Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/h0Q7HBbTd0orVkUUb4VBBuAguy0.roa
File: h0Q7HBbTd0orVkUUb4VBBuAguy0.roa (raw, json)
Hash identifier: BzLiUX2PKtVKw8uQBhJrW+wDqMX0W7DKgaWPNOewY9E=
Subject key identifier: 87:44:3B:1C:16:D3:77:4A:2B:56:45:14:6F:85:41:06:E0:20:BB:2D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08DA
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/h0Q7HBbTd0orVkUUb4VBBuAguy0.roa
Signing time: Sun 07 Feb 2021 05:53:42 +0000
ROA not before: Sun 07 Feb 2021 05:53:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 110.24.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2266 (0x8da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 05:53:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=87443B1C16D3774A2B5645146F854106E020BB2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:da:f1:87:68:5a:1e:58:76:07:d6:49:81:69:
25:ab:c7:fa:f2:d7:10:05:b3:34:eb:5a:99:2a:35:
a4:de:41:e3:be:4d:50:6f:c2:25:eb:dd:71:10:29:
db:2f:fb:e5:b6:c1:54:31:98:2b:2d:a4:3c:0e:d7:
67:a8:a8:7c:42:8d:7a:0b:82:b3:db:0a:69:3e:bb:
f8:d9:a1:d7:e0:a2:2c:48:47:d1:56:d8:da:7a:52:
d9:dd:71:06:af:ef:0c:c0:72:ca:f3:c9:c2:58:f4:
58:2e:6b:8a:7b:a8:18:79:79:26:6f:a6:ef:d9:cc:
5d:47:0c:32:bb:e4:b0:ee:53:be:f2:74:e9:4c:4c:
3f:4c:aa:83:26:19:4b:f4:25:11:99:34:49:03:d9:
5d:24:32:74:13:9c:94:87:52:07:34:59:68:39:8c:
4e:58:5c:a8:cc:05:2e:18:be:49:0c:2f:2c:a4:06:
49:57:4b:7b:6e:6b:ee:00:7a:a4:4d:0b:b4:47:5c:
25:42:b3:0c:62:0d:97:f3:2a:d8:03:65:b7:bd:f2:
bf:fa:6a:a9:51:53:95:c0:3a:f9:ae:63:4a:93:c7:
5a:5f:06:70:af:64:4e:7b:db:28:89:ba:35:d1:ee:
be:a0:48:6d:4c:1a:51:ba:41:f0:12:ec:44:e6:0d:
ac:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:44:3B:1C:16:D3:77:4A:2B:56:45:14:6F:85:41:06:E0:20:BB:2D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/h0Q7HBbTd0orVkUUb4VBBuAguy0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
110.24.0.0/13
Signature Algorithm: sha256WithRSAEncryption
6b:e3:25:1a:a2:f5:89:2b:d4:2c:4a:bf:60:4f:15:b1:c7:7a:
e2:0b:28:de:27:1c:06:e1:23:60:67:07:e7:ca:bd:92:60:ba:
78:03:e8:06:3e:c8:15:12:3f:6b:c2:31:01:8a:6a:b7:0f:1b:
61:a5:bb:91:44:4f:4c:a3:f3:65:d0:d5:74:f0:0e:0e:4b:8b:
ec:7a:5a:de:8b:36:1a:ad:f2:15:49:1a:06:85:a3:2a:bb:a8:
72:fe:d4:f6:57:51:6f:31:8d:30:0e:82:51:0e:52:f8:c6:86:
ae:40:ca:93:11:ad:ac:60:89:17:9e:2d:35:10:19:2f:a3:37:
35:cc:05:a8:90:24:a7:09:5b:8e:03:6e:1a:0e:82:b8:3c:ee:
95:a7:8b:d1:75:e9:16:bf:35:97:a9:c7:27:96:f1:71:2c:d7:
47:a8:2e:2c:22:25:54:f6:98:e5:07:ef:83:04:48:29:f0:50:
b7:c8:41:91:13:d3:4c:5d:7f:7e:f2:ed:ca:ea:ad:1e:96:bb:
f4:77:e5:d3:a2:97:fc:a3:5b:73:54:35:c2:9f:96:9a:5e:cc:
2b:d9:56:c4:cb:26:4c:c3:79:fc:71:05:b1:0d:75:80:51:7a:
2a:81:63:db:c0:68:c1:15:48:16:b5:7d:c6:50:a3:73:04:00:
e5:19:c7:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org