Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/0RxcoYdI_iwkzQz2rBMC1jwiBP0.roa
File: 0RxcoYdI_iwkzQz2rBMC1jwiBP0.roa (raw, json)
Hash identifier: kYCitOo3Tt33eGuDmzjCWCKn4kwpTekrkUCkgiYhFd8=
Subject key identifier: D1:1C:5C:A1:87:48:FE:2C:24:CD:0C:F6:AC:13:02:D6:3C:22:04:FD
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0944
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/0RxcoYdI_iwkzQz2rBMC1jwiBP0.roa
Signing time: Wed 29 Sep 2021 02:52:57 +0000
ROA not before: Wed 29 Sep 2021 02:52:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4781
IP address blocks: 210.63.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2372 (0x944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D11C5CA18748FE2C24CD0CF6AC1302D63C2204FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c8:af:b4:8c:ea:3b:ad:49:2c:79:40:44:b5:
d9:3c:2c:20:6e:89:91:ee:6f:7d:90:0c:27:ed:c7:
f6:73:95:a8:80:d1:35:52:5b:9e:bc:2f:bc:fe:96:
6f:23:ec:09:1e:26:60:ee:76:0e:0a:5a:ab:12:df:
bc:87:2c:16:15:a0:fa:2f:2f:32:b2:cb:be:fb:78:
67:1b:a0:37:18:87:87:b1:8c:0c:a5:a9:26:c5:7d:
aa:81:83:7d:a3:89:b1:6d:48:9d:78:07:9f:b9:0c:
33:d1:7c:08:b9:22:ba:9c:a8:6c:bf:d1:8b:a8:63:
78:80:13:04:52:fb:99:ba:49:59:f7:f5:8c:77:dc:
91:a1:63:8b:07:3c:33:90:76:07:c8:72:9a:18:fc:
de:23:23:e1:2c:57:a9:c4:cb:d0:f2:a0:a3:d3:11:
d7:15:6a:82:7a:3c:a2:eb:0b:c4:fc:01:76:8e:0b:
b2:f8:53:83:53:d9:50:8b:a0:ff:9d:9b:bb:cd:b1:
aa:4f:1b:f8:d8:99:11:9a:72:ff:12:08:2e:be:10:
de:ca:a2:e0:64:a6:a5:d2:0e:b4:42:a2:02:f1:61:
5f:50:c7:17:9c:bc:6a:56:9b:a2:26:53:10:b5:ad:
55:32:99:1b:6f:b2:93:bf:20:ba:b8:b2:98:22:1b:
cc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:1C:5C:A1:87:48:FE:2C:24:CD:0C:F6:AC:13:02:D6:3C:22:04:FD
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/0RxcoYdI_iwkzQz2rBMC1jwiBP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.96.0/24
Signature Algorithm: sha256WithRSAEncryption
89:bd:3b:2e:4d:17:c6:42:3a:be:5e:84:b7:34:02:6e:77:36:
c6:f8:8f:e3:46:9d:bc:93:7b:22:76:b5:1a:52:4f:6c:b3:59:
98:15:4d:50:f3:c4:77:57:27:76:e4:f3:00:bd:1c:97:fa:1f:
10:27:50:13:87:da:fb:a4:45:aa:00:af:18:fc:ce:7d:5e:1f:
0c:2f:95:e2:32:43:d5:7c:f3:43:16:92:d4:36:45:62:78:e5:
1c:f8:b0:b6:82:a6:fe:f9:bf:fd:14:4d:8a:62:86:39:7a:2d:
c5:86:53:2c:e3:0e:04:47:2e:80:e4:df:72:ff:e1:ec:aa:f8:
25:66:95:25:53:99:22:04:e7:ca:ea:c4:0f:65:89:1c:65:7b:
8a:47:10:e2:30:6a:f8:fb:84:6e:7a:6a:66:92:70:09:32:21:
27:a3:22:32:18:83:8c:d2:88:6f:ec:4a:3f:5c:2b:82:bd:d9:
62:e1:59:eb:b1:7d:c4:84:52:a4:1a:52:63:68:f3:29:ac:02:
b1:31:96:74:7c:bc:ae:c8:d4:95:8e:12:9a:a9:d6:5c:b8:d4:
dd:65:3f:9b:c7:8b:1d:5a:bf:9f:0f:a3:07:e2:85:dc:21:f8:
39:8b:3e:8d:d2:9e:00:dc:e4:3b:39:cd:c4:57:bd:98:6c:4c:
61:6d:6b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org