Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uTfQSGMEye216QC1OPk1jvPvt0o.roa
File: uTfQSGMEye216QC1OPk1jvPvt0o.roa (raw, json)
Hash identifier: zX28pJv7tNS1C6rR6HOXV3j7zy6XctW3lhDXNAVYBfE=
Subject key identifier: B9:37:D0:48:63:04:C9:ED:B5:E9:00:B5:38:F9:35:8E:F3:EF:B7:4A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uTfQSGMEye216QC1OPk1jvPvt0o.roa
Signing time: Thu 15 Sep 2022 02:42:12 +0000
ROA not before: Thu 15 Sep 2022 02:42:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 118.231.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B937D0486304C9EDB5E900B538F9358EF3EFB74A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:db:7d:87:e6:f0:d2:79:be:d8:e7:9c:c7:b5:
53:ee:40:cb:df:55:dd:bc:3d:14:fb:db:41:92:97:
59:bc:80:f1:34:f3:6e:de:83:c8:25:17:bc:d9:15:
9e:cd:9b:2a:cc:a8:f9:49:e0:cd:b8:77:5d:6e:cc:
d9:82:12:30:cc:fd:aa:5b:7e:da:60:ac:33:cd:6d:
bf:86:3d:a5:5e:03:f8:69:14:42:a0:61:91:64:54:
e4:36:42:9b:9a:dc:b9:de:4f:18:fc:5b:8d:7d:1c:
50:18:3b:6c:ca:41:a8:6c:e0:3d:39:96:0b:af:66:
3a:c9:0e:19:3f:39:58:f1:d8:85:d2:21:2b:29:35:
9f:9e:8b:a0:5b:8e:95:58:96:27:3b:4c:7a:bc:95:
f3:9b:6f:b5:e2:c1:94:86:dd:4c:97:b4:a0:bb:a2:
99:46:6c:4e:0c:18:54:fe:a8:0b:4b:89:4c:7a:d7:
59:8b:1e:2a:82:e8:10:ab:47:25:a4:65:ad:40:bf:
18:31:4a:e3:dd:22:ac:e2:b5:47:a4:50:22:27:54:
db:b3:54:09:65:67:5b:8f:c3:d4:2c:bc:96:dd:69:
af:a5:0f:99:75:e8:d3:7c:ed:32:52:f5:b3:60:33:
8d:f9:84:f0:dc:d4:cd:4b:9f:ac:f3:72:e9:64:71:
04:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:37:D0:48:63:04:C9:ED:B5:E9:00:B5:38:F9:35:8E:F3:EF:B7:4A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uTfQSGMEye216QC1OPk1jvPvt0o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
78:46:a8:14:b3:7f:8b:ac:9b:05:c1:34:ee:b4:98:54:01:46:
38:39:f5:d7:96:be:05:0e:a5:bb:71:cd:a3:64:e6:a0:64:e1:
ea:76:bd:f1:93:a6:6b:c1:29:dc:10:43:60:31:ec:53:16:62:
af:b4:12:93:43:4c:23:37:1e:2c:a0:f0:14:b5:8d:3f:cd:26:
52:cc:50:ab:d2:dd:ac:c0:37:61:5f:da:00:a1:ea:ee:6c:11:
30:b6:cd:dd:5d:c4:25:ac:35:e0:18:74:04:a1:ca:f4:c5:73:
3e:73:47:09:41:97:e5:f3:47:4e:11:ae:05:a3:e9:07:e5:7a:
47:2b:0d:17:68:f8:da:6c:e3:31:cb:f8:8d:02:0a:13:60:ca:
27:a2:f4:53:d5:2b:90:08:a8:ee:9a:ea:10:3f:fb:7a:24:43:
9b:ba:b1:97:db:a4:8a:0f:de:16:9d:72:84:6f:4e:45:18:64:
fc:b2:8f:fc:64:68:f0:af:43:f0:01:d1:04:56:2c:14:ed:19:
ed:96:c5:db:6b:fd:d5:de:9c:00:a3:43:6a:45:6c:26:ab:59:
86:27:21:94:dd:b5:b3:ba:24:9d:0b:22:cb:57:4f:f5:f0:8f:
31:12:38:7f:8d:c5:ad:63:6b:64:64:77:e6:df:a7:84:8c:e1:
9e:9b:53:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org