Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/P1_KSX2_EWMkDK-u4qB5qDyJm9Q.roa
File: P1_KSX2_EWMkDK-u4qB5qDyJm9Q.roa (raw, json)
Hash identifier: 6oUFYHwQWjo0Y71yi0wKiHfVDNQUKKm6U2W3a3FWwLo=
Subject key identifier: 3F:5F:CA:49:7D:BF:11:63:24:0C:AF:AE:E2:A0:79:A8:3C:89:9B:D4
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/P1_KSX2_EWMkDK-u4qB5qDyJm9Q.roa
Signing time: Thu 15 Sep 2022 02:38:44 +0000
ROA not before: Thu 15 Sep 2022 02:38:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 210.241.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3F5FCA497DBF1163240CAFAEE2A079A83C899BD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:75:9e:9f:e6:6e:58:81:d7:f6:6c:67:b3:c0:
83:86:40:64:4d:dd:be:8f:71:9e:bd:c6:d3:db:1c:
7f:80:8f:5f:4e:a8:17:fb:ea:66:44:6e:7f:f4:bb:
f4:51:8a:2d:ee:d4:67:09:df:8d:12:b0:30:7c:3a:
9f:c8:94:14:ea:13:35:18:be:2e:88:68:af:0a:9a:
65:62:e5:ed:3a:d5:c6:11:da:3d:fd:98:40:82:08:
b3:b9:e8:60:41:dd:7d:b1:83:95:df:bd:d1:9a:91:
b4:ff:9c:ca:ca:05:be:2d:ad:01:8d:c2:0c:12:f1:
a7:69:68:d0:26:60:0f:47:9c:31:a4:28:7b:85:7c:
7a:92:c8:d4:ad:46:13:d5:ad:d5:00:a4:88:51:e2:
02:a4:cc:2d:62:ac:ae:48:7a:f6:d6:4e:42:8a:70:
db:02:e5:4b:59:86:31:9e:c9:a2:b0:91:49:b2:32:
84:54:8d:36:9c:20:1f:1c:a5:af:82:26:ef:a2:94:
12:fe:e4:19:de:3e:ee:a8:e9:75:b4:26:1b:e6:86:
09:c4:2b:2f:43:9a:98:45:96:ac:33:88:75:b9:2f:
ce:3d:dd:80:2c:9c:36:80:e0:73:bb:6a:78:35:91:
60:c9:ca:bc:fb:1d:b6:f8:c6:fc:e4:7f:40:88:17:
98:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:5F:CA:49:7D:BF:11:63:24:0C:AF:AE:E2:A0:79:A8:3C:89:9B:D4
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/P1_KSX2_EWMkDK-u4qB5qDyJm9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a7:93:9f:11:2c:2c:01:9c:80:44:7a:2f:45:0e:af:5c:ea:3e:
6d:8a:5a:61:28:d8:4d:aa:d9:73:3e:23:0b:89:b9:47:4d:34:
b3:b4:a9:47:44:d9:9c:b2:92:98:3f:7e:dd:34:db:a1:9c:f2:
fb:18:20:cd:6e:ed:16:04:f0:de:ef:0d:c0:f9:a2:a2:57:0d:
28:a9:fb:97:11:f2:a1:8a:69:82:47:a7:eb:26:67:68:37:31:
06:20:df:99:6c:be:b3:92:be:18:a4:d9:89:73:97:6a:ea:43:
1a:83:92:57:75:29:17:e5:1f:6e:03:ea:9e:0e:37:9a:c3:85:
b0:1b:73:93:2c:7a:2d:82:12:cd:c1:f1:a8:e6:cc:56:af:6a:
a0:52:e8:ff:9f:28:0e:b9:9c:2a:98:c5:4f:16:8e:e4:ca:af:
76:7a:49:97:96:83:fa:a0:fb:28:1b:05:ed:70:cd:b9:c3:e5:
a7:0a:cf:c2:5d:83:28:79:3b:17:4e:bf:4b:c0:35:dc:67:77:
fb:80:63:f4:1e:44:69:1a:e3:6b:70:ce:76:48:08:ca:4d:a7:
51:59:1d:b7:c3:cd:12:78:65:14:dd:e2:c2:0d:9e:e5:6c:35:
0e:4e:60:d2:6f:12:b3:ef:33:96:ae:72:b5:4c:19:02:14:ad:
ac:f0:e8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org