Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/wHINBtDSUpxyKEkBVtFeU95FC74.roa
File: wHINBtDSUpxyKEkBVtFeU95FC74.roa (raw, json)
Hash identifier: CnRYvmaw7FPdhr9mQdF7Pi0d3VvB3XSkRYl/pw2jvo0=
Subject key identifier: C0:72:0D:06:D0:D2:52:9C:72:28:49:01:56:D1:5E:53:DE:45:0B:BE
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0941
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/wHINBtDSUpxyKEkBVtFeU95FC74.roa
Signing time: Wed 29 Sep 2021 02:52:56 +0000
ROA not before: Wed 29 Sep 2021 02:52:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4781
IP address blocks: 210.63.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2369 (0x941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C0720D06D0D2529C7228490156D15E53DE450BBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2b:f6:0d:cb:e3:12:82:19:58:9a:84:08:4c:
21:f8:1f:4d:cd:ad:d2:f3:4b:c1:f8:0c:be:30:92:
0f:36:8a:31:e5:28:fc:7a:c0:40:89:22:58:ac:d1:
57:8f:7b:c7:67:c8:00:59:1b:8e:42:72:08:1f:bc:
3a:c6:39:05:24:63:95:e3:40:b4:06:0c:7b:62:3a:
fe:46:de:7f:6f:51:10:cc:66:22:fb:79:d8:a2:2e:
bb:dd:ba:3d:85:a9:66:b2:a5:a8:a4:28:e2:37:16:
4b:d6:fa:12:df:31:f4:57:96:86:c1:a8:9c:2d:33:
9c:08:d6:0c:9f:cf:7c:41:2f:ee:55:c6:df:c1:97:
2b:da:ce:d1:54:a8:ec:75:d4:3c:ea:62:07:58:00:
8e:b2:4d:bb:b5:e0:cc:c3:6b:55:2d:de:c8:dc:c4:
bc:ff:7a:85:d9:18:8b:42:8e:83:99:37:f9:7b:1a:
36:1a:81:e2:b3:c6:46:b3:b2:44:ec:0b:22:6b:67:
b0:e4:73:eb:20:8e:53:17:96:10:7d:72:80:52:fa:
4e:35:62:6f:fc:a1:6d:7d:a0:db:ec:b7:bd:75:89:
12:e2:45:e9:05:6e:cd:ee:89:a5:ff:ad:82:28:f1:
c1:54:5b:2e:6f:5b:51:0e:31:5c:1f:30:49:ca:fd:
0b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:72:0D:06:D0:D2:52:9C:72:28:49:01:56:D1:5E:53:DE:45:0B:BE
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/wHINBtDSUpxyKEkBVtFeU95FC74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.99.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:be:79:9b:15:ac:6e:ad:4f:dc:cd:07:32:c1:fa:39:71:92:
7e:0a:da:5b:7b:cf:84:1a:3c:30:ab:00:32:99:36:0c:18:af:
0e:75:04:36:c7:7a:14:b6:aa:04:ce:51:c6:67:ba:af:73:6a:
07:c9:85:12:d9:89:6c:76:b2:e6:64:7b:08:02:60:29:13:b3:
6a:d7:f4:ba:64:69:57:26:4b:5b:a5:0b:89:1c:43:8f:42:fc:
2b:47:ca:b1:de:9d:e1:c1:e2:97:e0:53:e4:ab:1d:cb:e5:27:
29:d9:3e:49:72:2f:08:a1:57:05:0e:5e:dd:45:fa:e7:2c:65:
0f:84:42:8f:de:aa:e1:c2:e2:75:af:b0:d6:21:14:44:11:dd:
af:1f:a7:52:90:49:f0:90:61:09:55:4b:db:79:4a:86:e6:87:
5e:7c:37:33:05:18:26:68:05:2b:9c:18:52:de:b3:22:c2:08:
6d:92:8e:54:e7:1e:41:74:94:66:28:01:b6:84:f7:87:72:0b:
95:d3:90:4e:90:df:63:54:64:20:86:fd:52:a3:a0:43:c6:5e:
3a:7c:c0:88:85:61:3e:85:f8:55:94:6a:30:ea:aa:8a:47:d8:
4e:6d:16:d0:0d:76:cf:9f:d5:5f:2b:e0:52:fd:ec:06:d4:77:
4e:7f:19:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org