Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/gh7Ta10Xe27i2ld-fCTr8lrl4rw.roa
File: gh7Ta10Xe27i2ld-fCTr8lrl4rw.roa (raw, json)
Hash identifier: mLJSu810ffS4aJNkZYco1+ce06RNE22HgxOphMzIRp4=
Subject key identifier: 82:1E:D3:6B:5D:17:7B:6E:E2:DA:57:7E:7C:24:EB:F2:5A:E5:E2:BC
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/gh7Ta10Xe27i2ld-fCTr8lrl4rw.roa
Signing time: Thu 15 Sep 2022 02:50:35 +0000
ROA not before: Thu 15 Sep 2022 02:50:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4781
IP address blocks: 210.63.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=821ED36B5D177B6EE2DA577E7C24EBF25AE5E2BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:7d:4b:0e:13:03:24:3b:59:29:9a:b3:1a:70:
9a:13:2b:90:f8:34:cc:1c:ba:ac:96:ab:c6:25:70:
d0:bc:52:e6:87:fa:8d:ff:fb:94:a2:41:ee:fd:60:
36:26:cc:ad:60:6e:15:a1:90:b0:27:fe:e2:20:b3:
7f:01:98:37:a7:c4:37:5f:19:19:b2:d3:af:8d:e9:
5f:a5:c0:63:79:ad:f7:f7:d5:2a:ca:29:67:ef:47:
4b:04:24:8d:36:91:40:6f:11:8d:f8:0b:d3:ba:20:
db:36:f8:96:b4:b9:2c:96:df:ba:a2:9e:99:55:40:
09:60:f2:13:c8:22:0c:52:16:84:27:26:86:00:c2:
8f:c1:93:24:da:2f:b3:fe:32:b1:38:d2:03:ac:ae:
2b:91:28:9a:11:d3:01:5a:46:f6:c1:cc:a3:e1:df:
34:17:ed:ca:ec:d4:04:08:0c:2d:8e:39:1d:19:82:
c8:54:5d:88:01:4a:eb:af:97:ff:20:65:b1:3f:5b:
7c:9b:c5:40:1b:92:96:aa:b4:dd:8a:89:92:0b:51:
a3:40:37:3d:b1:9e:b3:f2:bf:31:10:66:51:24:6e:
8b:e7:f4:51:d6:b6:c6:7f:1d:fe:31:7b:cf:6d:b7:
7f:4c:f0:e5:bd:a9:3c:05:ef:60:81:e1:7a:c8:c0:
f4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1E:D3:6B:5D:17:7B:6E:E2:DA:57:7E:7C:24:EB:F2:5A:E5:E2:BC
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/gh7Ta10Xe27i2ld-fCTr8lrl4rw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.99.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:62:1f:43:f2:38:30:00:56:3d:af:df:f0:12:a4:0e:a4:6b:
06:8e:ed:37:a9:a4:90:03:f6:ee:ba:4e:c7:b7:9f:c9:69:33:
97:98:b9:16:53:1e:d8:56:34:9f:e2:4e:d6:a8:76:31:ff:fe:
9e:38:d8:b3:10:cb:c1:7f:a9:f0:4d:bb:97:c7:6a:1d:d5:5c:
09:00:22:93:22:5d:ed:40:40:bd:bb:5e:b2:98:28:46:89:29:
53:7c:fe:58:6a:90:6f:79:7d:cb:2f:f8:5e:98:a6:b1:97:7a:
20:e7:1e:19:db:05:cd:95:6b:19:42:79:10:b7:10:d8:45:13:
95:15:65:95:e7:4f:74:09:f1:b5:29:c7:f0:06:49:97:9a:c0:
8f:e0:9d:8b:4e:2c:4e:56:b3:46:f7:63:52:c8:33:b1:ac:27:
67:0f:e0:2a:d2:cc:c8:91:45:45:e4:dc:74:ff:79:b4:65:73:
02:a5:98:e9:25:27:1e:a6:b4:10:cb:cc:43:51:b4:aa:32:a5:
3d:21:bb:03:7d:b1:ee:6a:1d:37:1d:8a:b9:dc:8d:b2:b5:cb:
4e:fd:7d:96:fa:ff:15:98:cc:48:48:5f:89:80:71:3c:a5:8e:
7a:d7:ea:66:3b:f0:7f:04:84:fb:45:8c:87:88:29:7c:40:94:
78:dd:c6:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org