Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/eWkHoNoTikL7r0nPV8XZam2MyJo.roa
File: eWkHoNoTikL7r0nPV8XZam2MyJo.roa (raw, json)
Hash identifier: VW0nZuT0tcrNrRylf96+Pj7/+8ndQdv6P5TfvOPYFBc=
Subject key identifier: 79:69:07:A0:DA:13:8A:42:FB:AF:49:CF:57:C5:D9:6A:6D:8C:C8:9A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08D8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eWkHoNoTikL7r0nPV8XZam2MyJo.roa
Signing time: Sun 07 Feb 2021 05:53:28 +0000
ROA not before: Sun 07 Feb 2021 05:53:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 106.64.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 05:53:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=796907A0DA138A42FBAF49CF57C5D96A6D8CC89A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:72:ba:9a:13:30:fa:de:30:96:7a:07:c1:
9d:aa:c8:32:8d:16:80:7b:f5:33:3a:2b:9d:11:d8:
77:c3:00:27:da:d2:2a:b6:d5:5e:5c:19:69:dd:09:
8c:fd:e9:79:bf:cf:20:79:28:23:31:27:0c:e5:ac:
a5:82:04:4a:6c:8e:05:8e:ff:15:ee:91:88:74:10:
b7:e9:77:90:14:01:6d:57:46:3e:f7:9b:6f:65:c8:
6d:36:a6:b2:06:61:11:5e:ec:8a:19:34:39:c5:12:
91:58:a6:27:b3:71:0a:8e:48:2e:d9:27:46:ba:78:
ba:8d:87:94:c8:25:46:84:5c:e2:75:52:f0:b0:bf:
2c:f2:aa:e4:ee:5d:87:ba:2c:c2:32:d5:5b:ee:87:
c1:a7:97:2c:2f:e8:0b:2b:3d:f8:2f:cc:d7:33:ca:
13:7d:29:36:af:eb:be:e5:f1:b4:4d:1a:95:55:7b:
72:2e:f6:b4:4d:fd:da:4c:e6:01:7c:34:17:aa:38:
ec:d9:16:da:7b:fb:7d:ab:e6:04:2d:57:e7:52:b3:
ba:4f:95:a7:01:68:9f:f5:82:c0:01:03:a8:5d:bd:
9d:05:96:d2:29:2d:66:40:ca:ac:5b:b0:00:9b:6b:
2b:c3:26:d3:88:fc:2a:bb:52:f3:a6:c9:55:a7:12:
af:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:69:07:A0:DA:13:8A:42:FB:AF:49:CF:57:C5:D9:6A:6D:8C:C8:9A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eWkHoNoTikL7r0nPV8XZam2MyJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.64.0.0/15
Signature Algorithm: sha256WithRSAEncryption
20:63:ac:91:1c:2f:a9:07:ca:b0:64:3f:ec:6c:70:0e:11:d5:
6e:e7:8a:9f:ae:b7:20:8e:d3:2e:e0:34:5a:de:28:45:2b:47:
d8:42:08:e2:61:3d:b9:b8:af:b7:3a:85:6a:43:c3:5f:d7:09:
1b:0d:f9:ae:33:19:9c:06:ed:bb:b2:ad:93:16:c6:dc:1a:94:
e0:25:3a:b3:9e:94:41:c2:b6:9a:49:b7:41:b8:9d:7d:62:5e:
7f:0e:c3:d0:1a:ed:aa:49:a1:0c:b5:78:65:7c:c6:3f:f0:09:
bd:e0:d0:12:18:09:3d:2e:09:1d:fd:2f:5b:e0:61:5a:7e:73:
b1:d3:bd:01:b4:1d:5e:bb:68:a5:e6:cf:60:f0:9f:25:fc:0a:
e0:0c:82:d7:08:34:c6:10:b7:2f:0a:f3:f4:cd:a8:f3:7f:14:
16:8f:4a:65:57:6b:19:0d:f9:e5:39:15:14:f3:19:ce:21:62:
5b:8e:6a:e1:7e:67:fe:fd:6c:bd:7c:c6:30:d9:08:82:13:29:
f8:53:29:a3:6c:c6:0b:12:a2:2e:80:40:cf:d3:67:71:46:a0:
8f:09:90:6f:53:e1:80:f6:bd:f4:21:f3:50:44:36:f5:22:a6:
01:24:bf:47:93:ac:8a:97:36:6e:6b:9c:ca:d9:a1:51:e9:d7:
76:df:ba:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org