Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/QSw6fMrNYX90Oa-U8f3-ASLLKq0.roa
File: QSw6fMrNYX90Oa-U8f3-ASLLKq0.roa (raw, json)
Hash identifier: lJw/1latznxMvW3ZRx8KGM8Z4D4mAzMzOQjYGU/LTG4=
Subject key identifier: 41:2C:3A:7C:CA:CD:61:7F:74:39:AF:94:F1:FD:FE:01:22:CB:2A:AD
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08F0
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/QSw6fMrNYX90Oa-U8f3-ASLLKq0.roa
Signing time: Sun 07 Feb 2021 12:59:15 +0000
ROA not before: Sun 07 Feb 2021 12:59:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 117.56.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2288 (0x8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 12:59:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=412C3A7CCACD617F7439AF94F1FDFE0122CB2AAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a8:3d:f3:e7:5d:3b:d7:ee:75:d3:ce:d9:43:
65:2a:82:00:d8:4c:29:5f:d9:7d:92:0e:3d:0a:b4:
4c:fa:33:df:04:b4:f4:c0:9a:75:c1:ed:10:f7:cb:
ec:40:4b:93:70:62:66:01:e2:2b:56:2b:f7:cb:e8:
5a:8b:e8:9b:10:9c:05:12:f0:ed:4d:5c:09:50:ca:
de:43:e9:75:94:14:0b:4a:0e:6b:f3:5a:5a:1f:83:
29:8b:49:7e:58:88:e6:d3:ff:5f:fc:69:d1:0c:9d:
3b:e0:f6:0a:05:ce:18:9c:47:e9:c1:71:4a:4d:86:
41:f2:0f:3b:7d:75:a0:b3:2f:23:02:56:b1:e2:ba:
d4:29:a1:3b:5f:dc:72:52:28:c9:b5:13:e0:da:e8:
c2:c3:d5:45:d3:47:08:0c:e3:83:92:f6:b8:00:d7:
0f:b3:11:d4:e2:91:f0:5d:9e:16:54:55:d0:03:2c:
8d:4c:6e:84:3c:79:a3:14:61:fa:1c:19:57:ce:6c:
fc:76:bb:9a:c2:b7:2e:76:3e:1f:8e:18:c7:b3:e4:
2b:fc:07:d6:14:d9:a0:42:2f:ed:da:c6:01:e2:08:
0c:24:2d:d1:3c:f3:f2:62:18:d7:1b:ca:96:e4:f8:
aa:cb:39:41:48:42:6b:7c:ca:0a:34:49:b4:c9:ca:
a2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2C:3A:7C:CA:CD:61:7F:74:39:AF:94:F1:FD:FE:01:22:CB:2A:AD
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/QSw6fMrNYX90Oa-U8f3-ASLLKq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/18
Signature Algorithm: sha256WithRSAEncryption
00:32:b0:14:e7:25:b5:10:bf:15:42:a0:18:25:b2:e3:39:3f:
98:f0:03:0d:83:cc:91:fc:20:0e:35:5f:58:f4:f4:a1:f4:51:
c6:c5:48:3c:3d:9e:91:af:3e:3e:73:b0:12:45:af:0d:ac:ed:
80:48:2e:78:76:e3:1a:89:fd:9f:6d:c0:4d:ac:90:84:a9:33:
f4:bf:76:ac:43:4c:f1:80:ba:7e:e2:1c:b6:21:04:d3:16:cd:
c5:c2:2d:79:f2:92:cf:b9:8b:fc:09:a0:b3:47:bb:b6:88:51:
25:65:bf:79:c8:ec:36:79:ec:96:e5:84:b4:00:5d:8b:7a:33:
7f:a5:89:91:e7:c3:28:8d:01:64:42:aa:b4:39:9e:a3:cc:9a:
0a:fe:14:24:1c:a9:b0:32:57:a0:9d:85:d8:31:e0:0d:96:51:
61:f5:86:d5:f4:28:3f:48:c0:0e:69:53:d9:7e:c7:34:8f:c9:
e6:fb:eb:b9:e9:f8:f6:06:5a:fd:6a:72:c6:e8:bb:ee:2a:23:
d0:19:ce:69:44:68:8b:7a:89:dc:42:d3:12:be:c9:1d:86:15:
24:a6:2e:58:68:2e:d3:78:60:b3:ff:32:ef:95:3d:59:0d:5f:
c0:b5:c2:0a:c6:f1:85:f3:61:81:84:f4:e2:d3:98:1c:67:3a:
7e:41:25:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org