Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/o6h-L60jFwZSLgwMdBR4IWb2PLM.roa
File: o6h-L60jFwZSLgwMdBR4IWb2PLM.roa (raw, json)
Hash identifier: t+jDz5/6EL4viokGbEolpG8h8xTA7cT9C2tWgWK/rLY=
Subject key identifier: A3:A8:7E:2F:AD:23:17:06:52:2E:0C:0C:74:14:78:21:66:F6:3C:B3
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0996
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/o6h-L60jFwZSLgwMdBR4IWb2PLM.roa
Signing time: Wed 29 Sep 2021 02:42:31 +0000
ROA not before: Wed 29 Sep 2021 02:42:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 61.20.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2454 (0x996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A3A87E2FAD231706522E0C0C7414782166F63CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6b:dd:ad:ff:f7:a9:e2:4e:b1:36:40:83:ae:
ae:c5:14:d6:b5:46:9b:8b:66:46:bd:15:63:7f:3a:
9f:1e:fd:fb:98:3a:99:1a:e1:e5:13:86:7a:d7:cb:
87:f5:9f:e3:85:2c:2b:fa:ee:2c:4a:28:82:d1:ef:
ad:09:c9:49:9b:98:e8:6b:48:73:bb:c2:c1:df:3b:
cb:4e:1a:f2:86:76:67:03:29:93:3f:47:65:ad:91:
d7:be:42:6f:07:14:78:de:3d:63:9a:e3:18:db:a2:
63:20:8c:2d:39:de:aa:22:90:5c:e0:94:b8:56:2c:
c3:ad:e9:a2:a0:c4:5c:67:a3:ba:5b:9e:be:f5:7a:
dc:8c:47:65:fa:9e:cf:32:29:d1:67:c1:12:0b:c5:
e7:32:04:c7:7a:f9:c2:0a:a4:e8:cf:cf:e5:e2:96:
fd:fa:f9:ca:f4:e0:6b:06:dd:47:31:63:35:24:bd:
f5:6d:66:70:8d:41:75:ff:96:1a:d1:26:c2:ae:4e:
0c:b8:f8:d4:9a:1d:61:5b:76:2f:22:01:39:49:ae:
8f:2f:db:a4:07:17:b7:4d:14:12:51:cb:ad:5d:dd:
9c:b0:ae:a6:37:de:eb:0e:62:aa:43:33:5d:a8:1e:
b4:47:d4:a0:28:ab:19:f8:d6:7c:2a:a9:6e:59:e6:
1d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A8:7E:2F:AD:23:17:06:52:2E:0C:0C:74:14:78:21:66:F6:3C:B3
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/o6h-L60jFwZSLgwMdBR4IWb2PLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.20.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:6c:a5:e1:a4:6a:de:dd:83:07:ae:5d:34:7b:69:48:31:2f:
65:e3:7f:76:f3:97:eb:ec:28:ad:fe:54:12:a2:bb:1c:1e:0d:
e4:1f:6b:92:25:c3:12:44:ae:d8:ae:78:67:a2:1b:1c:76:e1:
44:93:f3:1b:c7:03:d3:b9:c5:7e:f4:7f:4f:89:79:51:cc:17:
69:01:cd:43:44:91:1e:57:0f:9a:ac:fd:fb:a4:ae:2f:20:00:
31:6e:dc:09:af:ca:05:c5:a1:35:6f:b9:a8:21:62:0f:fd:f3:
58:fc:fe:84:3d:e8:eb:85:bf:53:13:e4:6b:b5:fb:9a:10:c9:
5f:6a:49:04:ea:d2:a9:a3:51:2c:0d:eb:60:67:85:25:8f:07:
3f:c5:32:58:21:1a:76:24:73:45:aa:c5:c0:a0:e7:b7:03:19:
58:47:0f:1f:c5:6b:dc:e4:c2:b5:f4:e7:08:0d:b9:3a:8c:98:
38:db:ef:85:75:f7:7b:11:94:59:9f:4e:90:79:95:cb:0f:9a:
c3:f4:93:6e:50:6c:f8:6e:6f:2a:e3:a6:91:25:a3:f8:ce:56:
9c:c9:a4:97:60:36:bd:10:af:b2:7a:57:e1:fc:40:34:33:bc:
8f:fd:77:f0:79:57:ce:0b:ca:c0:db:45:41:28:e4:df:12:6c:
a9:c9:ce:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org