Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/D5UDmvNDZ3M6cJDv9MDgevHLZx8.roa
File: D5UDmvNDZ3M6cJDv9MDgevHLZx8.roa (raw, json)
Hash identifier: OWydKP/cpPtONQadc5CA1j5FfcYU4ajs56hpjRN/I0Q=
Subject key identifier: 0F:95:03:9A:F3:43:67:73:3A:70:90:EF:F4:C0:E0:7A:F1:CB:67:1F
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/D5UDmvNDZ3M6cJDv9MDgevHLZx8.roa
Signing time: Thu 15 Sep 2022 02:50:37 +0000
ROA not before: Thu 15 Sep 2022 02:50:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17420
IP address blocks: 210.67.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0F95039AF34367733A7090EFF4C0E07AF1CB671F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:d7:ac:31:85:e0:15:26:58:5a:79:de:22:
a2:48:5a:d7:20:dc:61:89:5b:64:e8:65:ff:d9:f9:
3a:07:b7:27:04:b0:8b:cf:54:4f:ac:14:57:7b:e4:
df:83:a5:ae:3a:6b:a2:9c:20:6c:4b:53:45:cc:bf:
d9:da:ae:52:d8:ca:8a:c5:27:1d:80:f7:2e:1e:ca:
70:93:3c:32:80:60:a2:d2:b1:fa:e9:0c:22:5c:13:
f6:c3:f4:8a:a5:18:bb:58:57:93:05:cb:74:ae:d5:
17:63:1d:09:47:0f:18:7b:a0:d2:69:ee:20:ad:b0:
72:59:09:31:cc:b7:38:80:25:11:7e:12:ce:29:c0:
9f:92:dd:91:37:06:df:71:92:9f:4b:a4:8b:dd:f3:
e0:67:8c:e0:3c:34:9b:13:a0:9c:32:07:1a:e3:e8:
d7:4e:48:78:b0:ba:00:a8:93:f2:07:73:d5:33:2f:
ed:ad:c2:e1:c4:b4:d8:ed:f4:18:d0:7c:66:94:7c:
a1:ea:28:d6:c2:bf:63:92:63:a4:00:01:5f:2a:63:
7e:36:21:91:e1:c1:76:cb:1d:d9:80:da:47:19:ae:
03:2b:ba:b0:be:60:6e:6e:24:81:75:97:01:3d:a4:
43:04:45:35:ed:95:3b:d3:87:f1:24:bd:57:79:7d:
39:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:95:03:9A:F3:43:67:73:3A:70:90:EF:F4:C0:E0:7A:F1:CB:67:1F
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/D5UDmvNDZ3M6cJDv9MDgevHLZx8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:fb:f8:ff:a1:4b:1c:61:85:02:a2:53:19:fb:f5:10:a5:eb:
58:c8:38:bd:66:79:85:99:72:b8:1b:50:4f:25:e0:d9:3f:40:
31:19:d8:24:79:e3:f8:82:fa:8c:e6:dd:1e:b2:5a:19:4d:dc:
0c:e5:be:9f:84:d2:1b:8f:10:5f:d7:85:3c:32:10:ca:9b:2b:
37:60:ef:17:f3:17:f6:af:78:ff:3c:3c:85:49:4f:cf:cf:1f:
65:99:79:c8:49:e6:f1:3b:94:5d:fb:51:e8:ba:2f:e6:f2:b8:
c3:87:47:38:b9:68:6b:68:32:21:48:09:94:aa:e7:37:e9:30:
fc:46:d4:4d:0f:61:13:f9:7a:ee:44:0b:fd:9f:b7:c9:b8:48:
58:e5:c8:18:5b:8e:4e:51:36:c9:95:94:f0:31:d6:60:25:29:
76:d5:e8:af:27:d5:3e:f2:43:16:0e:ae:d8:06:f5:61:97:f1:
46:67:d3:bd:10:8d:08:90:41:38:ae:cf:b7:c5:fd:1f:86:e4:
a7:bd:6b:4d:d0:08:b4:53:b2:13:cd:da:f0:9e:fa:0c:38:01:
a5:ee:b6:56:9b:ec:ec:12:c7:03:15:be:21:52:c6:0f:08:f3:
c5:8d:ea:ee:b2:d5:00:66:4b:4d:c4:38:34:03:8d:bd:6d:91:
16:f0:18:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org