJx2Rhv4u6cxk7FpUU.roa (raw, json)
Hash identifier: 6BRDVZIsEG1j4+zYDqad9KnUmoa6O0NwgS3fGLWdOwY=
Subject key identifier: 47:10:68:31:EA:45:A8:62:71:D9:18:6F:E2:EE:9C:C6:4E:C5:A5:45
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RxBoMepFqGJx2Rhv4u6cxk7FpUU.roa
Signing time: Thu 15 Sep 2022 02:42:13 +0000
ROA not before: Thu 15 Sep 2022 02:42:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 27.51.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=47106831EA45A86271D9186FE2EE9CC64EC5A545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:95:ab:33:99:33:11:a6:d1:ee:72:43:a4:
77:6e:1f:c5:38:46:c7:7c:c6:e8:af:e2:b7:ea:a4:
96:c4:32:c8:86:69:d1:c8:67:e1:8e:43:e3:cc:8e:
37:ae:45:d1:04:54:36:20:d6:99:bd:7b:21:88:47:
c1:3a:ee:8e:94:2e:ad:00:ca:70:d2:52:36:65:16:
b7:ee:00:82:fe:d4:c3:01:61:20:e9:9b:45:1f:0b:
44:9a:ec:53:dd:42:48:f1:81:d6:e6:c8:2b:12:34:
90:89:3b:66:64:eb:b5:dd:11:41:1a:60:e2:ae:3c:
c9:2e:e7:5b:0c:8b:d3:c2:f5:ec:6f:7a:79:48:a8:
dc:39:40:9f:db:16:44:a4:c4:36:00:15:f0:9f:d5:
e1:ca:36:d4:b2:70:cf:b3:18:05:ab:ab:95:6a:32:
27:b2:25:42:6d:c1:ad:24:d6:2f:1a:18:9d:c0:24:
a2:35:d6:56:7a:ff:0b:1d:38:6c:14:f7:8a:26:b5:
c9:29:8a:f2:41:51:5a:91:df:b2:09:08:a8:e6:42:
d9:bf:5c:d4:5e:89:d7:37:f3:11:79:e6:33:89:01:
28:3f:21:59:70:28:b6:89:d6:a7:8b:62:1a:2a:c4:
2e:b1:9d:59:c3:f6:f8:af:6e:0d:43:b9:26:8e:ca:
d0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:10:68:31:EA:45:A8:62:71:D9:18:6F:E2:EE:9C:C6:4E:C5:A5:45
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RxBoMepFqGJx2Rhv4u6cxk7FpUU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.51.0.0/16
Signature Algorithm: sha256WithRSAEncryption
65:07:de:33:bb:c9:f8:21:d6:bc:02:d7:5a:55:fa:77:47:35:
f9:a2:e7:02:86:ae:c0:61:ed:3f:a2:75:d0:ae:7b:d2:5c:32:
e6:e0:ab:c2:fe:74:b0:44:37:99:1d:e8:ec:45:51:fc:83:ea:
47:26:32:df:38:ec:e8:51:6f:40:c7:01:00:af:e4:da:8f:dc:
d2:9e:59:b9:d6:6d:9b:71:d9:06:4b:75:e5:df:40:a6:f6:58:
d3:73:aa:26:70:6b:e7:4f:be:f8:d6:08:2f:e4:49:b8:6f:b7:
d9:7b:1b:a4:a7:69:01:cf:a6:84:47:1a:76:e5:3c:c1:bb:23:
9d:b2:f1:b1:45:fa:3d:63:49:58:f6:f1:57:c9:a6:1a:aa:e6:
e1:3f:75:65:34:a8:7b:b7:ca:ec:8a:b4:6f:4f:b6:9f:f0:41:
bc:25:d8:17:8b:4c:06:e9:3f:42:44:fa:ba:2f:f6:a1:57:33:
c2:80:6f:e8:cc:ae:9b:28:ad:92:6e:82:de:56:ae:fd:31:e2:
d5:bb:82:7d:f1:a6:b3:ab:67:60:e8:07:92:99:35:00:f1:f0:
b6:36:2e:32:99:5c:7a:45:f9:c6:f1:6d:ad:c1:e2:5c:31:27:
b8:48:c5:57:35:5f:f0:6d:ad:33:d4:b3:6e:da:65:a7:94:cd:
35:dd:69:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org