Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/14UzWsc9lsgdzfbwLE6Ci0LZpCk.roa
File: 14UzWsc9lsgdzfbwLE6Ci0LZpCk.roa (raw, json)
Hash identifier: rBlVvvTwqwLvHSHT+MX2fsOthklrAM7ii4+mnrKLndE=
Subject key identifier: D7:85:33:5A:C7:3D:96:C8:1D:CD:F6:F0:2C:4E:82:8B:42:D9:A4:29
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 078E
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/14UzWsc9lsgdzfbwLE6Ci0LZpCk.roa
Signing time: Tue 29 Sep 2020 10:03:55 +0000
ROA not before: Tue 29 Sep 2020 10:03:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 117.56.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1934 (0x78e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D785335AC73D96C81DCDF6F02C4E828B42D9A429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:06:77:93:51:bb:ab:6a:0b:7e:52:1c:5c:af:
7a:52:6d:2c:bd:80:69:ad:e4:65:8b:d3:3d:e8:db:
5d:58:0b:c7:2a:6d:3a:18:0d:01:9c:c1:0e:83:33:
bb:32:b6:7c:46:ad:40:b0:48:ba:dc:6e:f5:49:86:
87:7f:b1:db:7e:66:c8:40:e4:ff:51:25:c7:94:27:
16:cd:39:83:e2:b9:0e:90:6a:22:ee:b8:4c:10:2c:
ec:6a:ff:b6:f4:e6:07:58:20:20:2e:2e:ed:7c:05:
5e:1b:2f:3c:ec:8e:40:57:d1:e8:3d:ea:28:aa:89:
ac:8b:3e:07:8f:9e:72:28:6a:48:b4:3d:1f:60:b6:
d3:94:09:61:82:c0:54:86:0c:bd:8a:04:c5:66:df:
e7:9d:dc:61:f4:a5:ef:08:08:20:17:cc:fa:22:73:
05:63:3b:11:02:7a:3d:cc:f7:5e:b4:b5:28:df:2e:
0d:2a:1f:64:e2:09:19:03:d0:49:65:04:59:5b:84:
f3:7a:88:bb:e0:33:16:59:00:50:d8:b3:d7:e3:06:
eb:ca:c3:07:03:32:16:da:b8:51:00:24:4b:38:33:
ee:dd:c0:cd:4b:42:b9:e6:cd:c6:1c:5a:92:0a:e4:
53:e5:f5:b3:ef:ee:cc:d6:df:fa:44:3e:66:e8:ee:
eb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:85:33:5A:C7:3D:96:C8:1D:CD:F6:F0:2C:4E:82:8B:42:D9:A4:29
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/14UzWsc9lsgdzfbwLE6Ci0LZpCk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:d0:c4:84:9f:1e:51:44:84:33:09:95:72:e7:07:d5:9b:6e:
2d:db:06:5b:76:01:68:6e:4b:6e:5f:90:4f:d0:e6:7e:55:89:
83:4c:5d:0c:f4:f6:94:e8:c5:66:a0:ab:b0:86:e9:02:3d:1b:
86:30:13:99:1a:f0:56:0d:06:a9:ac:35:0e:04:a0:27:9a:2a:
eb:51:04:d7:17:7a:a8:b6:63:f6:da:d4:9b:24:5e:91:55:cd:
cb:87:89:d4:b9:9e:ed:5d:07:ef:a2:d7:4e:87:83:f6:bc:fe:
ab:5e:23:78:8d:4d:92:68:ce:ff:ce:71:b4:9e:93:32:86:55:
eb:62:d1:c3:44:63:df:a7:bc:bb:2e:f4:75:f6:33:45:5f:20:
24:99:a8:ed:2c:a9:fa:63:f2:c7:4c:30:ed:26:f9:53:b5:f0:
9c:0f:b7:5a:21:a9:34:fd:62:2d:d5:4a:38:10:f8:fe:4c:01:
20:58:e9:19:c5:14:92:67:25:78:21:4e:07:0b:8c:0c:63:5e:
ae:6a:c0:78:ad:cd:97:43:b8:a8:3d:4b:5f:81:ab:75:f7:dd:
72:0d:60:00:14:fe:ee:eb:16:94:61:87:1e:07:a8:51:91:85:
5b:ce:2f:8a:6d:6a:7e:a9:c6:38:ff:11:f5:87:a0:54:3a:67:
f0:b5:fe:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org