Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/S68vosCtoWDs_4Pw7CDjP7aq69Q.roa
File: S68vosCtoWDs_4Pw7CDjP7aq69Q.roa (raw, json)
Hash identifier: FZMStVbMjt4LIuEopwodelH74jebf+7TpetI8RaW8CQ=
Subject key identifier: 4B:AF:2F:A2:C0:AD:A1:60:EC:FF:83:F0:EC:20:E3:3F:B6:AA:EB:D4
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/S68vosCtoWDs_4Pw7CDjP7aq69Q.roa
Signing time: Thu 15 Sep 2022 02:38:40 +0000
ROA not before: Thu 15 Sep 2022 02:38:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 211.79.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4BAF2FA2C0ADA160ECFF83F0EC20E33FB6AAEBD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:93:be:a4:65:4f:ac:c3:a2:64:1c:e6:b9:d4:
05:de:68:8b:fb:bc:e2:06:6f:c7:22:3f:8a:8d:73:
05:7c:7a:d0:00:b8:3c:ad:02:9d:a5:32:42:ae:e6:
71:20:26:0b:f5:51:67:76:81:e4:af:13:59:34:0d:
28:cd:0c:f9:3b:41:88:f9:64:6a:cb:cc:fc:63:36:
1e:59:96:0b:38:76:e0:8b:7a:18:27:e7:7d:be:27:
be:d6:d3:2a:a0:27:57:13:80:52:72:e5:26:64:41:
7d:fe:11:ab:29:d8:2c:a4:17:3f:9f:b5:c8:cd:77:
a9:09:59:93:1c:9e:f9:3a:29:d3:20:5c:77:13:57:
70:b1:01:0b:dd:1a:21:4c:b4:0c:db:26:15:51:1a:
c0:4a:8e:a7:af:1f:45:a6:08:88:af:78:fc:97:0b:
c9:c4:e5:d4:25:ad:6e:4b:15:b7:eb:99:14:59:cc:
80:e8:de:09:18:bc:e5:55:23:f6:fc:38:72:72:45:
f9:46:5e:e8:da:13:c4:bb:3e:cd:f1:9f:c5:00:9b:
f0:6c:74:56:5e:dc:e6:ca:fe:e9:ec:84:95:74:33:
ac:67:84:37:d0:d6:03:94:dc:6f:f7:d5:11:06:72:
a0:9c:c8:af:be:06:fc:c4:84:38:5e:d7:f1:72:1f:
45:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AF:2F:A2:C0:AD:A1:60:EC:FF:83:F0:EC:20:E3:3F:B6:AA:EB:D4
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/S68vosCtoWDs_4Pw7CDjP7aq69Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.160.0/19
Signature Algorithm: sha256WithRSAEncryption
89:71:58:3e:5e:22:78:1a:ea:c2:1c:71:02:1f:24:fb:95:4e:
47:eb:03:94:91:8b:86:b3:08:07:58:03:66:79:a9:0f:0b:d2:
aa:d5:76:97:88:0c:28:92:5a:31:12:c9:78:ee:4a:dd:bc:db:
f7:d6:8a:b1:c4:a7:06:40:b0:1c:a9:93:41:30:67:63:6d:7e:
ee:91:22:2c:00:ad:a3:4e:63:b1:a2:0a:af:93:6f:91:21:22:
f5:1f:d8:3d:63:d7:e7:66:43:44:69:e5:2f:76:c3:1b:f3:cc:
6d:ab:b9:c7:ae:e7:51:7c:c3:6f:c9:1f:9c:91:30:e1:13:df:
0b:1d:22:6f:fa:88:6a:b7:f8:f9:29:26:db:36:1d:bf:ba:e0:
22:ea:c8:fd:cf:d4:f8:0d:28:95:4b:3e:ed:b1:a1:b5:a0:2f:
06:3d:de:1c:14:d6:0c:27:5e:6e:6d:8a:ed:38:a4:63:3e:c9:
f0:1c:c0:72:1f:3c:23:d1:82:53:16:79:92:5c:b0:e4:1c:4c:
51:78:81:85:2e:73:a3:ac:5e:89:00:1f:37:07:c7:a8:50:3a:
73:4e:40:5f:28:ab:e9:b9:e3:fc:3d:ce:81:89:e9:d5:2a:40:
32:bb:ed:22:fc:ae:db:2a:52:91:29:9b:0f:4f:e2:eb:71:9c:
82:95:53:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org