Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/VjKGKgtD3iOlD9UddCHy6kF6tLM.roa
File: VjKGKgtD3iOlD9UddCHy6kF6tLM.roa (raw, json)
Hash identifier: uHy0vYMSDSeJ8twx+csbXq+kFc6XwPOTklYIh+9j44A=
Subject key identifier: 56:32:86:2A:0B:43:DE:23:A5:0F:D5:1D:74:21:F2:EA:41:7A:B4:B3
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VjKGKgtD3iOlD9UddCHy6kF6tLM.roa
Signing time: Thu 15 Sep 2022 02:42:13 +0000
ROA not before: Thu 15 Sep 2022 02:42:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 39.12.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5632862A0B43DE23A50FD51D7421F2EA417AB4B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:80:2c:61:2a:df:6a:08:a6:cb:94:cb:48:e0:
a6:ce:88:2f:ab:f9:d6:c2:2d:d0:a7:7a:1c:2f:69:
b4:28:c5:c6:26:f0:04:d9:b3:e4:74:a7:aa:23:12:
1b:2a:fd:ef:2a:64:44:9f:f0:5e:7e:95:af:8e:e8:
38:44:be:f5:15:ee:20:2f:ae:22:59:8f:e2:bf:18:
85:17:6c:13:51:98:14:df:7c:4d:53:45:53:53:08:
6b:40:04:53:40:20:bd:86:84:d8:9e:6e:3f:46:9f:
21:59:a7:04:3d:d2:f1:70:92:d4:77:f3:bb:0e:4f:
95:75:f4:4c:4d:e0:40:81:20:8b:a4:d2:f4:55:69:
ae:02:f9:38:fd:0c:6a:7e:b0:87:a2:41:2d:48:f7:
2b:f6:04:30:85:e2:e0:b5:ee:d3:f1:e7:ff:6a:31:
a0:1f:94:59:c8:06:29:64:4e:19:96:97:b6:ee:66:
08:e3:6c:b1:f8:8c:18:ac:77:5a:eb:42:9a:e5:65:
e9:11:d8:9c:80:75:77:13:0c:75:88:d5:7e:5f:9e:
70:f8:61:5e:ac:c0:10:f6:67:62:12:67:10:ba:67:
11:8a:07:4d:21:4f:0a:4b:3c:70:0b:73:4c:a5:12:
1e:0e:d4:85:b3:2c:87:f1:83:82:5a:c8:0b:d6:aa:
25:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:32:86:2A:0B:43:DE:23:A5:0F:D5:1D:74:21:F2:EA:41:7A:B4:B3
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VjKGKgtD3iOlD9UddCHy6kF6tLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.0.0/14
Signature Algorithm: sha256WithRSAEncryption
b5:a2:b3:82:73:68:a6:b4:be:9b:06:2f:5c:0a:e2:a6:1d:15:
5c:d0:c3:4c:5c:cd:5e:3d:58:1d:7b:83:ab:c6:68:7e:67:93:
ef:30:91:1b:ab:a1:c2:b7:c2:d8:33:cf:61:b2:4c:18:fa:b8:
99:54:03:63:40:af:40:1b:18:24:c3:f0:61:95:56:88:e8:d6:
e0:ec:17:80:84:dd:78:53:23:7e:a6:f2:6c:87:68:74:b5:3a:
f2:7d:4b:9c:bc:f9:aa:58:21:3a:3a:4f:19:be:cd:3d:c6:4c:
48:99:9c:cd:9c:d8:1a:e2:e1:69:1c:f7:1a:7e:b8:43:c5:cf:
d9:7a:51:61:4f:c0:d8:69:48:ff:0d:72:3b:67:84:6f:04:c1:
06:1e:f9:2c:ed:bd:b6:4a:20:fe:2b:63:ab:69:23:b1:0b:1b:
e4:62:86:73:bd:7a:54:5d:39:3b:22:66:cb:7f:4a:f1:73:56:
f2:90:e6:c3:fb:a5:94:9f:eb:09:02:9f:15:57:ad:4c:b6:83:
bb:5f:f6:b2:9a:52:f9:85:c6:7e:05:4d:a0:dd:f7:00:14:74:
32:0d:21:5d:92:82:f2:27:2c:d3:d9:7c:ca:31:a2:5c:79:ff:
4a:f3:d8:df:8b:f5:6f:09:4b:27:e8:8c:4a:9e:1c:e8:5c:be:
8b:ef:ca:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org