Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/_YqGdf8p0-SEx1cIzkUfpXb9CA8.roa
File: _YqGdf8p0-SEx1cIzkUfpXb9CA8.roa (raw, json)
Hash identifier: /GLpfSQ12SXQ8aKlCVo87cR3D7pR2q+FGKV5SoiKrB8=
Subject key identifier: FD:8A:86:75:FF:29:D3:E4:84:C7:57:08:CE:45:1F:A5:76:FD:08:0F
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0990
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/_YqGdf8p0-SEx1cIzkUfpXb9CA8.roa
Signing time: Wed 29 Sep 2021 02:38:08 +0000
ROA not before: Wed 29 Sep 2021 02:38:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 210.241.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2448 (0x990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FD8A8675FF29D3E484C75708CE451FA576FD080F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1a:73:d6:bf:6b:54:57:ae:54:f2:bc:8e:48:
57:3e:c9:3d:b7:ac:1e:8d:44:c8:07:dc:4e:14:c9:
22:bb:29:0f:cd:af:65:d2:7c:91:4d:16:f0:e8:89:
a2:0e:4e:71:cc:55:ea:19:65:52:82:06:23:55:c9:
2c:2d:45:82:70:c9:d6:9a:cd:47:8b:72:17:24:ab:
d8:49:67:83:18:a7:5f:3e:84:20:57:09:a1:01:5a:
e6:1e:a6:b8:75:9f:b7:a5:4e:8d:9d:31:ff:3d:ae:
b6:ae:6a:33:33:46:9a:ba:bf:0d:df:be:5a:0f:37:
5f:97:7d:2b:bd:18:cf:07:79:61:83:bf:40:e5:94:
76:4d:2c:c9:cd:c5:80:1e:f5:81:72:8d:9f:73:fc:
cc:c6:6c:7e:da:38:a9:19:77:2b:3f:54:3b:47:53:
65:43:79:6e:4c:00:3e:47:af:d1:4d:e4:cf:4f:66:
76:33:c7:20:1d:36:3e:03:51:b5:60:43:f0:7c:52:
18:67:f9:33:e6:c0:ab:8a:12:e7:8f:f8:81:95:90:
4e:e8:dd:f7:29:15:5d:f6:ef:58:f3:59:e4:d0:24:
80:2a:b0:bb:50:cf:72:88:05:61:dc:6f:32:87:c1:
3e:a9:ea:7d:36:29:ad:a7:37:f2:1c:18:b5:85:47:
ec:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8A:86:75:FF:29:D3:E4:84:C7:57:08:CE:45:1F:A5:76:FD:08:0F
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/_YqGdf8p0-SEx1cIzkUfpXb9CA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.0.0/17
Signature Algorithm: sha256WithRSAEncryption
93:18:9b:5c:1e:1a:a5:56:35:1d:38:66:06:0d:7a:92:f9:ff:
9d:12:32:4a:05:45:f6:f0:0c:09:dd:da:f0:1a:45:74:21:9d:
9f:23:bf:67:63:b2:cb:22:49:5f:5c:04:bb:4c:8c:5d:29:2a:
80:8e:1e:b1:04:80:31:59:cb:e7:4d:e9:95:7e:76:a5:0e:21:
76:8e:91:fe:1f:5b:dc:8c:ff:51:27:7c:aa:52:67:a9:2d:dc:
8d:9e:0c:f7:41:01:78:23:7c:24:c2:da:5f:ba:79:1f:f5:b6:
61:37:f5:c5:40:46:32:d8:ba:03:95:9d:fc:ff:1b:03:32:aa:
9a:30:9b:76:ec:ad:ba:ad:72:fe:15:9a:c7:10:33:18:4a:7b:
15:46:71:0c:d7:a1:7f:7f:0c:e1:2e:44:74:f1:86:cc:6d:1d:
d5:3d:ea:59:e6:71:83:d3:44:31:f9:0d:a1:a3:c2:52:d1:be:
c7:a0:43:f7:fd:de:74:3c:ba:08:7f:f9:30:e3:2d:a1:81:cb:
f2:3f:81:28:29:f6:d4:73:60:e6:b8:3c:3d:5d:4e:f8:c0:6e:
14:53:42:40:9a:d9:4a:08:6c:20:e7:66:c6:5a:32:51:1b:38:
24:19:46:2c:7c:1f:21:d3:a3:de:ea:d7:c5:7b:ae:c5:de:73:
7b:88:f5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org