Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/PB7me2DgpHse5WZulxE0t7Bvf1A.roa
File: PB7me2DgpHse5WZulxE0t7Bvf1A.roa (raw, json)
Hash identifier: 1IERx1QU9SJt9xhUm80TKPZ2IEdsHqe1OUvnTypy9c8=
Subject key identifier: 3C:1E:E6:7B:60:E0:A4:7B:1E:E5:66:6E:97:11:34:B7:B0:6F:7F:50
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/PB7me2DgpHse5WZulxE0t7Bvf1A.roa
Signing time: Thu 15 Sep 2022 02:50:36 +0000
ROA not before: Thu 15 Sep 2022 02:50:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4781
IP address blocks: 210.63.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C1EE67B60E0A47B1EE5666E971134B7B06F7F50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:af:70:c4:32:28:83:cd:76:48:a6:d0:7f:33:
a5:a9:0c:26:54:63:fb:09:5b:15:00:b3:63:9c:57:
76:3e:d6:5e:24:b9:f1:61:7a:65:b8:d4:1d:54:d2:
b6:d3:84:96:7c:c9:1c:43:27:b1:3b:30:a7:10:29:
48:19:6b:f5:c1:38:f1:13:16:23:bd:2a:3f:96:53:
74:56:cd:6e:8e:85:78:2a:65:fe:f1:71:a6:8c:cd:
fa:0f:ef:48:71:4d:d7:6e:4e:f0:af:f2:0f:8f:e2:
21:88:ab:33:71:d7:f7:81:52:c1:08:b7:e1:66:fb:
17:37:2f:14:a7:02:2a:c6:b7:7d:6c:2a:72:4d:c7:
df:0d:5d:0b:ed:78:c9:ac:06:da:36:02:df:49:90:
07:b0:5a:0e:6f:ac:5d:c9:c3:da:5e:a4:33:c4:da:
28:1a:38:64:73:17:c5:42:15:fa:78:a3:bd:bd:e8:
07:01:a4:2a:23:24:70:af:6d:32:e0:7f:29:c0:64:
f1:fc:38:d3:6b:df:54:4b:f2:e8:54:49:3c:b4:14:
5d:8a:16:a4:c3:59:8f:5b:3e:ae:60:70:4d:c7:7a:
f1:42:e5:81:91:ed:a8:e0:9a:5c:aa:fe:7b:69:83:
5e:28:e0:d6:bf:c2:81:d2:24:72:b6:0d:ff:f9:b8:
b2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1E:E6:7B:60:E0:A4:7B:1E:E5:66:6E:97:11:34:B7:B0:6F:7F:50
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/PB7me2DgpHse5WZulxE0t7Bvf1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.100.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ee:47:85:c0:d4:04:14:ef:59:a9:d5:27:8f:52:fc:ff:fd:
09:a1:82:60:b9:2b:45:6b:f6:1d:58:4a:8a:36:e6:85:f0:3c:
6c:3e:81:68:30:3b:35:7b:23:74:21:0b:d3:fc:76:94:88:31:
41:a2:b2:51:be:b2:41:fb:06:d8:c8:3a:44:30:4f:54:e3:06:
58:b4:1f:ad:fa:a1:ea:43:90:c5:be:49:0e:bc:d5:7d:de:a1:
e5:15:3a:fd:35:ea:f1:3f:3a:7d:41:d4:b1:ba:df:fe:a5:01:
9f:3a:2e:98:10:95:66:ed:61:a3:bd:c5:37:fe:f1:b7:ac:90:
a3:cc:b7:9d:72:43:4a:23:34:0c:78:c8:b2:5a:9d:1d:86:61:
94:d4:29:56:71:06:28:16:94:b2:3f:16:0f:d0:b0:2f:5c:67:
34:dd:be:d4:5f:9f:be:d7:9f:15:71:e6:e2:23:d1:b9:f2:df:
e1:a6:58:dd:d2:3f:67:f2:7c:3f:e1:3a:12:33:24:0b:84:53:
e3:d3:04:9f:ad:8c:e2:1f:30:ab:07:72:1e:92:c4:c2:0d:90:
9a:a3:32:cb:ee:7d:1c:49:7a:a9:4a:f0:0b:dd:fb:a9:b4:b5:
79:4e:57:20:21:9a:47:2a:31:c4:a5:68:0c:8f:f7:6f:59:98:
1f:32:ae:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org