Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aPTPI4H7-4DKXnmWQooES01RjUg.roa
File: aPTPI4H7-4DKXnmWQooES01RjUg.roa (raw, json)
Hash identifier: Dzl3Qqs7C+lBXY+AMWVyEv9/7saM6sqF3m2Y8f2tlt8=
Subject key identifier: 68:F4:CF:23:81:FB:FB:80:CA:5E:79:96:42:8A:04:4B:4D:51:8D:48
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aPTPI4H7-4DKXnmWQooES01RjUg.roa
Signing time: Thu 15 Sep 2022 02:42:17 +0000
ROA not before: Thu 15 Sep 2022 02:42:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 106.64.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=68F4CF2381FBFB80CA5E7996428A044B4D518D48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:25:10:d9:f7:c4:41:86:0d:6f:5a:d0:12:d2:
ec:6d:a3:06:a6:b9:88:6b:83:27:39:7b:86:60:97:
e2:f2:fb:3b:b8:3c:62:a6:7b:4c:30:32:71:fc:ec:
c8:ea:36:43:3f:fe:71:3c:7b:dd:d0:c7:5e:86:f4:
d6:8c:b6:78:47:70:3d:b6:f8:52:51:06:0f:19:a0:
56:44:c8:c1:fb:4c:11:11:ae:8a:cc:af:a5:f4:22:
e9:5d:17:33:4e:55:8a:96:08:be:80:e2:a2:ec:98:
a4:96:36:56:0f:8b:fd:37:22:77:da:a1:88:f5:2f:
5e:52:c9:7b:04:f7:01:42:e7:99:46:f9:ba:ae:eb:
52:91:52:5a:63:f4:4f:66:ff:6e:1c:be:41:bd:db:
f9:4b:fc:ac:0c:01:86:60:49:3e:40:df:18:1a:ab:
d0:b9:fb:0c:06:bf:cb:6a:96:b8:3e:ef:9e:90:ce:
df:e7:02:5a:94:ba:7f:d7:43:9e:22:95:69:1c:2e:
0b:5b:00:3a:7e:76:2c:48:f4:bd:ac:d6:27:48:47:
9f:c5:ce:ec:b7:3f:3c:a3:7e:86:19:ca:dc:64:ab:
6f:8e:26:8d:48:5a:e4:e0:25:43:d3:fd:a5:c5:16:
22:14:e0:2e:ee:3a:59:27:24:9c:85:bc:62:6f:95:
ad:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F4:CF:23:81:FB:FB:80:CA:5E:79:96:42:8A:04:4B:4D:51:8D:48
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aPTPI4H7-4DKXnmWQooES01RjUg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.64.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0f:f5:fe:46:1a:b4:22:8f:b4:e3:9f:07:62:44:08:2d:e8:14:
01:63:42:85:be:df:25:53:77:7d:db:57:a0:89:1c:29:ce:c0:
04:94:8d:06:ed:6f:99:10:e5:c6:d6:de:c6:8b:5a:46:4e:52:
8d:19:74:c9:c4:82:91:50:e8:c1:45:3b:f3:cc:75:bf:99:ca:
20:3f:48:05:84:8f:14:13:72:74:cd:17:22:68:93:38:ed:50:
b0:00:c9:95:76:d0:5d:f2:2d:f0:f5:fd:5f:8b:10:44:1e:2e:
fe:45:f6:c9:2e:33:56:08:66:28:34:d1:c1:ea:cf:4c:70:4f:
52:df:96:df:97:55:ac:cd:c3:0c:3a:a7:14:d0:3b:c8:41:0d:
0d:13:7a:29:28:53:de:32:7e:02:3e:5f:04:f5:87:23:6c:ed:
7a:85:ba:e4:fc:a2:49:b1:cc:11:e8:06:82:41:d2:93:22:ed:
00:f3:19:c7:7c:05:56:f1:8b:e5:fb:be:7d:71:31:48:d2:ab:
3b:9a:0f:f8:f8:54:08:3d:dc:a2:fe:ca:b8:46:f1:fb:79:d6:
41:6a:6f:64:fb:e6:ad:fc:e9:b9:cd:9b:c2:d1:44:a5:22:6d:
26:a3:3d:85:19:77:19:62:5a:6c:9c:8f:2c:ad:3a:91:f0:21:
df:88:4b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org