Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uXORAmlP-vIHfWywQklF_4xF_NU.roa
File: uXORAmlP-vIHfWywQklF_4xF_NU.roa (raw, json)
Hash identifier: B170Z6Q+sBx/8nKO4bKDcy8nka9NrGiD/DhHl27mi1s=
Subject key identifier: B9:73:91:02:69:4F:FA:F2:07:7D:6C:B0:42:49:45:FF:8C:45:FC:D5
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08EE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uXORAmlP-vIHfWywQklF_4xF_NU.roa
Signing time: Sun 07 Feb 2021 05:58:38 +0000
ROA not before: Sun 07 Feb 2021 05:58:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 39.8.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2286 (0x8ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 05:58:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B9739102694FFAF2077D6CB0424945FF8C45FCD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:35:d8:fc:55:a9:21:3a:6d:25:eb:5f:81:6b:
a0:4c:d5:ef:10:88:81:11:e1:34:da:a7:41:10:6c:
f6:91:7e:20:6f:f5:53:06:f6:24:58:87:a2:0d:26:
21:93:42:a8:40:ab:2e:a2:25:42:18:de:8e:61:11:
74:17:59:23:4e:69:ac:a4:99:2d:5a:80:8b:ee:a8:
4f:12:77:92:f1:e5:52:9b:fd:c8:92:bf:eb:48:67:
76:29:62:2d:cc:4b:4e:94:cf:c6:ef:45:df:b0:93:
04:eb:60:7e:90:d7:ee:4f:5a:e5:85:a2:5d:fe:eb:
e2:37:83:3a:c8:fc:75:b7:f2:51:1a:f9:0e:ec:dd:
06:f9:b5:d4:81:10:49:e6:b4:10:eb:6d:ac:fc:b3:
cb:45:ad:8a:51:b4:0a:23:53:de:4c:0a:c1:ad:17:
06:70:fa:e9:a6:af:76:10:8d:9e:11:cd:46:4a:ba:
09:89:c9:d7:05:fd:08:4c:c3:29:35:27:44:f7:b0:
6c:9b:4f:75:4c:4b:3e:a4:05:4f:7c:e2:7a:1c:60:
a1:35:da:ee:d5:12:76:9e:c5:65:7e:7d:08:e5:09:
be:aa:19:4d:9e:9c:88:d4:95:83:34:b5:72:58:1b:
01:42:9b:4a:f4:02:0d:5a:f1:39:69:c1:5f:bf:f3:
f1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:73:91:02:69:4F:FA:F2:07:7D:6C:B0:42:49:45:FF:8C:45:FC:D5
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uXORAmlP-vIHfWywQklF_4xF_NU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.8.0.0/14
Signature Algorithm: sha256WithRSAEncryption
3d:a9:a3:fb:5d:35:10:2a:e4:24:c8:84:16:5c:0f:23:a4:5c:
97:7e:d0:8c:54:1f:1b:52:6a:7f:7b:25:be:1e:c2:14:5e:5c:
ec:e1:12:bc:a2:8b:36:95:32:65:4b:52:60:66:24:2d:7e:fe:
56:fc:b4:cd:6c:50:d4:13:eb:3e:75:b3:1d:9b:11:2d:43:81:
52:0c:27:72:b1:69:0e:00:17:f9:75:17:93:b9:24:99:76:ef:
41:76:83:5c:5e:a5:e0:7a:23:ae:4c:c3:f1:b7:82:0e:08:1c:
44:63:c5:55:2e:e9:03:59:d1:33:22:0b:11:c7:14:0a:38:57:
8c:6a:d1:ee:06:3f:30:79:fa:f3:f1:56:93:b7:e4:32:40:7c:
27:b6:c8:dd:ea:6f:8a:29:e6:33:7d:5a:fc:8a:ee:3c:01:92:
28:71:e6:f0:db:82:45:92:10:be:52:89:dd:87:38:b2:7c:a5:
a5:59:b6:93:35:53:26:7d:f6:19:ce:55:1a:5c:0f:2b:04:1c:
fd:31:c8:81:51:04:cb:1c:0b:9e:7d:07:74:41:01:63:cb:be:
90:2e:5d:00:74:ed:f5:d3:7b:a4:2e:3f:95:75:2e:58:70:71:
c2:c4:75:1a:b7:7e:8a:bb:13:95:44:6a:14:bd:3b:90:4f:09:
a6:a1:3b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org