Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/9NKpWtYvsCanwPKgX_rbSzBSb-U.roa
File: 9NKpWtYvsCanwPKgX_rbSzBSb-U.roa (raw, json)
Hash identifier: CvellxPspbcLr6S7rWK85Fn+8+N0qLb/QVBedZsa4oo=
Subject key identifier: F4:D2:A9:5A:D6:2F:B0:26:A7:C0:F2:A0:5F:FA:DB:4B:30:52:6F:E5
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 095B
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/9NKpWtYvsCanwPKgX_rbSzBSb-U.roa
Signing time: Wed 29 Sep 2021 02:52:45 +0000
ROA not before: Wed 29 Sep 2021 02:52:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 203.145.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2395 (0x95b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 29 02:52:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F4D2A95AD62FB026A7C0F2A05FFADB4B30526FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f7:23:47:e5:52:d4:12:29:af:45:db:23:a7:
53:f8:43:60:df:f0:18:62:53:0a:88:60:8a:39:df:
30:c2:e0:68:dd:cd:b0:d3:1d:32:6b:24:3a:bb:00:
0f:f6:51:db:0e:b0:9e:c4:d3:d8:44:f1:82:6b:15:
a9:2e:4c:8e:62:40:ee:62:38:ab:ef:5d:e8:28:a0:
97:ff:3f:f6:72:20:46:01:f2:f2:e0:55:fe:41:63:
df:9d:fe:83:e5:04:15:eb:52:0c:58:7c:6a:c1:26:
bc:1e:aa:fd:a8:be:93:cd:2b:eb:27:26:25:d0:a2:
4d:c6:76:f8:c1:0c:70:15:6d:37:67:cb:7c:9d:51:
7c:26:15:98:b5:69:e8:6d:a0:ef:33:bc:fc:6c:b5:
d8:40:44:3e:ee:30:45:13:f9:4c:36:77:0c:10:4b:
57:56:17:0b:cd:26:fb:8d:b8:18:df:59:48:2a:7c:
1e:6c:b2:11:00:9d:26:2e:a5:ec:7a:e2:9d:37:52:
f1:4c:f3:e0:1e:b6:ff:f0:41:09:40:6c:11:7b:a0:
ca:a0:90:86:e2:1f:8a:11:29:21:eb:5e:10:3d:f7:
26:e1:e1:67:a5:d5:f4:3a:5a:b9:5e:1f:d0:66:aa:
ee:0f:0b:e6:1b:92:1e:98:9b:1a:57:91:1c:da:37:
6b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D2:A9:5A:D6:2F:B0:26:A7:C0:F2:A0:5F:FA:DB:4B:30:52:6F:E5
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/9NKpWtYvsCanwPKgX_rbSzBSb-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.208.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:95:3f:3e:35:22:50:5a:c1:9f:c8:0d:a3:12:bd:e4:f7:f8:
8c:ea:55:aa:58:90:c9:7f:1d:cf:40:45:38:0d:79:eb:93:58:
bd:3b:6e:80:bb:d5:c7:0f:2f:1a:4c:ca:5c:fe:eb:5e:62:ef:
1b:a5:40:34:5a:94:8e:54:18:ea:88:33:69:70:ec:3a:d0:b7:
3b:7e:18:69:f5:fc:65:10:03:83:05:1f:c1:f0:d1:51:29:04:
1c:b6:91:b0:02:b0:6c:9e:e7:21:34:1d:a5:a3:f2:da:79:a4:
4c:a7:46:d3:fa:97:a1:34:df:df:24:7f:3f:df:55:14:6b:a4:
42:e3:26:0b:b8:93:fb:ce:d7:70:4c:34:68:15:d4:7d:1b:02:
65:1f:01:68:1e:9a:93:96:88:5b:d2:4e:d5:f4:0b:70:e2:bb:
73:25:b3:c5:d4:37:c9:64:65:47:12:d8:ce:e6:ae:8b:40:a2:
ff:28:07:02:45:5b:93:9c:41:1d:5a:ee:c0:05:e6:d4:9d:fd:
ae:a0:dc:fb:29:41:b0:be:e7:47:83:88:ea:7a:86:23:a9:8a:
7e:ef:e8:d3:5f:1c:60:d6:eb:80:9c:9b:f7:b1:3c:d3:19:d9:
62:2b:48:db:a2:60:52:ba:81:f5:ec:27:b2:3c:8a:c4:a6:e8:
59:90:37:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org