Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/m9C5lzSAoElBlyNQcSk4EKdD0us.roa
File: m9C5lzSAoElBlyNQcSk4EKdD0us.roa (raw, json)
Hash identifier: 8x3Wg4KQ+rd4Twce3LuF/jV0F3j8K/aR+Rs4EuiMxyA=
Subject key identifier: 9B:D0:B9:97:34:80:A0:49:41:97:23:50:71:29:38:10:A7:43:D2:EB
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/m9C5lzSAoElBlyNQcSk4EKdD0us.roa
Signing time: Thu 15 Sep 2022 02:38:43 +0000
ROA not before: Thu 15 Sep 2022 02:38:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 210.69.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9BD0B9973480A0494197235071293810A743D2EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ed:de:94:b1:e0:17:cf:89:f6:de:b1:8f:1d:
0a:d3:5f:a5:b8:42:ca:0b:52:63:02:69:eb:d4:fb:
df:d3:64:67:56:63:03:5d:17:b0:6f:6d:4d:89:28:
0d:79:e0:60:f9:bd:d4:c9:3c:7d:44:ff:36:aa:15:
94:71:0c:9f:89:6f:47:be:f9:97:bb:fb:4b:67:fe:
6f:e2:ab:fa:73:2b:3e:2f:ab:73:b4:63:06:00:01:
26:70:1b:21:79:a6:e3:3d:9c:41:52:4f:b3:2f:06:
41:05:8f:39:5a:e5:af:e3:20:99:6a:f4:fc:bd:58:
fe:67:7e:61:2e:0e:05:b3:aa:84:3d:d2:cb:ad:5c:
47:cd:2f:1b:4f:6b:c4:3c:9f:6a:bb:d5:76:41:53:
90:ee:fc:67:95:8c:ba:96:1b:a9:ad:9a:a1:81:a4:
65:63:58:9d:6f:6e:57:5d:83:e8:ac:73:ff:3a:bf:
e9:43:a6:fc:0c:58:63:bf:ba:77:d2:fa:ed:20:41:
8b:c9:5a:ba:88:ed:82:41:cb:ca:cf:e4:a2:7e:f1:
2a:25:05:92:71:4e:63:c2:db:3f:ac:48:e1:6c:ed:
08:dd:ed:68:16:ff:aa:3e:29:09:30:42:d1:9d:cf:
19:59:84:a4:e4:65:fb:33:15:9a:3f:83:7e:98:80:
0f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D0:B9:97:34:80:A0:49:41:97:23:50:71:29:38:10:A7:43:D2:EB
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/m9C5lzSAoElBlyNQcSk4EKdD0us.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9f:c9:9d:40:3f:ed:19:93:dc:20:6e:11:d1:17:36:98:c9:b3:
25:f0:2f:dc:b7:0c:ef:24:60:0a:0d:7d:a1:00:52:4f:94:fb:
66:fa:a8:6f:cd:9e:3d:03:67:3d:96:20:13:18:be:26:56:29:
7b:5a:85:cd:2a:1a:95:fe:27:48:c1:d1:36:aa:de:ef:cd:b2:
80:a1:a2:b4:9a:3c:1e:d3:3c:0f:bf:02:fb:7d:92:e8:9d:2c:
d0:88:9c:53:d8:a2:6b:8a:c9:de:34:96:6b:1e:05:ef:82:22:
1c:dd:1f:ba:ac:20:a6:94:9b:f6:87:4e:88:3e:e7:c7:5a:0f:
1d:d7:b0:e2:4d:bb:dd:9b:32:49:0a:84:bd:33:06:af:f9:03:
51:83:5a:4b:e8:88:d9:85:f2:d3:c7:38:04:1f:22:d1:4f:bf:
3a:f7:9e:2b:0f:64:76:29:d1:08:8b:d1:d8:dd:32:19:45:d0:
97:5b:ec:a0:20:c1:ea:f8:28:9e:bf:00:c3:e7:77:8b:46:4a:
bc:35:b4:54:57:4f:6c:0c:8c:21:b0:0d:9e:99:06:2f:57:57:
0d:d2:51:81:7c:32:b2:9f:dd:3b:9f:b4:d3:9e:31:29:7a:f8:
f4:91:90:9b:c0:a6:b0:e4:df:28:8b:64:d9:bb:51:d1:00:cc:
60:58:df:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org