Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/Pnff8EgVzkpPvTQQPHPXK9t-Gek.roa
File: Pnff8EgVzkpPvTQQPHPXK9t-Gek.roa (raw, json)
Hash identifier: tOdnO9AIv5NH5idR+8dIyMnOfKXeKecgoGvpFGaxMDQ=
Subject key identifier: 3E:77:DF:F0:48:15:CE:4A:4F:BD:34:10:3C:73:D7:2B:DB:7E:19:E9
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0997
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Pnff8EgVzkpPvTQQPHPXK9t-Gek.roa
Signing time: Wed 29 Sep 2021 02:38:10 +0000
ROA not before: Wed 29 Sep 2021 02:38:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 124.199.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2455 (0x997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3E77DFF04815CE4A4FBD34103C73D72BDB7E19E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4d:02:b6:46:f1:f5:ae:41:4d:04:8c:2b:87:
0f:cf:86:54:20:d8:29:64:30:e9:22:d7:72:89:c7:
82:f2:9f:bd:bb:84:54:ae:18:26:69:62:d8:49:62:
6a:eb:f4:1e:51:80:19:af:6c:83:e2:68:0a:a7:b9:
df:7d:a6:6d:cf:b3:10:b7:57:93:f0:b5:21:2b:fb:
d6:2f:e7:0a:a8:25:aa:83:23:c9:07:f1:d4:83:bb:
db:ac:70:c7:13:a1:bb:ba:ea:ec:f1:0e:9b:74:d2:
35:df:20:67:d4:25:6b:88:57:f9:79:47:6b:09:7a:
cc:92:19:09:91:df:19:4e:86:6b:62:d9:c7:02:17:
2d:e0:74:b6:26:ce:0c:ef:66:2a:15:d9:05:7c:28:
82:8a:8b:a2:46:fe:e1:d9:e1:60:48:d3:3c:9f:18:
67:1e:a8:f5:d6:4a:24:fa:14:f6:a2:e5:62:ef:70:
6b:c4:91:48:f4:8b:10:68:8b:cb:8d:28:56:cb:84:
4b:76:ae:8f:d9:cc:22:41:13:4d:d1:f8:02:50:20:
7a:32:fb:89:68:af:71:84:16:f5:b1:b2:9a:ee:73:
06:7c:38:4e:dc:88:ea:8c:1b:ff:39:ca:91:03:41:
bc:82:c1:65:3e:73:51:fe:ca:45:c5:df:4d:76:6e:
0f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:77:DF:F0:48:15:CE:4A:4F:BD:34:10:3C:73:D7:2B:DB:7E:19:E9
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Pnff8EgVzkpPvTQQPHPXK9t-Gek.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.64.0/19
Signature Algorithm: sha256WithRSAEncryption
66:b2:53:da:75:f4:0c:7c:8a:1e:6e:c9:b5:d6:6d:70:6a:ee:
0c:ba:e0:9d:81:36:86:77:4e:9a:44:cf:7b:5a:41:e9:92:5f:
ce:f4:d4:e7:c0:32:bd:2c:ee:c6:e8:da:ed:65:2e:cc:33:62:
01:cd:ee:c9:57:a2:37:28:b4:4b:43:2b:cd:b5:bb:8f:14:1d:
0b:7b:65:0b:d8:85:00:81:ab:ec:af:69:9d:73:29:28:77:e0:
cb:19:6e:4d:07:7a:ea:b6:82:49:70:c7:bf:96:9e:65:52:23:
9a:3b:13:59:97:9a:66:57:ac:15:88:34:89:79:eb:ec:93:46:
24:37:bc:cc:9e:1f:5d:d3:ff:51:cf:29:4d:54:d8:94:c1:96:
d1:49:ee:53:c5:08:0f:3c:eb:cd:d6:2b:a5:5d:b1:68:b2:ce:
a6:a6:89:11:70:3a:63:44:7a:84:48:50:f3:76:90:5f:0f:8b:
27:77:23:96:33:ab:0d:b7:45:2e:0c:74:88:14:03:86:b4:0a:
de:c8:7b:f3:5b:ec:eb:d6:fe:0a:38:38:e4:7d:e9:c3:ae:e4:
f3:f1:00:68:f6:f1:48:6f:2c:ea:b9:22:79:1e:1c:7b:7f:4b:
13:22:42:c0:3c:95:3a:f0:88:86:29:59:14:2a:2a:73:eb:c2:
46:81:c6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org