Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/-ZdYrKWfU0bthr2akWevJWAzdos.roa
File: -ZdYrKWfU0bthr2akWevJWAzdos.roa (raw, json)
Hash identifier: hOy2HG75bgrnubedXgYbh0nYmexDrhD1hog+HT9DFE0=
Subject key identifier: F9:97:58:AC:A5:9F:53:46:ED:86:BD:9A:91:67:AF:25:60:33:76:8B
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08EC
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/-ZdYrKWfU0bthr2akWevJWAzdos.roa
Signing time: Sun 07 Feb 2021 11:53:41 +0000
ROA not before: Sun 07 Feb 2021 11:53:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 210.241.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2284 (0x8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F99758ACA59F5346ED86BD9A9167AF256033768B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5c:31:f0:10:31:4f:02:c5:62:29:d3:7c:27:
50:a8:bf:67:6a:9f:5d:00:78:f6:a4:88:1e:57:df:
e5:9e:5c:eb:f0:0c:a4:4c:ca:96:52:3c:58:f2:2d:
b4:ee:84:cf:cc:8f:04:7e:77:85:d6:13:f2:99:f7:
52:23:dc:01:0c:ff:23:28:65:6d:eb:aa:a3:3b:e2:
28:39:b3:00:74:5e:04:89:35:24:a2:35:2f:3e:ae:
03:6e:1a:7a:b7:ce:a6:95:3a:f5:33:38:79:34:4b:
d1:35:31:96:cd:72:4b:f0:da:e8:12:0f:7b:18:f4:
61:04:08:fe:53:f1:9e:98:82:3e:13:84:b0:5d:57:
ca:41:17:de:06:4a:fc:54:90:05:0f:b2:fa:6c:fb:
65:9f:dc:18:65:f7:65:77:66:49:f0:b6:44:e8:6b:
d7:b6:f2:f7:dd:96:89:23:d0:23:63:f7:6e:5e:8a:
74:87:b3:cc:5d:00:0f:fc:ab:a6:47:37:97:18:41:
b6:e5:d0:20:99:19:60:c7:76:fa:9d:8f:8d:7a:2c:
b2:f9:78:18:9a:c0:d7:e7:58:03:e6:7d:02:b3:d1:
ea:06:57:33:f9:99:cf:bb:63:9d:55:72:77:67:e5:
6d:a8:61:06:ec:b4:3f:93:10:39:47:11:e5:87:9b:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:97:58:AC:A5:9F:53:46:ED:86:BD:9A:91:67:AF:25:60:33:76:8B
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/-ZdYrKWfU0bthr2akWevJWAzdos.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.0.0/17
Signature Algorithm: sha256WithRSAEncryption
33:89:db:4a:92:b5:e9:c3:bb:a9:bd:3a:d9:dc:0c:2c:33:fc:
6a:16:10:21:eb:1a:bb:6d:eb:89:54:02:b4:64:cc:4a:8d:21:
f3:e4:14:d4:74:4e:83:ce:68:27:c5:ee:2c:38:cc:d2:82:c0:
c2:02:19:c3:58:10:51:4c:2b:e7:c0:5c:33:5d:38:a8:e4:4a:
10:fe:21:d8:d6:73:6b:d0:c9:bc:64:23:45:e0:79:53:e1:28:
03:e4:02:e0:2f:f1:f8:02:3a:65:af:e9:d6:77:cf:5d:09:54:
70:6e:d7:28:3b:bf:15:28:1e:d1:34:b2:38:24:84:15:0a:90:
99:c8:c9:9b:8a:f8:05:a7:8f:6c:f1:92:17:67:af:d5:2c:1d:
4c:99:c9:1e:06:32:5b:5d:c6:47:68:cc:35:58:02:5a:f9:0d:
55:68:7b:03:97:34:b2:43:17:00:33:72:b0:79:a2:f8:99:df:
cd:0f:fe:d3:37:b9:38:01:99:97:54:51:43:68:03:4d:91:f6:
f2:70:ca:37:eb:d5:88:cf:a6:e7:35:c2:4c:a5:d2:42:c3:dc:
28:66:1f:5a:80:f0:92:10:1d:d0:fc:d7:89:cd:2d:44:37:95:
25:2b:b0:7f:d1:7e:c9:1b:1a:b1:1b:cf:8b:64:07:80:a3:16:
04:44:20:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org