Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/ESAlOzQFck-093e0oauSH1Z4nPo.roa
File: ESAlOzQFck-093e0oauSH1Z4nPo.roa (raw, json)
Hash identifier: wQZlVRSuGA/fcWBmorNm+HYIqEDQW1LMplI3UQGhfMU=
Subject key identifier: 11:20:25:3B:34:05:72:4F:B4:F7:77:B4:A1:AB:92:1F:56:78:9C:FA
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ESAlOzQFck-093e0oauSH1Z4nPo.roa
Signing time: Thu 15 Sep 2022 02:38:41 +0000
ROA not before: Thu 15 Sep 2022 02:38:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 117.56.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1120253B3405724FB4F777B4A1AB921F56789CFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:7f:7e:ab:49:1f:12:ca:9e:f4:36:6e:e3:
6b:9f:fd:5d:65:36:07:a7:36:1b:6e:43:27:71:df:
85:2f:cb:e9:0d:8b:1e:af:7e:a9:1a:fe:7a:c4:63:
a3:8f:1c:f3:24:84:07:f3:3d:33:ce:18:ca:82:bc:
6b:f0:37:c1:e3:ff:c4:83:69:d4:8c:64:7e:68:45:
a5:a0:e9:d4:31:fe:c5:55:90:82:b0:ac:81:61:da:
98:43:f9:3a:25:d9:86:c5:c0:42:e6:bc:e2:05:cd:
5c:97:c6:9b:f5:49:db:2c:c1:b1:e8:40:82:21:a6:
f9:5b:37:5b:bc:7c:06:af:d1:bf:7a:86:fc:f1:fc:
95:9b:c5:cd:44:31:52:56:b2:5a:be:94:92:29:51:
5b:8a:18:11:a3:6f:3a:24:c7:bc:a4:1d:93:85:18:
48:5e:c3:14:34:ff:23:d8:0d:d1:49:f6:27:67:92:
30:dd:d6:67:ad:9a:12:60:fc:83:b8:68:82:8f:3c:
24:53:ff:bd:3e:56:21:bd:0e:f3:c5:ce:52:6d:a6:
2c:0c:10:f0:c5:29:a3:e4:30:3b:2f:c0:0c:79:40:
35:dd:d2:74:4c:a2:54:3b:fa:48:d6:08:c3:15:b2:
79:21:d5:e8:21:a4:27:60:7e:5a:e7:25:73:27:46:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:20:25:3B:34:05:72:4F:B4:F7:77:B4:A1:AB:92:1F:56:78:9C:FA
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ESAlOzQFck-093e0oauSH1Z4nPo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/18
Signature Algorithm: sha256WithRSAEncryption
b3:0b:5e:0c:ed:87:af:f1:ea:8a:44:ff:40:11:ba:2a:bd:9b:
11:2b:8c:db:21:a7:68:d7:03:c1:1c:7c:04:1f:ef:db:21:47:
0e:c6:27:27:71:86:04:82:9c:01:d1:68:c5:8f:a2:66:7b:2c:
cd:52:d1:18:3a:f0:ef:89:62:f4:e2:87:4b:50:b2:ea:35:74:
7c:9f:0a:de:6c:c8:44:55:11:69:a6:6f:0e:1b:08:2b:e9:ea:
4b:f4:b5:16:71:24:f8:ee:83:84:6c:e9:08:2b:d0:14:b0:11:
6e:88:a8:99:5e:63:39:1f:4c:fe:b6:81:d9:a9:83:72:9c:59:
4a:99:f1:bf:99:be:21:35:40:c6:db:b6:86:6c:9a:2f:c7:b9:
49:b7:c1:ff:2c:ae:f5:26:4a:a8:36:2f:7c:78:79:b8:61:68:
c8:89:9a:47:99:c0:9c:83:b8:c7:ff:18:58:0e:03:88:34:32:
a3:56:b7:71:48:bd:94:3f:d6:4c:44:cb:5b:bd:5d:96:3b:7c:
65:60:58:06:b8:32:75:21:69:d8:8c:f8:8a:2e:cc:14:cb:8c:
7b:67:8c:f4:07:ee:50:c8:e4:30:36:95:7c:ea:69:34:2f:5b:
37:fd:99:f9:ed:18:66:7e:9b:03:30:8a:cf:e7:7f:75:c8:14:
12:0f:b0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org