Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/TprHPgERYKZ9rg3zU9civtiaLxc.roa
File: TprHPgERYKZ9rg3zU9civtiaLxc.roa (raw, json)
Hash identifier: DmkEq22Ra2YfEl1ifCTUhFOQ2EqZOYc5bMtZ7m1NY7Q=
Subject key identifier: 4E:9A:C7:3E:01:11:60:A6:7D:AE:0D:F3:53:D7:22:BE:D8:9A:2F:17
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 099D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TprHPgERYKZ9rg3zU9civtiaLxc.roa
Signing time: Wed 29 Sep 2021 02:42:33 +0000
ROA not before: Wed 29 Sep 2021 02:42:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 118.231.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2461 (0x99d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4E9AC73E011160A67DAE0DF353D722BED89A2F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fb:98:ca:ce:8f:27:da:01:09:c6:a3:de:c8:
cb:83:93:b9:f0:a5:f1:b3:98:94:7c:c8:d4:91:b2:
61:8b:ea:83:53:fa:20:4f:cb:5e:35:3c:dd:b6:cb:
91:d1:74:84:bf:0f:db:66:65:b1:0d:80:e6:8c:68:
3d:f6:a4:40:d6:02:c3:0d:dc:5f:73:10:f4:0b:34:
ae:71:12:46:8c:21:11:d0:cb:21:a1:da:67:99:5d:
bd:87:1f:b7:c7:9f:0b:a5:6a:2e:e8:6c:55:b9:98:
df:6b:0c:b6:18:8e:2d:1a:0f:e4:c3:32:fd:ba:07:
5c:64:9d:f7:5f:1f:b7:ad:9a:03:b4:24:0b:ca:01:
58:c1:f3:7b:44:f0:4f:ad:1f:99:eb:fc:27:e8:6c:
63:9a:80:a8:b8:0a:33:e1:1e:86:51:f9:5e:59:99:
6a:8d:2f:8f:64:cb:7d:a7:4a:ec:d0:d4:60:60:49:
ab:b8:6c:c0:23:2e:87:56:de:7a:3d:a1:6b:b7:c2:
d9:d0:e0:94:0d:66:49:25:f3:ce:c4:98:8b:70:d1:
5e:1f:d4:73:fc:11:20:74:4a:33:1c:6d:ef:95:ec:
a7:14:ea:4d:f4:eb:b6:fa:94:be:6f:91:99:a1:46:
16:26:0a:6b:e6:ec:8a:9d:92:01:a1:37:d5:32:62:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9A:C7:3E:01:11:60:A6:7D:AE:0D:F3:53:D7:22:BE:D8:9A:2F:17
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TprHPgERYKZ9rg3zU9civtiaLxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c5:79:ec:b7:b3:57:e6:2e:df:7f:4f:9d:10:da:68:42:c7:11:
b7:03:37:af:9b:c4:1a:ec:ae:71:43:4e:6c:86:13:c4:ae:a2:
3a:2d:30:9c:5b:fb:16:d7:70:da:73:ab:e1:19:17:b6:7b:df:
1f:b9:d3:b5:39:1c:dd:63:d9:e4:8d:71:b8:c1:5e:c6:bf:85:
75:39:6b:14:5d:91:a5:90:a1:8c:3c:2c:25:48:53:c5:d0:42:
fa:e4:db:06:34:05:b0:31:5e:f2:6e:f9:c1:9c:c4:4d:10:00:
a7:0f:9c:3c:e8:a1:c9:1e:97:12:97:02:f0:64:15:43:8b:de:
95:fe:d9:ca:d2:1e:f7:d9:ef:45:d5:86:7c:09:65:6f:8e:a5:
ae:8f:21:65:3a:a0:08:97:de:a4:99:84:83:a4:25:1a:41:dc:
0a:c5:0f:ac:64:fb:56:b2:61:b3:5a:34:c0:2b:ad:31:35:c2:
26:48:f1:4e:24:93:a5:e2:23:17:eb:a4:f8:86:1d:0e:b2:aa:
bc:7d:05:38:04:6c:74:55:19:36:d8:67:88:42:02:97:ff:c2:
11:4d:57:f7:c2:b9:1d:d7:84:91:10:91:7a:d5:d6:9a:c5:6a:
44:6d:d1:96:01:c2:f4:9c:fc:7b:11:e0:7d:20:51:e6:74:22:
3e:4b:00:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org