Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/L7Yeyc6j-bKkEQWRFu7UKq9yHbU.roa
File: L7Yeyc6j-bKkEQWRFu7UKq9yHbU.roa (raw, json)
Hash identifier: vIELrsOg6dnSXq4MIXbJEko5tixuDum7WLAcSHszyAE=
Subject key identifier: 2F:B6:1E:C9:CE:A3:F9:B2:A4:11:05:91:16:EE:D4:2A:AF:72:1D:B5
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0897
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/L7Yeyc6j-bKkEQWRFu7UKq9yHbU.roa
Signing time: Sun 07 Feb 2021 13:00:59 +0000
ROA not before: Sun 07 Feb 2021 13:00:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2199 (0x897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Feb 7 13:00:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2FB61EC9CEA3F9B2A411059116EED42AAF721DB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:60:a9:c6:5c:bd:66:9d:88:4a:b3:68:67:8c:
07:7c:fc:b5:ff:fe:59:93:a5:d4:07:64:5b:47:74:
3f:f9:97:29:f1:11:47:d4:86:e5:f4:5a:e8:3f:3e:
f7:fd:d5:1d:ee:0e:fb:b6:a4:9f:8d:8c:fe:67:e5:
ef:5e:d5:49:99:44:66:74:94:5b:e5:41:df:29:22:
c3:97:89:87:9e:4a:06:4f:c2:6c:cf:6b:6b:da:ba:
cd:e3:12:22:59:30:a8:55:c8:f4:15:d1:f0:e3:0e:
82:3c:31:4a:55:ae:df:57:e2:8f:a6:9d:1e:5c:42:
35:a6:eb:d4:96:0f:df:9a:1a:eb:74:3d:c2:c4:3a:
b7:b7:96:fc:bb:80:9e:fe:7e:ea:6a:2c:f4:e0:d0:
b6:d1:b2:9b:67:b2:ff:9d:0a:02:d0:f4:eb:45:06:
11:6e:0b:9e:bf:1d:aa:9c:66:bd:dd:f7:02:22:bb:
6d:c3:8a:f2:f1:6c:83:17:de:ef:f8:48:c1:a8:ec:
a5:34:52:6a:22:77:8b:df:59:d7:47:b9:d1:54:89:
1e:05:28:2a:dd:25:98:3e:25:ef:9b:fa:1c:fa:7d:
aa:5e:e0:39:28:3e:fb:74:32:da:98:27:f0:c7:fd:
e5:6a:26:7f:61:35:38:b0:27:20:64:26:7d:3f:c2:
21:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B6:1E:C9:CE:A3:F9:B2:A4:11:05:91:16:EE:D4:2A:AF:72:1D:B5
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/L7Yeyc6j-bKkEQWRFu7UKq9yHbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.99.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:86:60:62:96:08:71:5d:33:0e:97:6d:8b:fe:ab:95:88:65:
40:7f:9e:1f:44:78:3b:2b:02:57:83:52:96:38:71:83:5e:5a:
b3:e2:ef:6b:40:0c:1a:d3:d7:fe:40:a3:a2:6c:cf:52:79:92:
cc:fd:36:6d:14:38:36:a1:96:33:dc:21:93:ba:8d:25:50:f7:
94:8e:8f:92:27:0b:13:d3:4b:da:b7:ee:e5:c0:6d:0f:74:d3:
d2:35:af:e3:38:ac:2f:6a:fc:b2:f4:bb:80:3e:40:e2:a9:16:
70:bb:67:f0:6a:61:19:35:58:86:67:8e:0e:03:0a:73:0d:0c:
71:8c:e1:13:92:a1:6b:74:44:b3:6e:94:2a:03:fc:37:fd:dc:
1a:c7:47:59:a4:f0:2e:49:07:f9:8c:d3:56:3b:f1:82:a9:07:
2f:a8:b8:1a:92:a3:ef:79:52:5b:6b:98:95:5c:d6:48:25:ad:
7c:57:d6:b3:3f:96:af:d2:e9:89:eb:05:41:ed:f9:ce:de:dc:
1a:2e:49:a9:45:85:71:c5:94:54:e8:f0:f4:57:42:ca:c2:be:
f1:2d:f7:44:bd:16:18:35:db:b4:d3:2d:55:c4:d3:c2:dc:0d:
e5:88:f0:23:4d:86:38:be:2b:f6:50:b0:e5:fa:f9:c0:b7:41:
01:16:61:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org