Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/zYf2VNm6Ru-3UNuhU6XIPMS5CgU.roa
File: zYf2VNm6Ru-3UNuhU6XIPMS5CgU.roa (raw, json)
Hash identifier: CWVsCT1gCsU7JquNiUKelaDf3ukoG0GFyNZ4u7qlBsk=
Subject key identifier: CD:87:F6:54:D9:BA:46:EF:B7:50:DB:A1:53:A5:C8:3C:C4:B9:0A:05
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08E6
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/zYf2VNm6Ru-3UNuhU6XIPMS5CgU.roa
Signing time: Sun 07 Feb 2021 11:53:37 +0000
ROA not before: Sun 07 Feb 2021 11:53:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 211.79.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2278 (0x8e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CD87F654D9BA46EFB750DBA153A5C83CC4B90A05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:32:f0:96:c1:c4:9b:d7:7a:24:8d:b3:44:00:
e4:f9:3b:12:b0:e1:43:1f:46:32:ad:b4:16:27:9a:
b9:07:50:3e:9a:4a:61:80:27:d0:03:5f:ec:2d:ca:
91:41:c8:d6:11:bc:45:e5:73:6e:98:2e:6a:f4:07:
4e:61:c8:46:62:89:11:c5:99:4b:38:e9:2b:aa:95:
c6:25:c3:6e:1e:3d:25:54:6e:68:14:8a:0b:13:97:
25:13:0e:bc:50:53:47:14:bc:90:88:1b:bc:b7:dc:
be:a8:00:2a:98:e4:93:78:45:9e:79:0e:45:83:4f:
f9:bd:f9:a5:bf:a9:26:88:0b:b8:67:f1:b9:42:54:
e0:6b:85:30:14:b8:71:7f:39:9f:88:db:d2:9a:c1:
70:80:de:b1:2f:f1:b5:1a:88:46:78:ff:1a:ec:c9:
e5:ac:f8:10:a2:46:21:a4:e8:8e:ee:12:4f:a1:1c:
cc:45:64:4b:d9:d5:21:9e:18:1a:bd:0d:91:33:21:
14:bf:b0:8d:0a:d8:3c:fa:9d:59:5b:cd:fe:1a:d2:
6d:f5:81:c4:2d:e6:6b:f0:c6:e7:f3:c5:4c:f3:13:
3d:b6:24:94:3e:14:88:8c:be:ef:f3:7c:4e:70:77:
29:aa:49:08:ef:9a:4b:3b:11:20:05:f4:2a:fa:46:
0f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:87:F6:54:D9:BA:46:EF:B7:50:DB:A1:53:A5:C8:3C:C4:B9:0A:05
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/zYf2VNm6Ru-3UNuhU6XIPMS5CgU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.128.0/19
Signature Algorithm: sha256WithRSAEncryption
44:a4:4a:98:7a:da:ab:30:cb:e0:71:20:c5:92:98:34:58:17:
67:63:48:00:b6:7c:99:47:86:1f:33:c9:4e:e4:0a:61:3c:b3:
ba:9b:de:a8:fb:3b:1a:be:c5:2b:e2:f7:a2:f9:8c:14:ae:0a:
00:d4:e6:05:23:40:2e:45:9c:00:d4:a8:d0:95:cf:0f:fc:c8:
fc:e8:36:23:b9:8d:03:c1:0f:39:12:a1:e8:b7:85:6d:ec:1a:
e7:92:b1:12:07:ad:8d:1c:65:56:98:21:dd:4b:70:78:b6:1a:
07:73:5e:a9:61:69:a4:da:4a:33:70:3c:7a:ae:63:b6:75:5d:
14:e6:70:f4:8b:39:15:7c:b7:c2:87:f3:e3:ee:a1:9d:21:18:
bb:71:30:8f:9b:3c:5b:16:d9:a3:77:40:ee:52:72:9d:43:3b:
1c:ed:0b:6f:88:1d:1a:8d:5c:82:9d:c6:1e:36:7c:8b:95:ee:
6a:5f:b4:ad:9d:e8:ce:0e:5f:c0:cd:75:a6:a9:91:7e:f8:bc:
c5:ac:75:cc:79:3a:ad:9e:c2:00:2a:17:31:a5:e7:1b:69:51:
f1:db:df:74:82:6e:73:76:64:40:da:02:b8:39:0c:be:d3:a1:
ad:5c:19:53:16:13:78:d7:b2:41:07:39:96:13:d2:5f:9b:d5:
31:25:68:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org