Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/RdAtfZtdH4Z9DHBREubsf5muwmY.roa
File: RdAtfZtdH4Z9DHBREubsf5muwmY.roa (raw, json)
Hash identifier: R7GlZ5VYgm4hB6eAeI6MSgPn3tzNz9ncLWeaQ/M1K+s=
Subject key identifier: 45:D0:2D:7D:9B:5D:1F:86:7D:0C:70:51:12:E6:EC:7F:99:AE:C2:66
Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F
Certificate serial: 08AB
Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/RdAtfZtdH4Z9DHBREubsf5muwmY.roa
Signing time: Sun 07 Feb 2021 12:35:02 +0000
ROA not before: Sun 07 Feb 2021 12:35:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38837
IP address blocks: 211.78.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F
Validity
Not Before: Feb 7 12:35:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=45D02D7D9B5D1F867D0C705112E6EC7F99AEC266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1e:dd:32:16:26:a4:01:fb:7c:a0:ff:5a:cf:
19:90:c9:2d:df:07:89:82:51:f7:f0:6d:90:00:ba:
db:57:ef:23:f8:55:aa:12:aa:e0:89:20:ad:0e:ba:
80:04:e3:e8:6b:2e:f4:52:af:e3:6c:ef:0d:04:99:
1a:59:2a:5e:bb:0b:57:22:ee:07:69:6c:df:ed:44:
e3:34:d5:d3:04:54:f5:85:cc:03:e6:4c:92:76:02:
b5:31:1b:6c:79:0d:ec:30:25:74:2c:e6:6c:04:2a:
33:48:6b:6a:c7:5a:a3:67:db:16:f3:36:0e:f9:ef:
89:4a:17:78:e4:a7:86:b2:2d:81:30:8d:64:99:77:
13:1b:7b:19:8d:c7:91:91:63:3f:a0:70:8c:31:f8:
1a:57:6e:0e:82:4a:38:2c:ac:8e:09:fc:4f:f3:8a:
b4:0a:41:f2:65:68:62:dd:b6:aa:0c:23:d8:d7:8c:
d8:56:5c:c4:e1:71:a3:ec:2e:1b:d5:e6:ab:2e:96:
38:0c:64:2f:01:06:74:8d:d2:60:96:ad:fb:e1:4d:
66:50:0c:0b:bb:4b:1d:f2:bf:2c:da:9e:18:8d:7c:
95:f2:91:08:da:8f:74:24:e6:6a:4a:88:33:37:66:
40:3e:e8:62:8f:08:4c:f2:da:5b:7b:69:1f:d8:29:
0b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D0:2D:7D:9B:5D:1F:86:7D:0C:70:51:12:E6:EC:7F:99:AE:C2:66
X509v3 Authority Key Identifier:
keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/RdAtfZtdH4Z9DHBREubsf5muwmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.64.0/20
Signature Algorithm: sha256WithRSAEncryption
51:a6:86:09:57:d0:8b:b7:3e:28:04:19:28:72:d6:96:34:98:
12:4d:18:33:f7:57:f1:1b:e3:ae:00:62:e7:31:e0:3f:92:42:
f3:82:af:f9:1b:bc:a8:c9:80:f7:39:8b:7c:c0:cb:1f:57:92:
06:b8:86:bd:dc:c6:8f:de:0a:85:c1:ca:8d:6b:17:4a:76:cc:
63:78:df:ca:a8:b8:9c:e0:6c:fd:f9:d2:b5:87:5c:df:91:f4:
36:16:0d:4a:30:7a:d1:bb:7a:7f:78:d2:a3:f2:94:9d:27:6a:
a4:32:96:2f:31:d5:6c:a9:2e:e0:24:30:60:9e:7d:e7:93:4b:
71:7f:7e:f2:31:65:01:df:31:fc:10:70:b1:5b:92:ed:b3:0b:
a4:55:12:35:39:36:22:34:1d:4e:f4:8e:c5:62:8a:0f:1c:02:
4b:c3:05:e3:75:39:12:b4:16:a7:06:81:19:ad:0b:5c:4b:4d:
5a:b6:2b:b8:43:d6:1c:41:e1:a2:33:51:45:41:3f:e8:13:4b:
50:50:2b:c2:72:ce:91:8d:a2:33:59:02:fc:73:27:34:0d:6c:
54:e8:85:94:37:d3:a8:58:14:91:e1:1b:4f:87:87:76:b5:17:
14:70:ac:4b:a1:4e:6f:7d:01:0d:b3:e1:cd:c3:d0:6b:1e:d7:
71:97:4a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org