Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MKY/lPziJlZa3eOIcrEWTWWCDkoVNp0.roa
File: lPziJlZa3eOIcrEWTWWCDkoVNp0.roa (raw, json)
Hash identifier: xTieFwr1bl/w/P9h6Bh2+TdjxWWUk4TlC38y2CWuYOA=
Subject key identifier: 94:FC:E2:26:56:5A:DD:E3:88:72:B1:16:4D:65:82:0E:4A:15:36:9D
Certificate issuer: /CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Certificate serial: 077D
Authority key identifier: 9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/lPziJlZa3eOIcrEWTWWCDkoVNp0.roa
Signing time: Tue 29 Sep 2020 10:05:01 +0000
ROA not before: Tue 29 Sep 2020 10:05:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7478
IP address blocks: 211.76.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1917 (0x77d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Validity
Not Before: Sep 29 10:05:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=94FCE226565ADDE38872B1164D65820E4A15369D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3e:bf:a9:ca:00:3e:e7:02:bd:2c:76:fd:ac:
95:98:0e:1b:58:71:45:46:ea:42:e5:3e:e1:f2:75:
0f:3c:b5:6e:b2:29:c3:6d:a6:8e:c7:7e:52:04:af:
a2:04:cc:13:24:b6:4a:9a:f8:3f:fe:10:38:2b:e7:
2f:91:c1:af:ee:6a:05:5a:ad:54:8b:d8:38:ea:23:
59:62:04:8e:46:e7:31:73:0f:91:49:84:c5:e7:01:
c1:ef:64:91:aa:fc:16:39:16:18:95:08:f2:9e:ba:
11:90:b7:41:94:ca:17:36:e5:08:ca:33:ce:d0:53:
3a:d5:21:fb:08:4c:78:34:4f:a9:9c:82:ab:a3:ad:
e6:97:76:5c:78:10:51:43:86:30:2b:ce:82:94:b2:
70:2f:ee:9b:b6:40:b6:29:7b:59:32:81:78:76:cb:
10:b3:8b:5a:73:4d:32:01:f0:1e:49:ba:35:c0:22:
52:1c:bb:84:19:a9:ef:1e:f3:aa:0b:3a:f6:25:2e:
03:10:4d:4a:ee:ae:03:20:43:d6:32:4c:5a:d6:e8:
e6:9c:79:28:23:9b:ca:01:ca:0d:8d:74:69:4d:50:
bc:45:be:e5:67:bf:ea:81:d9:a0:2c:e0:d8:3f:32:
33:34:ea:e2:cf:7b:73:2c:85:f0:1a:8b:4d:12:d4:
31:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FC:E2:26:56:5A:DD:E3:88:72:B1:16:4D:65:82:0E:4A:15:36:9D
X509v3 Authority Key Identifier:
keyid:9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/lPziJlZa3eOIcrEWTWWCDkoVNp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.0.0/19
Signature Algorithm: sha256WithRSAEncryption
af:6a:23:ad:52:0e:82:39:fd:b7:93:66:34:ff:c4:76:2e:d7:
de:4d:83:fa:b8:07:95:04:91:47:27:dc:5e:4e:da:e5:f9:c7:
35:b2:e0:4e:69:25:6a:6b:16:26:c7:6b:a9:4d:69:2e:fc:66:
71:31:c9:2e:fb:5b:78:a0:d7:cb:73:fb:60:f8:0e:ff:6f:1f:
f5:f6:fe:0d:18:84:65:08:35:1f:9f:f0:4c:bb:a3:ae:0e:02:
aa:82:01:ed:71:af:b1:4b:2f:38:ee:35:1e:3a:21:61:5a:ae:
85:15:df:60:aa:6f:76:9a:60:c4:ac:6d:29:0c:f6:9a:96:6c:
77:78:bd:b1:54:1b:8a:01:5d:e8:67:54:da:c7:ea:f4:1c:a0:
88:03:e4:e4:98:3e:49:9a:25:20:bc:57:8e:6f:b1:a4:5f:77:
4b:7c:45:23:3f:00:82:b4:8d:dd:d0:d1:78:f0:f0:49:a0:6c:
42:30:5a:2e:20:ff:f8:86:80:f8:9c:76:e1:bf:49:83:74:ca:
7f:fc:6d:b2:b9:c4:53:4b:3e:61:91:52:6f:a6:06:9b:b5:9b:
88:bc:39:a0:34:79:fd:d1:40:63:7e:24:23:ab:d6:20:0b:ef:
3b:37:da:a4:22:f4:d9:4f:b9:ae:da:b8:19:2d:f2:80:48:92:
7e:9d:59:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org