Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tiXSlGVB5SOwiPppJfMQ8yx_X5s.roa
File: tiXSlGVB5SOwiPppJfMQ8yx_X5s.roa (raw, json)
Hash identifier: YTRPizvNe75YEfd1Pxk3EFb4XtnCTpdiSxtnQPRJVa0=
Subject key identifier: B6:25:D2:94:65:41:E5:23:B0:88:FA:69:25:F3:10:F3:2C:7F:5F:9B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0999
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tiXSlGVB5SOwiPppJfMQ8yx_X5s.roa
Signing time: Wed 29 Sep 2021 02:42:32 +0000
ROA not before: Wed 29 Sep 2021 02:42:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 27.240.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2457 (0x999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B625D2946541E523B088FA6925F310F32C7F5F9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:45:85:3f:fc:4c:2b:5e:30:67:ed:61:1d:b2:
8e:8a:ce:c2:7a:0e:7b:91:e8:63:1d:11:b7:81:5f:
16:12:04:4a:50:0a:b6:72:67:90:59:99:f6:5c:cb:
a4:55:1e:8c:aa:b7:02:03:72:22:38:5e:6b:5b:17:
10:49:ba:e1:f1:e8:04:3a:09:a0:1a:cd:db:1a:30:
ca:c0:63:a2:14:db:76:a5:07:7a:f0:3e:25:1e:70:
2c:78:fe:67:77:fb:1a:70:45:57:5c:07:f9:dc:e3:
3c:1b:9d:ec:81:3c:3c:40:ca:46:f9:8b:d2:8e:9a:
7b:a4:1f:72:4e:b0:c3:74:95:ca:59:a7:72:0e:dc:
e1:bc:45:83:d6:f1:ea:c0:81:07:b8:d5:c5:f2:af:
1b:22:a9:ca:c7:d8:bc:42:22:5c:74:f4:fe:56:3a:
a0:12:df:9f:68:7c:88:2f:c1:73:78:ce:7b:3f:1a:
9e:43:6a:17:b2:3b:0c:91:cd:0c:70:eb:28:fe:dc:
4b:be:01:65:71:06:8e:ca:77:7a:f6:d8:fb:94:74:
ae:6d:ed:5c:20:bb:07:72:c2:55:51:ac:9b:b7:02:
e9:52:2d:32:b0:2c:09:84:64:99:30:f4:49:f7:a1:
07:b4:62:fc:74:cc:13:f6:55:43:f1:b6:1a:6a:5a:
2e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:25:D2:94:65:41:E5:23:B0:88:FA:69:25:F3:10:F3:2C:7F:5F:9B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tiXSlGVB5SOwiPppJfMQ8yx_X5s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.240.0.0/13
Signature Algorithm: sha256WithRSAEncryption
4b:20:d4:eb:ce:4b:91:0e:7c:85:0c:43:b2:ad:e2:55:5a:f3:
19:33:d2:8b:f5:98:4a:db:6a:41:6d:64:9a:3d:89:11:1c:62:
39:43:1a:d2:de:f1:14:6a:4f:c5:a8:14:ff:86:6c:43:82:0c:
1c:77:9a:e5:29:b6:74:f6:68:5e:b4:ac:db:bd:4d:a6:be:dd:
3d:a8:6f:8c:55:57:c8:1e:8e:92:5a:59:23:b5:e6:6a:6e:3c:
88:a3:84:0b:0e:f4:54:26:51:9e:96:44:6a:bd:61:6a:32:99:
01:64:da:9d:84:c8:ce:aa:23:a7:a0:cb:9c:ef:1a:07:08:c4:
95:9e:67:c4:4a:0e:a5:13:98:09:73:87:75:96:d1:f3:a3:2c:
39:7a:0e:94:d6:0e:ec:a8:be:ea:97:d1:85:c4:61:32:b9:ce:
40:92:b2:c7:21:bc:c4:0f:c1:0b:ac:e6:2b:42:7a:ed:43:db:
a6:5a:9f:55:0e:b4:a2:84:a2:f4:3e:18:50:de:48:45:6a:30:
cf:1f:59:f1:26:dd:9e:52:b5:98:0c:98:e5:e8:56:c2:9d:b1:
3a:a5:4a:41:b8:a6:69:ae:ba:d3:72:04:ee:55:89:ee:b2:aa:
ba:8e:cd:08:b0:f3:0f:fa:4b:d9:75:87:37:71:33:80:86:1e:
e8:c5:ab:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org