Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tIm43G0n8ryroIsFgKpzLgXyf3U.roa
File: tIm43G0n8ryroIsFgKpzLgXyf3U.roa (raw, json)
Hash identifier: ml8iiYtnbKW/MNo4Y6TlRQB+ndN+Ywt/XHATh1rZ2Iw=
Subject key identifier: B4:89:B8:DC:6D:27:F2:BC:AB:A0:8B:05:80:AA:73:2E:05:F2:7F:75
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0992
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tIm43G0n8ryroIsFgKpzLgXyf3U.roa
Signing time: Wed 29 Sep 2021 02:42:29 +0000
ROA not before: Wed 29 Sep 2021 02:42:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 211.77.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2450 (0x992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B489B8DC6D27F2BCABA08B0580AA732E05F27F75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:63:55:ff:03:ab:f2:ef:de:2c:64:3d:d1:fb:
96:5a:87:7e:2a:4b:34:90:7e:db:b9:c0:92:16:9f:
fb:18:ce:e9:36:dc:3d:63:32:c7:4c:39:c8:a4:28:
d3:78:47:d7:cb:23:4c:5f:97:9a:55:ee:94:e0:df:
a6:ce:be:2c:18:c8:ff:7f:33:69:5b:ad:ea:65:c1:
81:f8:b6:9f:7d:05:14:3b:d8:c2:09:99:3c:dc:86:
6c:85:f9:15:8e:be:62:50:8c:7f:35:63:a4:25:ef:
df:fa:4c:7c:54:6a:20:40:80:3f:d1:1e:f9:f0:ec:
73:d6:c4:59:99:07:d3:7b:63:09:fc:c0:8c:2e:f0:
66:b4:7a:49:a6:20:d6:10:3e:90:aa:06:b7:5d:29:
6c:f2:7b:5c:1e:79:6b:6b:6d:2a:2d:d5:a8:e3:b1:
c4:44:bc:6a:6f:82:05:d9:1b:ce:54:c3:f4:e0:63:
93:ee:2e:aa:93:96:5e:a7:dd:57:2a:c7:ad:3d:f9:
3c:fd:a1:76:fb:77:ae:1e:31:79:ef:cf:28:1c:d0:
fb:f4:3d:ea:15:13:ce:57:f3:51:ba:4c:74:3f:ce:
ae:07:2b:ce:fd:c5:c5:9b:82:ed:f6:e2:57:c1:b9:
e1:ed:8a:a8:34:05:35:4b:9b:61:79:b2:15:43:30:
90:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:89:B8:DC:6D:27:F2:BC:AB:A0:8B:05:80:AA:73:2E:05:F2:7F:75
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tIm43G0n8ryroIsFgKpzLgXyf3U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.128.0/17
Signature Algorithm: sha256WithRSAEncryption
09:3e:82:6c:9c:35:e3:c4:a7:dd:c7:bc:4c:99:04:0e:da:b1:
ef:0a:18:5a:b0:91:24:dc:3f:09:85:39:10:d9:6d:20:19:f6:
68:53:2e:6c:c2:4a:60:ae:0c:a0:b2:21:73:8c:69:c9:c1:f4:
0f:cd:4d:b1:16:eb:7e:a2:ab:df:a2:a2:37:f8:9e:ab:d9:e6:
ee:a6:04:e2:79:44:76:a2:d5:c3:59:58:68:b3:a0:3c:2d:90:
d2:aa:85:b1:b8:0d:5f:71:98:e6:d5:3a:17:2a:8a:18:be:9c:
64:bb:42:8f:27:53:01:7e:95:47:82:ba:7a:96:3c:eb:be:6c:
f9:48:bb:af:68:2b:c1:d7:fd:fa:e6:83:cc:4a:73:fe:72:7e:
82:c4:8c:dd:34:3a:0c:38:f6:55:eb:71:bb:c0:96:1a:21:75:
08:7d:b0:28:04:d1:21:67:16:4d:5c:17:52:87:2e:d9:32:79:
62:0a:ad:93:2b:88:09:52:d5:cf:50:91:01:ba:f5:7a:c7:63:
60:53:54:62:6c:c2:d0:34:1a:a6:90:88:06:5b:2e:50:0b:5a:
49:1b:4f:85:d7:92:47:85:9b:53:6b:7b:e4:d2:7f:de:3b:34:
f0:d9:9c:1c:bc:ff:56:bb:f7:95:63:0a:7a:75:76:7a:b7:64:
e7:cd:94:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org