Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/YO2-PP4rDrU8RhSyqO3_6nuzsME.roa
File: YO2-PP4rDrU8RhSyqO3_6nuzsME.roa (raw, json)
Hash identifier: oUaDDOXsPYNkiBj0CgmuwhmS+ebuGPltl01hkT569nQ=
Subject key identifier: 60:ED:BE:3C:FE:2B:0E:B5:3C:46:14:B2:A8:ED:FF:EA:7B:B3:B0:C1
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0745
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/YO2-PP4rDrU8RhSyqO3_6nuzsME.roa
Signing time: Tue 29 Sep 2020 10:00:28 +0000
ROA not before: Tue 29 Sep 2020 10:00:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1861 (0x745)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 10:00:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=60EDBE3CFE2B0EB53C4614B2A8EDFFEA7BB3B0C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8a:2c:ee:e6:81:ae:38:27:85:65:33:d6:0a:
be:54:58:13:38:99:02:db:27:cd:75:d5:0b:04:af:
b5:e6:65:f5:c0:91:a1:dd:f6:81:05:09:e0:43:9e:
a1:a0:23:8a:10:15:7e:66:4f:55:89:be:b7:bd:3c:
0b:67:09:55:73:8b:f9:93:60:00:9e:95:e4:9a:fc:
c2:30:80:48:2a:c1:25:18:77:1c:a8:ba:1c:23:7d:
16:37:26:8f:6f:63:44:ab:63:a8:32:f9:3e:42:7b:
b5:a9:cd:7f:e1:fa:04:16:27:c2:24:17:87:3b:ca:
49:b8:1b:ac:ca:da:dd:3f:5c:28:89:b9:e4:94:59:
97:86:2b:8f:50:7b:94:ab:da:10:24:df:d8:3e:93:
b8:56:d9:b2:4c:5a:2e:29:26:63:f2:0b:fa:54:49:
44:fc:85:98:10:51:41:03:e2:de:c1:07:41:7c:f0:
25:bb:7b:d2:cf:06:15:99:e7:28:cc:bf:6d:ce:d1:
c6:ce:a7:6b:5d:d3:fb:94:4e:0a:54:fc:07:e7:85:
29:11:63:37:6c:2f:36:20:63:41:fd:4c:f0:b3:1a:
51:3a:ab:7e:6d:a7:f8:b2:e3:a9:cf:5f:1d:6b:1d:
cc:c7:47:9c:51:3b:55:3d:4c:3a:ba:23:47:26:38:
6c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:ED:BE:3C:FE:2B:0E:B5:3C:46:14:B2:A8:ED:FF:EA:7B:B3:B0:C1
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/YO2-PP4rDrU8RhSyqO3_6nuzsME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.102.0/24
Signature Algorithm: sha256WithRSAEncryption
74:64:3a:23:6c:05:d7:47:89:60:3f:d8:a7:91:70:f1:f4:07:
a4:2c:73:39:d5:af:7a:b8:69:2d:b9:be:d6:1b:45:d2:0c:77:
b7:ec:83:f9:cd:a8:64:a2:9a:d5:9b:40:ea:d6:bb:e2:90:b9:
c2:47:c2:27:2a:76:36:bd:ae:03:c4:4c:c8:88:6d:3c:a8:96:
2b:34:26:05:11:04:e5:f2:42:8f:53:d6:43:a2:ef:67:d1:68:
5d:ab:bd:40:72:ec:84:62:4d:bf:06:81:8b:20:04:c4:89:0b:
bf:bd:c3:e3:71:12:aa:7f:10:53:c8:41:0e:fb:93:70:14:ed:
9e:1f:1e:ba:e2:3b:b9:0a:b7:ed:3b:b5:51:c9:60:e5:a8:a0:
34:f0:ab:69:bc:96:f0:5a:8e:3d:cb:dc:44:22:b3:1b:b6:51:
b2:2b:61:95:7d:ea:23:0d:b9:ed:a9:06:1a:cc:5b:93:73:d1:
cc:5e:5e:3c:9d:40:80:ae:2c:4f:c2:85:2b:13:ef:f9:2f:83:
d7:8d:a5:9e:b8:5b:2b:34:6c:58:4a:bf:65:50:32:c7:23:53:
12:41:cd:d3:93:a4:53:53:09:81:26:8b:0f:3c:fa:41:00:3d:
16:22:7b:f5:4d:92:b8:cc:39:3a:dd:d4:a8:05:c5:13:1f:35:
a9:49:53:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org