Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/sOFMa08Yna4vm-7U0fdeu8YGbzM.roa
File: sOFMa08Yna4vm-7U0fdeu8YGbzM.roa (raw, json)
Hash identifier: ak/U0PPeXeximgH5CyEcz/mgMtbUbgDAiWYLwsFnjYo=
Subject key identifier: B0:E1:4C:6B:4F:18:9D:AE:2F:9B:EE:D4:D1:F7:5E:BB:C6:06:6F:33
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08DC
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/sOFMa08Yna4vm-7U0fdeu8YGbzM.roa
Signing time: Sun 07 Feb 2021 11:53:31 +0000
ROA not before: Sun 07 Feb 2021 11:53:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 117.56.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2268 (0x8dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B0E14C6B4F189DAE2F9BEED4D1F75EBBC6066F33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:14:90:ad:c8:6f:14:ef:0c:19:af:30:13:
fb:1d:4c:b9:86:13:fb:39:b5:23:95:a3:64:f3:36:
13:6c:4b:0a:36:68:01:b8:d7:ee:db:4a:bd:df:41:
64:85:3e:43:5b:cd:10:17:41:91:d3:ef:1e:69:bb:
0a:42:74:a8:4a:e3:7a:cf:fd:02:4c:6b:7d:09:fd:
df:67:b5:be:28:30:45:08:72:f8:70:7a:48:7f:50:
f6:7c:58:fb:d4:36:d0:3e:50:95:70:8b:9e:37:50:
f3:de:dc:e0:55:b4:98:9a:b3:95:77:2a:0c:d5:e3:
2e:f0:51:d6:19:fe:5a:97:4c:74:5f:35:84:bf:58:
bc:39:ef:7e:82:6c:dc:78:6b:65:15:6a:66:98:e7:
ce:53:7f:e4:dc:5e:fc:97:3c:10:9a:66:36:15:08:
11:23:0a:c9:d2:45:b5:84:7d:5f:34:70:e7:fa:df:
3b:35:22:4c:57:87:53:aa:9d:b4:8b:d9:1e:f5:f4:
3e:51:1d:74:c2:6d:7b:36:fb:88:51:9c:98:6d:34:
80:59:0e:79:ac:64:a2:5b:45:8c:16:df:50:b2:38:
0c:fe:b5:1e:70:9e:14:e9:c3:da:53:ba:ea:28:4c:
eb:e8:da:63:c0:0e:cc:08:63:f8:e5:b5:46:f1:51:
1d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E1:4C:6B:4F:18:9D:AE:2F:9B:EE:D4:D1:F7:5E:BB:C6:06:6F:33
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/sOFMa08Yna4vm-7U0fdeu8YGbzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
14:04:4e:4d:ee:7d:5e:ea:6d:27:6e:2b:b7:44:a4:a5:ac:d7:
10:ed:02:0a:85:71:a4:a1:2d:ea:b8:98:32:1d:79:38:57:be:
38:15:d2:fe:36:47:b0:4b:be:d3:21:b6:eb:87:63:5d:6c:e4:
90:bf:b2:b6:ac:92:ab:02:51:b3:69:a5:12:f7:2e:d2:70:0c:
4c:7d:60:25:2b:59:3c:68:0e:a8:bb:66:3c:8b:63:d9:65:fd:
bc:49:ab:0c:9a:78:ce:4f:52:a6:31:17:ce:f0:ef:b8:dd:e1:
2e:61:8c:72:ed:4a:9c:dc:48:40:b8:e6:a8:8b:31:18:0f:f6:
a4:73:e0:4d:fb:5e:f7:8b:10:8b:ce:cd:64:1b:2d:db:b9:96:
c7:f8:d1:04:9f:05:b4:2d:c9:06:39:74:7c:d5:38:cf:28:14:
c0:18:4e:af:17:85:1c:ef:e5:a3:64:f6:a4:0c:22:f9:1a:ac:
9b:14:b4:aa:06:47:43:e9:a1:02:84:15:5b:3b:eb:f3:b2:6b:
d7:66:e8:be:c4:99:14:d9:d5:cb:4a:58:f0:8c:0f:9c:66:9a:
2d:25:27:5f:8e:b4:b1:be:dc:1f:8d:25:24:59:07:5c:72:25:
17:f4:fe:5b:b4:6f:7b:6e:54:70:ff:0e:4c:cc:27:6a:dd:dd:
6d:05:7b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org