Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/MgtifKln6h7gnNGVum1t0vm6cM4.roa
File: MgtifKln6h7gnNGVum1t0vm6cM4.roa (raw, json)
Hash identifier: Jg+pMClcMcN4wIKq9RYtxzGyl7m/HzS6sM2CcI8czKM=
Subject key identifier: 32:0B:62:7C:A9:67:EA:1E:E0:9C:D1:95:BA:6D:6D:D2:F9:BA:70:CE
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0782
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/MgtifKln6h7gnNGVum1t0vm6cM4.roa
Signing time: Tue 29 Sep 2020 10:03:51 +0000
ROA not before: Tue 29 Sep 2020 10:03:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 163.29.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1922 (0x782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=320B627CA967EA1EE09CD195BA6D6DD2F9BA70CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:40:61:12:b0:99:4d:a6:51:39:41:db:36:
71:04:3d:28:76:bb:25:e2:99:83:23:62:40:e9:db:
79:21:d8:4c:3e:1e:77:b1:96:a5:94:ef:92:4d:87:
2d:34:c6:23:16:67:85:02:5e:9e:c3:20:1d:b4:9d:
02:d6:42:9a:72:1e:78:9c:9e:30:85:a7:2e:13:a6:
1b:2a:d0:38:6b:0d:bd:28:48:6e:f8:cf:43:6e:45:
ac:15:39:1a:7a:9d:b8:02:fd:3b:2f:ee:d7:b4:80:
9f:fd:f6:1d:3f:9e:c1:18:41:aa:e1:2a:59:6e:27:
94:ee:b1:0c:ec:31:f6:a8:9c:8f:2d:be:f2:10:fe:
e4:20:63:5b:8f:54:d7:60:c6:64:b7:e1:58:7c:1d:
a4:c4:6f:35:e9:d7:59:09:e9:f0:ff:6c:f6:dc:47:
9c:94:50:0a:7e:65:77:32:08:46:7c:c9:43:43:35:
78:0b:17:80:2f:70:f5:c6:fe:0c:33:69:77:e1:97:
6c:01:2b:19:eb:ce:d9:27:03:76:e3:37:77:81:27:
b0:a2:16:ba:85:8a:b2:e5:67:c9:07:75:2b:02:a7:
a0:f9:9b:6a:45:d6:09:48:68:fe:e0:99:0e:ad:9b:
f8:ab:00:69:27:45:81:2f:ab:7e:e7:65:e2:3d:21:
f1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0B:62:7C:A9:67:EA:1E:E0:9C:D1:95:BA:6D:6D:D2:F9:BA:70:CE
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/MgtifKln6h7gnNGVum1t0vm6cM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.29.0.0/16
Signature Algorithm: sha256WithRSAEncryption
23:71:58:5f:94:b5:63:0e:af:c2:ce:03:bd:1c:2c:52:75:21:
ea:05:da:85:6c:38:4f:d9:d2:90:b6:8c:12:a1:a5:ff:3c:f0:
79:24:28:ef:a5:c0:d6:3f:37:47:f9:58:4d:2b:4c:78:16:7c:
33:b5:f4:7a:33:12:ef:3c:d8:75:41:e0:36:80:64:97:ac:03:
b0:3e:c4:0b:fb:0e:42:49:25:aa:53:9a:a0:05:9b:79:0d:70:
ad:1f:43:1d:ce:51:fc:8b:d3:60:f2:9b:cd:b5:e4:d3:de:23:
c3:86:9a:63:f5:8c:25:4f:d5:ec:99:67:c4:be:c7:c0:81:86:
bb:26:0c:6b:09:a4:90:d0:d0:d5:1d:d4:9b:05:5a:bd:fc:e1:
8f:7a:11:7a:5e:2c:da:93:db:07:66:09:65:67:06:ca:67:63:
ff:5c:c8:78:0a:91:6c:22:2f:01:6d:5b:ca:58:d6:7d:32:c2:
bd:44:f8:cf:61:0a:99:72:4b:95:05:0b:02:73:df:de:17:b3:
c9:40:36:13:f8:dc:bf:f6:09:87:20:a7:bb:36:dc:f1:9f:cf:
1f:7c:00:22:0d:f5:f7:68:bf:68:74:8a:ae:14:97:01:57:47:
31:6b:c7:b4:3a:fe:a6:39:98:1b:4f:eb:85:0d:09:bc:8f:78:
47:c4:1c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org