Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/VLpsGThPa_LC8xsTfBwWVr5hE1Y.roa
File: VLpsGThPa_LC8xsTfBwWVr5hE1Y.roa (raw, json)
Hash identifier: I8kFdTKcEhxSWBuOnrlHF3VnNRxXPy8LoI5ocO8D62Q=
Subject key identifier: 54:BA:6C:19:38:4F:6B:F2:C2:F3:1B:13:7C:1C:16:56:BE:61:13:56
Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Certificate serial: 094B
Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/VLpsGThPa_LC8xsTfBwWVr5hE1Y.roa
Signing time: Wed 29 Sep 2021 02:51:50 +0000
ROA not before: Wed 29 Sep 2021 02:51:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 114.29.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2379 (0x94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Validity
Not Before: Sep 29 02:51:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=54BA6C19384F6BF2C2F31B137C1C1656BE611356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:94:24:7b:64:e8:1a:95:6a:f7:eb:2d:47:9a:
1c:6f:de:ac:60:50:b7:a2:bc:bb:c0:cb:ca:95:3e:
6f:ed:25:1a:8d:d0:37:86:4e:f7:18:ea:ab:22:91:
c7:62:57:6b:f0:80:93:90:72:55:96:c6:ec:2e:cc:
cb:2e:c9:05:7a:09:f8:d6:7f:b8:8c:61:3a:60:04:
ad:f7:bd:71:46:7d:ed:3d:83:8f:a6:b8:3a:e4:39:
ee:61:e0:ec:ae:df:b6:1c:00:0f:da:36:cd:5a:c5:
d3:ec:d2:d8:98:e5:d8:6b:2c:5f:25:31:fe:ff:11:
55:24:41:22:af:83:a3:27:61:a6:22:99:20:fe:7e:
10:92:72:74:e6:e1:0d:7d:1e:b0:07:bf:b2:d3:7b:
2b:2c:62:fe:ac:13:2d:c6:f1:18:d7:64:7e:13:13:
5b:01:57:34:32:5b:11:fb:f9:6b:3c:6d:5c:c0:cf:
60:db:f9:48:9d:16:1d:34:90:89:bd:7b:2d:5b:4d:
88:9e:46:98:03:4c:82:d2:97:2f:a2:68:9d:ec:41:
0b:38:e3:9a:8c:c2:14:40:6e:1d:b2:81:18:5a:d0:
57:e8:2f:e9:7f:f2:a6:e6:67:55:84:61:49:d1:90:
34:d8:84:fb:21:01:1d:d6:9f:0d:82:0d:76:a1:18:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:BA:6C:19:38:4F:6B:F2:C2:F3:1B:13:7C:1C:16:56:BE:61:13:56
X509v3 Authority Key Identifier:
keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/VLpsGThPa_LC8xsTfBwWVr5hE1Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.240.0/22
Signature Algorithm: sha256WithRSAEncryption
01:41:ef:70:16:f3:c0:53:1c:44:90:14:8c:fe:5a:aa:92:95:
3f:f7:31:dc:83:69:ff:28:55:6c:e2:75:f6:dd:e4:0d:91:20:
46:0d:1b:d0:aa:5e:f3:87:b4:8c:56:d9:99:c4:59:b4:04:99:
a2:58:bd:71:f9:d6:f1:50:aa:27:45:c5:5d:0b:00:2e:16:de:
cb:3d:4c:cb:e4:29:bf:83:23:eb:22:ef:0f:ad:4b:fb:ef:aa:
81:4d:6c:96:6f:17:c5:4d:ca:66:09:e7:b3:f1:b4:de:f6:5d:
e2:9e:52:54:88:87:8d:28:b9:f7:d1:4f:2e:09:bf:56:60:2c:
13:ab:cc:e4:47:c0:f3:ba:f5:90:55:4e:76:75:b7:3a:1b:6d:
ab:b3:1d:ab:f8:b9:3a:ab:0d:fc:2a:b5:f6:db:92:4e:95:2d:
34:9c:54:62:66:92:c0:3e:5f:ec:67:4d:ec:58:b6:e2:1c:fb:
dd:a7:6e:3a:4a:67:67:ab:f8:ea:eb:69:b4:71:98:a6:fc:53:
9a:28:bf:ff:51:87:3f:41:bd:4a:36:f8:5c:c8:76:3e:68:64:
2e:ea:13:00:1b:1e:19:f1:17:41:c9:b3:c0:98:9f:77:d4:cc:
74:db:9e:01:81:1f:4d:41:53:24:ba:2c:e7:32:ec:ab:5c:88:
c6:9d:69:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org