Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/-0VS2pUdRYYk4XWNt4PQ4Ei1SGE.roa
File: -0VS2pUdRYYk4XWNt4PQ4Ei1SGE.roa (raw, json)
Hash identifier: QB4xqvPuOJwCdQMrT217roA/AAhSEp/d8lZIujSjnYQ=
Subject key identifier: FB:45:52:DA:95:1D:45:86:24:E1:75:8D:B7:83:D0:E0:48:B5:48:61
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0945
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/-0VS2pUdRYYk4XWNt4PQ4Ei1SGE.roa
Signing time: Wed 29 Sep 2021 02:52:58 +0000
ROA not before: Wed 29 Sep 2021 02:52:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17420
IP address blocks: 210.67.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2373 (0x945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FB4552DA951D458624E1758DB783D0E048B54861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c7:02:e8:02:05:a0:93:24:bd:79:93:4e:e8:
24:ed:30:9b:a2:a9:c6:06:15:9e:d3:d3:b1:35:b2:
26:aa:60:4d:90:d3:cb:5c:0c:c5:b8:fe:40:36:e5:
e7:45:11:bf:58:3a:91:f0:95:51:b9:63:0d:9d:fe:
14:e7:cf:81:27:8f:77:c3:83:c9:9b:5f:c3:48:35:
4b:9f:6a:b7:d6:4b:66:ac:41:5f:4b:d0:15:44:b3:
db:f3:56:16:58:8a:c1:7d:2c:2f:14:3c:f2:49:77:
85:d9:5b:4b:3f:e7:bd:37:cf:17:ee:f5:8c:4a:a2:
4f:37:8b:23:8e:90:d2:c3:62:73:02:1b:58:bc:3b:
a7:f7:33:de:68:89:c4:f0:d7:f1:40:c5:dd:3d:d8:
75:62:5d:e1:2d:c0:19:54:07:9b:ef:8d:9a:2f:4f:
b1:e6:37:8a:cd:86:c4:9f:b0:af:81:a1:fd:76:82:
15:e7:c2:91:36:8a:1a:3a:d4:6e:31:ab:1b:60:ba:
1b:bb:96:1e:5b:9a:98:8c:33:d6:0a:8d:d9:21:47:
08:13:ca:68:70:a5:e8:2b:1c:9d:9a:50:f9:d4:25:
3e:f4:48:24:ca:42:32:c0:37:d7:5c:68:20:89:5a:
75:b6:bf:31:13:ad:b5:49:a3:47:cc:19:d4:e4:c3:
e4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:45:52:DA:95:1D:45:86:24:E1:75:8D:B7:83:D0:E0:48:B5:48:61
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/-0VS2pUdRYYk4XWNt4PQ4Ei1SGE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:c7:41:ac:57:8c:6b:35:f1:5e:84:71:9d:e4:d6:d8:dc:76:
a6:0f:8b:a1:f6:92:3c:bb:0e:c9:7e:c9:46:e4:5a:f2:b7:50:
93:f6:3f:01:e4:bb:23:eb:5b:ff:9e:6b:b2:e0:5f:74:e2:cd:
3c:e5:17:41:1a:20:b6:e9:e6:ed:19:8d:f0:ed:6e:76:8b:42:
49:9e:98:5f:57:c0:8f:be:d8:e9:9b:ff:c5:49:ca:c4:ca:02:
73:8d:a6:b5:b3:28:d7:9b:de:0a:0d:0b:ab:5d:09:b3:6b:c1:
db:c6:6e:d4:2f:23:d3:ff:af:e2:ce:c2:78:45:36:2b:a5:70:
29:fe:de:5a:47:01:ec:3e:af:02:5c:60:21:37:1c:92:46:e8:
e2:03:cf:a5:d5:26:36:b7:b8:a8:d3:95:82:1b:36:7c:93:08:
1b:01:b9:56:a3:1e:e4:0f:1a:3d:1c:3f:64:73:ff:a8:67:ea:
70:a1:30:fb:b1:a0:1e:b5:72:bb:fd:7b:84:57:86:38:9f:e6:
02:38:95:68:6b:e6:7c:1b:31:e6:01:8d:96:73:35:c4:3a:ef:
e1:19:14:3e:c1:9a:92:cf:66:2a:88:c4:e9:45:f2:f8:3a:49:
41:a3:33:7e:e2:0c:00:77:a0:5d:ff:09:04:50:55:35:4b:78:
1a:df:a4:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org