Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/htvJJvZ9kK0TVspfH1xV83saPs8.roa
File: htvJJvZ9kK0TVspfH1xV83saPs8.roa (raw, json)
Hash identifier: In0WfIYQtWyMKSFK/3m9ZFlm8MKvMoyTk5GVfMFCyWc=
Subject key identifier: 86:DB:C9:26:F6:7D:90:AD:13:56:CA:5F:1F:5C:55:F3:7B:1A:3E:CF
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/htvJJvZ9kK0TVspfH1xV83saPs8.roa
Signing time: Thu 15 Sep 2022 02:50:35 +0000
ROA not before: Thu 15 Sep 2022 02:50:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4781
IP address blocks: 210.63.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=86DBC926F67D90AD1356CA5F1F5C55F37B1A3ECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:60:05:d7:ae:a4:bb:86:ad:51:4f:80:41:f6:
28:d6:5b:08:5d:fc:e9:9b:a3:8a:dd:be:28:79:c9:
b9:c7:b7:87:d2:fa:39:f9:1b:b4:29:43:58:73:23:
25:49:57:cb:24:8e:d2:22:ac:6e:35:d7:27:53:50:
c5:20:88:77:76:2c:6a:b5:bd:01:fd:f7:23:2e:15:
34:31:a0:c9:8b:01:37:21:c7:71:ae:d6:c4:b3:22:
67:ac:c2:c8:08:14:c2:8b:8a:15:0d:57:de:a8:c5:
51:00:14:15:0b:3d:05:c1:52:2b:c2:fc:de:0e:95:
1b:fe:ce:01:c3:ab:da:f4:02:41:d6:c3:92:3f:a3:
34:3a:76:90:19:a6:57:54:b2:35:73:4c:19:b6:44:
b5:01:3c:c1:b0:46:53:0e:5c:13:73:34:a1:0b:7d:
61:cf:07:17:6d:bf:90:4f:80:75:c0:57:aa:de:75:
f6:31:e3:07:c2:71:8d:e6:6d:62:64:20:8d:6b:f0:
47:b3:e6:37:67:ef:be:fd:dd:5e:ee:67:5c:1e:c1:
1a:b5:d3:17:0e:f2:c2:ba:68:41:76:39:4d:2b:bd:
f0:19:64:e4:37:a2:2d:2a:eb:67:2e:db:08:ce:8e:
04:70:ff:5d:63:78:1a:7e:cd:da:32:18:57:b7:5b:
c9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DB:C9:26:F6:7D:90:AD:13:56:CA:5F:1F:5C:55:F3:7B:1A:3E:CF
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/htvJJvZ9kK0TVspfH1xV83saPs8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.101.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0f:14:8c:dd:d6:24:ed:62:2c:61:e2:4b:65:27:e6:a3:57:
63:79:49:72:05:77:fe:ec:24:bf:dd:6a:42:dd:8a:13:2e:45:
92:10:7c:1c:0e:0d:b4:7f:1e:97:d7:f3:d0:d0:0f:47:63:c8:
29:ac:7c:1c:c3:c1:f7:e2:46:25:0a:b9:5a:5f:22:3b:7d:2b:
f1:c5:72:fb:d6:8b:02:b9:cc:ce:6f:5d:1c:75:bd:bb:0d:f4:
87:ba:66:61:5e:ee:a2:a4:50:4d:af:c2:00:2d:f4:8a:36:d3:
30:4b:16:d2:2f:67:97:4f:a6:04:4f:fd:dc:31:be:52:73:d8:
7a:1e:ee:af:c9:e2:a5:00:a9:0a:fa:a7:bd:c5:bc:4f:da:e3:
ff:cd:a2:1f:ca:49:ae:29:24:00:31:3c:12:d7:ff:2b:dd:a9:
5a:e2:c7:29:ec:d8:e0:78:52:68:71:ce:9a:70:21:da:e6:c8:
e4:3f:5f:ad:a5:69:37:23:75:9e:07:5d:9e:63:7f:5c:a7:2a:
51:c2:d7:5e:59:f6:b7:71:67:c9:69:f5:32:11:55:78:99:a6:
04:cb:80:10:ce:1e:67:34:2a:0c:2d:a7:ae:4d:d3:aa:59:b4:
b2:2d:b6:a1:2d:c8:14:b2:8c:fc:13:ff:14:7a:e6:ad:ce:35:
2f:3a:82:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org