Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/M1XO32nm6K3P9Gfzh-maYeeWd64.roa
File: M1XO32nm6K3P9Gfzh-maYeeWd64.roa (raw, json)
Hash identifier: Gsv5dvBpL9OgqM3aXuSmZFZvLr6DMBdlYc5khm/gCpM=
Subject key identifier: 33:55:CE:DF:69:E6:E8:AD:CF:F4:67:F3:87:E9:9A:61:E7:96:77:AE
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0893
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/M1XO32nm6K3P9Gfzh-maYeeWd64.roa
Signing time: Sun 07 Feb 2021 13:00:56 +0000
ROA not before: Sun 07 Feb 2021 13:00:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2195 (0x893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Feb 7 13:00:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3355CEDF69E6E8ADCFF467F387E99A61E79677AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:95:13:b3:e1:ed:be:7d:f6:e1:59:31:e9:0b:
3c:d9:fb:52:9e:6a:55:52:e7:ef:d9:7f:60:93:7f:
72:69:0b:26:18:79:c1:cb:92:03:e0:09:0f:f9:7c:
a2:aa:4b:59:c5:32:e4:f0:21:c5:5c:dc:f9:f5:6b:
e2:57:31:39:07:fa:d4:dc:a3:82:8f:2b:d3:e6:76:
26:2c:e3:9e:77:5e:52:a0:87:c5:d9:e1:2a:99:22:
1e:eb:6b:a0:4c:83:e8:e9:23:da:a9:9e:92:31:c8:
37:59:5a:04:9b:26:bd:b1:23:e5:cd:4b:5d:e2:36:
4e:e4:d9:56:f8:5c:19:40:7b:97:e8:d1:d9:1a:cf:
ca:11:fd:bf:01:a3:0e:2b:25:2d:33:95:63:b1:92:
49:45:d6:64:eb:df:e2:d0:c6:b0:cb:7c:0f:0a:8d:
9a:51:cc:82:f8:0e:c3:e4:0c:98:dc:67:6c:5f:c4:
27:32:4a:9c:61:f1:26:de:dd:5e:4f:a9:6c:ed:e4:
94:1f:0c:47:0c:ee:9c:cb:d4:52:04:f1:a5:c6:db:
eb:53:42:82:94:02:1d:fe:c1:9b:0f:68:6f:62:1e:
6b:4e:96:4b:bc:8f:19:e8:33:71:17:39:7e:78:02:
6e:b2:87:28:9d:bf:fe:01:69:0a:57:f0:c6:47:3f:
d5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:55:CE:DF:69:E6:E8:AD:CF:F4:67:F3:87:E9:9A:61:E7:96:77:AE
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/M1XO32nm6K3P9Gfzh-maYeeWd64.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.97.0/24
Signature Algorithm: sha256WithRSAEncryption
69:5d:c2:35:2d:fd:12:42:80:38:f2:84:86:67:a6:86:41:b0:
3e:5e:07:0a:90:50:e0:62:64:c2:b3:c4:11:0c:bf:69:a7:a0:
74:69:82:90:54:15:d1:1b:5f:cd:3e:1c:60:ec:ce:8f:d5:59:
9b:d8:ec:2a:95:45:1f:74:df:02:33:75:0f:08:77:f1:61:4c:
d9:29:b6:74:18:97:c1:7e:6a:ba:f8:b3:e1:b1:a1:62:f8:75:
6c:3d:5e:6a:d5:29:3e:c2:75:8f:81:ec:04:53:8e:bf:b3:a5:
e1:a4:1f:b9:ce:b3:67:1e:64:31:31:ba:82:b3:3a:82:0a:b3:
01:89:1e:ec:6b:8d:1a:ae:cd:72:b0:ec:f7:06:8b:f1:d4:93:
67:a0:f7:b4:a7:72:ee:63:de:79:b1:19:14:1d:2c:ac:d0:ed:
8e:45:ae:11:ff:4f:dd:4a:88:5c:f5:3e:4f:f7:1a:99:76:5f:
c0:16:b7:4f:4e:57:19:f6:d3:9b:c2:ff:d6:e7:fe:da:3f:c6:
77:9b:15:1f:62:b5:76:52:a3:6f:6f:33:1d:7f:86:fb:df:60:
b4:f0:a1:3e:fb:94:7b:f3:28:be:ae:34:b6:5d:81:35:01:19:
e8:e7:19:2c:c3:05:41:83:d5:e8:a1:8c:74:aa:b1:4f:52:58:
79:8e:0c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org