Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/IMEliLG1tZETF5G4po7rpvEfj08.roa
File: IMEliLG1tZETF5G4po7rpvEfj08.roa (raw, json)
Hash identifier: TXQ7EFKEiarOwQtX5aW0aukEksjU18IQ9EGBfIfSFQA=
Subject key identifier: 20:C1:25:88:B1:B5:B5:91:13:17:91:B8:A6:8E:EB:A6:F1:1F:8F:4F
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/IMEliLG1tZETF5G4po7rpvEfj08.roa
Signing time: Thu 15 Sep 2022 02:50:36 +0000
ROA not before: Thu 15 Sep 2022 02:50:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4781
IP address blocks: 210.63.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20C12588B1B5B591131791B8A68EEBA6F11F8F4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f4:1f:5f:ed:ee:d1:85:0c:d9:66:ac:58:b6:
c5:47:82:e3:c0:7f:aa:31:fa:2f:72:d3:80:c4:15:
a8:d5:8a:07:16:d4:bd:23:68:26:d8:08:86:c1:c1:
21:97:d6:19:09:86:2f:67:15:00:b9:21:7a:1c:73:
c7:b0:e4:c0:57:27:77:70:52:39:84:c1:e7:6f:cd:
12:0a:0a:3b:6f:e6:0e:f8:80:61:51:24:14:a9:83:
ca:c1:ab:d8:c3:30:3b:5f:5c:4d:47:39:26:55:c1:
b1:4e:f7:84:86:10:87:3a:0c:c3:6d:9c:16:f5:a3:
71:d2:da:01:51:59:a0:fc:ba:94:3e:4e:44:9a:fd:
f2:63:57:a5:58:6e:e8:53:43:31:68:e5:b7:02:e4:
dc:1f:52:c2:77:3d:13:04:77:c9:22:0b:63:84:f7:
30:1e:a1:fe:a7:40:e2:41:a2:ad:71:4c:5e:14:47:
35:d7:cb:e9:53:2b:52:eb:cb:af:40:bf:3b:cc:b3:
ae:1c:d1:9a:a8:b5:09:7c:fb:89:3e:a5:6e:98:b0:
59:e3:69:0e:7b:a7:75:a7:f0:4e:9f:71:44:ae:07:
56:1b:d3:3a:07:9b:2b:b1:1a:3d:bb:f2:5e:0e:92:
95:21:36:59:57:ab:54:b1:2f:04:46:82:9f:6b:18:
c4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C1:25:88:B1:B5:B5:91:13:17:91:B8:A6:8E:EB:A6:F1:1F:8F:4F
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/IMEliLG1tZETF5G4po7rpvEfj08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.102.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:17:30:ba:bb:3f:92:c0:bb:9a:dc:c7:da:55:5d:ee:9c:e6:
75:01:a6:eb:75:16:73:aa:35:5c:df:cb:77:b1:c6:d5:38:44:
d3:81:8d:e3:b1:dc:b9:90:a4:47:59:dc:9d:f0:91:c5:62:a0:
16:da:93:ca:21:e1:ca:68:ef:8f:4a:68:23:6b:f6:8f:f4:cc:
4d:b5:b7:38:54:e8:74:32:5f:f3:7d:c9:6f:c4:81:2e:b1:ad:
f2:b4:66:9e:d0:9f:52:a3:b8:c6:4a:12:92:13:a0:1e:c1:df:
a3:15:40:66:fd:fb:9b:73:01:6f:2d:3c:31:bf:f5:47:32:ad:
0c:2e:c4:82:2e:13:6b:e0:5f:3a:1d:5b:ae:3c:9e:04:bb:14:
f2:d1:d1:8d:ab:0d:a1:3e:e3:2e:95:35:23:27:f1:ff:ea:8b:
df:cf:3f:8e:ac:6e:fd:8e:0d:ea:e5:3a:fa:2b:4b:df:7e:42:
fd:94:64:a1:ca:e6:d1:bd:4f:ce:0f:ef:38:ae:d8:ec:58:e8:
cf:d6:7b:0a:cd:83:47:c8:be:25:fa:26:c3:7c:06:54:89:eb:
9f:01:a5:c6:c0:1c:e9:1c:d5:cc:9a:fe:92:c0:80:b1:27:55:
9d:c7:2e:a1:45:d2:8e:71:ff:5f:e8:47:70:52:22:cd:ef:20:
40:5d:b2:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org