Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/iempdnzAzsLPJssfnixqztyS510.roa
File: iempdnzAzsLPJssfnixqztyS510.roa (raw, json)
Hash identifier: VJdhGh4jZYHz/reYRImAs9nP5K3/q4LGrvTZsWOWHHY=
Subject key identifier: 89:E9:A9:76:7C:C0:CE:C2:CF:26:CB:1F:9E:2C:6A:CE:DC:92:E7:5D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iempdnzAzsLPJssfnixqztyS510.roa
Signing time: Thu 15 Sep 2022 02:42:14 +0000
ROA not before: Thu 15 Sep 2022 02:42:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 211.77.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=89E9A9767CC0CEC2CF26CB1F9E2C6ACEDC92E75D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:ec:84:99:73:de:ae:a7:53:ff:99:a8:7e:
44:6c:f9:f0:d4:5c:67:07:a8:87:fe:34:f6:96:6d:
76:66:05:37:df:8f:ec:b3:ed:5c:18:38:9d:6b:fa:
49:60:3d:5f:3d:82:fb:75:55:2d:39:a2:b5:cb:71:
b3:bf:6e:cd:cf:5b:95:c2:29:d7:db:4b:45:e2:71:
03:c7:53:20:0c:fa:fe:32:06:49:7d:1f:17:1b:e0:
d2:66:23:58:78:f9:f0:0f:29:f2:1d:76:7e:79:fc:
c0:b6:77:47:e1:e9:48:bc:30:18:36:ce:93:d2:c3:
15:2f:c8:7c:a4:72:f7:8a:d4:90:2e:ff:aa:3e:17:
f4:3a:c6:a5:bd:46:7d:b8:09:b3:eb:4f:db:0a:c9:
c7:60:83:f4:80:4a:3f:c6:59:07:b2:1b:75:60:a9:
30:4b:77:44:9d:6c:d3:ec:b9:7f:aa:de:83:c2:e9:
f4:f3:74:e1:3c:60:55:9d:43:9b:4c:ca:c7:e9:98:
7e:bb:87:5b:bf:62:14:33:f9:fa:ba:44:1e:8a:81:
65:26:eb:a4:a1:f5:c1:f9:d3:4b:17:2f:0d:88:b8:
70:e0:6a:cd:79:9e:0c:2a:dc:3c:82:e9:eb:f8:ef:
a5:f5:67:22:6a:6d:f7:af:72:d6:81:34:bb:26:73:
1a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E9:A9:76:7C:C0:CE:C2:CF:26:CB:1F:9E:2C:6A:CE:DC:92:E7:5D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iempdnzAzsLPJssfnixqztyS510.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
93:e1:20:5b:71:7a:cf:7a:3e:8e:29:6d:6b:ec:b2:01:40:8e:
f8:96:1f:d5:0c:35:49:25:70:e5:d8:de:8e:fc:2a:d6:bf:f5:
56:01:92:f4:a9:5e:ec:79:b9:84:c0:58:90:ca:12:be:e1:7f:
f4:48:f6:da:a6:19:79:81:50:c6:f6:9f:a6:5c:2e:e1:a6:c1:
10:f9:45:15:00:b5:e8:47:ea:ba:06:f3:bd:ac:9d:40:f4:24:
69:54:5e:87:91:e3:89:f3:4c:6d:73:40:82:8f:b3:4b:5d:c6:
5a:ab:13:50:46:ba:8e:9f:21:24:a2:ed:d8:07:ad:4b:f8:8a:
0b:d5:9c:f9:ba:6d:6a:d1:7b:63:d3:4c:cf:1c:6b:dc:e6:b6:
42:e6:5f:6f:c8:ca:00:54:d8:de:ff:45:0c:c2:72:58:13:c0:
db:4d:d7:c2:2b:94:15:d7:6e:4e:67:ae:ad:de:c3:61:35:6d:
a5:a0:eb:6d:20:d0:90:9b:ef:d0:b0:c9:c5:53:0c:8e:58:c2:
8f:d1:41:87:8b:43:5b:c3:7e:96:43:20:2e:da:23:09:06:a9:
45:19:ee:92:b3:16:fa:19:d7:e7:36:f6:e9:a6:de:f4:cc:8f:
8c:58:08:12:06:ac:6c:c8:fb:18:50:58:65:03:80:fe:15:ca:
6d:12:27:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org