Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/jYqv3P7-s7F-9fcPZubYJpE7pw4.roa
File: jYqv3P7-s7F-9fcPZubYJpE7pw4.roa (raw, json)
Hash identifier: T62cTmoxXN1kQYRyTBIpZSVpjO3eOcZ3Muq7w1sx3bc=
Subject key identifier: 8D:8A:AF:DC:FE:FE:B3:B1:7E:F5:F7:0F:66:E6:D8:26:91:3B:A7:0E
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0942
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/jYqv3P7-s7F-9fcPZubYJpE7pw4.roa
Signing time: Wed 29 Sep 2021 02:52:57 +0000
ROA not before: Wed 29 Sep 2021 02:52:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4781
IP address blocks: 210.63.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2370 (0x942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8D8AAFDCFEFEB3B17EF5F70F66E6D826913BA70E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7b:b1:a8:63:9b:c8:5b:e2:5c:ae:ab:3c:2a:
5c:84:d0:40:74:87:df:e3:0c:58:8b:bb:6b:d3:3b:
28:21:7c:0c:f3:05:6c:30:c0:29:6a:41:76:3e:a7:
33:0c:06:38:1d:72:e9:60:48:c6:2a:c9:78:df:e6:
22:ec:da:77:5e:c0:42:5d:1c:70:fd:dd:d5:d5:3a:
4a:1a:eb:97:96:8f:78:6c:74:57:94:85:9c:8b:45:
c2:1a:cb:41:25:39:0c:a7:3c:bf:db:e6:04:63:50:
5b:35:80:47:a6:c4:9a:a1:87:9e:ab:47:fb:19:6a:
c3:f5:2f:33:55:52:c1:e7:df:84:f7:0c:68:5c:d0:
7c:4b:6f:bc:dc:e9:be:da:5b:8e:b9:97:e7:86:c7:
aa:a5:c2:2e:08:06:8e:a3:b9:7c:27:e8:e0:70:d7:
c6:28:22:89:d9:48:a0:0d:67:02:06:30:52:2e:02:
55:34:0d:8e:30:99:a7:04:5b:7a:27:b7:f8:cb:c9:
56:a1:90:92:85:94:0b:14:cd:09:73:dc:09:15:a4:
16:1c:b2:a5:79:a0:04:5d:ff:ba:8b:5e:72:82:29:
a4:ba:51:16:8b:75:4f:3e:ff:fc:cc:1e:88:f2:c0:
e5:d6:61:c1:bd:58:65:c5:a0:d8:28:0c:90:c8:a4:
a6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:8A:AF:DC:FE:FE:B3:B1:7E:F5:F7:0F:66:E6:D8:26:91:3B:A7:0E
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/jYqv3P7-s7F-9fcPZubYJpE7pw4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.98.0/24
Signature Algorithm: sha256WithRSAEncryption
57:3b:52:09:ce:fb:f9:8c:64:7b:32:aa:d5:0e:ea:f0:c2:30:
a1:62:e3:95:2e:58:0a:3b:69:15:b2:bf:bd:85:f3:52:38:6d:
00:51:3e:f3:97:3d:48:2a:20:42:1f:3f:9b:a5:11:57:2a:27:
78:0f:42:cb:a2:86:71:17:fa:de:09:c8:07:66:e3:2f:0f:77:
f3:85:d2:f1:7e:41:78:7b:30:69:47:6e:d7:d9:77:ed:9b:31:
4c:40:0e:60:aa:28:6d:16:5e:75:b5:4b:0d:d5:2f:49:af:ea:
78:5e:c3:dc:67:cf:67:eb:91:0c:56:ce:c2:cf:e3:9a:69:08:
b0:33:e5:46:1c:f4:eb:dc:30:b3:83:27:52:e7:2e:55:98:52:
85:dd:4f:33:c3:87:0d:42:0b:b6:7a:9a:4d:05:71:c9:9c:0f:
82:4e:81:71:c2:05:c5:0a:d8:3a:40:be:42:80:2c:54:99:74:
32:10:8f:28:23:1f:20:6e:64:55:42:35:e3:90:a2:44:31:da:
81:92:84:de:8f:bd:ff:15:e1:cb:de:03:b5:72:0f:eb:98:cb:
b5:ad:1d:8e:a8:35:e2:3e:0b:d4:b2:6f:72:c9:85:22:ac:fc:
78:ac:21:09:c0:ac:36:6b:d3:b2:60:fc:7f:21:68:d1:9f:c8:
1c:90:ca:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org