Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/jk2xhK-6NwrNeHtWWYA2hJzYhWI.roa
File: jk2xhK-6NwrNeHtWWYA2hJzYhWI.roa (raw, json)
Hash identifier: PiKDPuN29pfei6DIGDG/DOuIuA+SRYUqa8xpyMrNznk=
Subject key identifier: 8E:4D:B1:84:AF:BA:37:0A:CD:78:7B:56:59:80:36:84:9C:D8:85:62
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08F4
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/jk2xhK-6NwrNeHtWWYA2hJzYhWI.roa
Signing time: Sun 07 Feb 2021 11:42:33 +0000
ROA not before: Sun 07 Feb 2021 11:42:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 211.77.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2292 (0x8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 11:42:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8E4DB184AFBA370ACD787B56598036849CD88562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:98:77:8d:dd:15:32:03:f3:94:5b:70:77:
de:99:c7:84:d1:16:61:42:9d:79:51:4a:97:99:bb:
6b:4a:95:7b:07:29:d9:75:e0:5d:73:65:e6:8a:54:
95:9d:e1:31:16:19:09:7d:3c:47:88:73:2f:1d:6d:
7f:18:e4:3c:d3:77:58:ad:10:a4:6f:45:51:c6:cd:
41:84:c4:3d:9d:0d:aa:bb:9b:10:34:5d:5f:60:0f:
e8:c9:32:f5:08:bf:95:a6:e3:b8:bb:a5:de:a2:80:
db:db:48:08:7c:fc:f3:f2:95:e1:d1:a9:c2:39:5d:
bd:ea:32:a1:36:dc:f1:4a:87:db:55:51:49:b4:ad:
f9:d1:22:97:66:a6:12:28:95:f0:94:38:ba:2d:5f:
7b:2e:f7:65:f2:cc:39:d1:d2:42:e7:bb:2e:f1:a9:
0d:32:25:30:6b:80:a2:da:13:58:c5:48:c8:fd:af:
0b:94:48:ac:39:9c:05:69:f4:85:7f:97:87:27:95:
36:85:82:37:34:36:85:a0:6e:b9:8d:37:1d:ae:62:
83:16:25:9d:24:25:3b:86:84:fa:50:de:c4:f5:2c:
0a:0f:d7:c2:9d:bf:69:98:db:1d:91:15:ac:db:53:
dd:bf:0f:05:27:ed:a5:ba:32:d5:e7:99:bf:c2:cd:
57:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4D:B1:84:AF:BA:37:0A:CD:78:7B:56:59:80:36:84:9C:D8:85:62
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/jk2xhK-6NwrNeHtWWYA2hJzYhWI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.128.0/17
Signature Algorithm: sha256WithRSAEncryption
75:65:5a:f3:4f:74:cd:a2:64:af:4f:33:38:8b:fa:1a:de:da:
42:70:77:2f:ff:51:db:c0:fd:f1:e9:ea:07:9b:4d:84:86:08:
06:6e:8d:50:e1:e7:d5:fa:cf:77:fa:d8:df:5c:12:56:d0:d4:
0f:4f:12:36:b9:6b:33:4c:63:31:c9:e0:84:c9:5e:8b:8c:cd:
e7:51:22:1d:5e:61:b2:d8:a3:15:cb:35:a1:22:bb:17:d3:4a:
b1:3d:39:40:92:44:0b:81:8a:da:ac:8d:04:27:f1:2f:58:3c:
dd:9c:07:3e:30:17:1d:35:7e:ed:3c:a2:33:a8:a7:76:da:82:
ef:3c:8d:4a:2c:af:ec:1f:b6:fe:ee:bc:62:5a:25:10:e5:d9:
ea:8d:86:90:49:8f:c0:8b:71:e5:3d:33:69:93:d6:72:f3:34:
5b:0d:54:fa:42:0f:bc:24:28:04:d1:d1:14:3f:c9:c9:40:d8:
7c:82:41:bb:59:9d:b4:ee:b8:da:ca:21:86:e5:ee:7c:1c:61:
6e:47:11:64:1a:8d:06:c2:c8:22:65:85:10:ca:69:39:92:72:
8e:b3:a3:15:53:3f:65:19:a8:3d:a9:47:2a:65:15:ff:b3:a1:
99:be:98:39:fe:1e:5e:63:f0:c9:ad:48:68:b2:8a:68:3b:a9:
b1:7c:1b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org