Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/gOCfixRJMnC8urxjIlgKdi6mEmg.roa
File: gOCfixRJMnC8urxjIlgKdi6mEmg.roa (raw, json)
Hash identifier: XCeDZfaMqkmK9ffRpc+mifqRU5XFYpwZiFlBvh243bk=
Subject key identifier: 80:E0:9F:8B:14:49:32:70:BC:BA:BC:63:22:58:0A:76:2E:A6:12:68
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/gOCfixRJMnC8urxjIlgKdi6mEmg.roa
Signing time: Thu 15 Sep 2022 02:50:35 +0000
ROA not before: Thu 15 Sep 2022 02:50:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17420
IP address blocks: 210.241.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=80E09F8B14493270BCBABC6322580A762EA61268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1f:73:91:26:2e:ab:fe:a0:9a:86:3b:40:9b:
38:d2:4c:55:1d:16:87:1c:ce:5c:c7:6f:a6:cd:82:
23:54:86:b4:fd:3e:67:e0:6b:36:ad:a9:1f:b7:89:
e0:3e:4d:47:9e:75:d0:5e:9b:c9:6e:45:e3:38:66:
c1:48:cf:24:9c:19:69:8b:fa:37:d7:6e:83:59:8c:
56:9f:9a:26:05:b1:17:e0:66:67:d2:84:29:a4:28:
a7:e4:64:7b:d7:ad:c4:b9:6e:0d:ab:5c:6e:9c:bf:
32:9c:97:ce:7d:1b:b4:e9:ff:ec:3c:9c:04:c6:75:
ed:09:99:43:8c:80:20:ef:c2:95:6b:1d:42:5e:28:
7a:fc:9e:7c:24:91:12:ed:ae:fc:df:2b:fb:57:96:
17:ac:06:61:5f:1f:97:ec:44:a0:0a:22:04:1d:42:
ff:2a:a9:05:7f:bc:a5:a6:08:bc:ed:ea:2d:ff:cd:
e5:35:b2:35:9c:4f:63:f7:55:59:3f:0c:fe:1d:50:
78:28:0f:4d:66:96:96:39:aa:13:ad:ac:4a:12:ee:
77:e6:bb:d3:99:d0:d7:07:fb:12:e1:f2:36:fb:64:
8f:40:14:9e:91:96:98:ab:48:18:36:33:7b:91:50:
b3:08:a5:99:26:7b:b9:1d:23:3b:f3:11:5d:79:ba:
70:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E0:9F:8B:14:49:32:70:BC:BA:BC:63:22:58:0A:76:2E:A6:12:68
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/gOCfixRJMnC8urxjIlgKdi6mEmg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.128.0/19
Signature Algorithm: sha256WithRSAEncryption
99:4c:40:df:93:bd:3b:ca:f4:48:53:a3:27:ba:7a:bd:29:41:
cc:7b:f1:b2:a9:26:3e:62:fe:d2:89:28:0f:d2:92:cd:d3:d0:
2e:da:04:db:10:09:67:e4:34:54:f7:fb:1f:ef:b6:00:bb:c8:
7f:40:ac:cf:ec:c2:28:0c:93:1b:50:e2:8b:e3:3c:84:4a:e9:
65:89:2c:12:e0:58:66:b1:30:c2:eb:6d:68:99:d2:4c:37:33:
ca:6c:4f:36:7a:38:6e:c4:b4:c2:e8:25:e0:c2:67:3b:5b:c8:
cc:cb:23:a6:ef:7c:41:50:1d:0d:2b:cf:95:e2:ec:39:59:1c:
ac:4a:1d:66:e2:1a:47:97:dd:d4:02:5a:df:a4:dd:49:2d:ee:
47:d6:ec:42:9e:99:96:71:f1:8f:13:4f:b9:b9:d9:61:71:c2:
e1:ef:de:05:27:ea:04:80:dc:f3:df:d6:44:26:c7:f7:d5:77:
97:5f:38:7e:0b:a4:ff:c8:dc:ce:10:ff:ce:b4:45:ff:2c:ac:
f4:ca:1b:69:09:eb:d4:c3:30:7d:d9:4c:35:62:80:87:7b:f2:
3d:af:01:7f:7d:a7:a6:83:6f:b0:55:09:fc:bc:0c:c3:34:07:
f3:ff:1d:f7:ab:2e:ee:f2:fe:73:ba:c1:e3:69:32:20:45:a4:
02:29:1e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org