Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/y7HzQt8BsC0nJjHPJGo_5mqeQ1k.roa
File: y7HzQt8BsC0nJjHPJGo_5mqeQ1k.roa (raw, json)
Hash identifier: VLddcf0DFbsqJvRdDG/tG7MbSqv6awj3662PFxpTOQk=
Subject key identifier: CB:B1:F3:42:DF:01:B0:2D:27:26:31:CF:24:6A:3F:E6:6A:9E:43:59
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0746
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/y7HzQt8BsC0nJjHPJGo_5mqeQ1k.roa
Signing time: Tue 29 Sep 2020 10:00:29 +0000
ROA not before: Tue 29 Sep 2020 10:00:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1862 (0x746)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 10:00:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CBB1F342DF01B02D272631CF246A3FE66A9E4359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cb:83:cd:54:2a:0f:ef:0d:34:a1:9c:4e:8c:
cf:91:9a:03:61:fe:23:10:cf:ed:c2:2c:5b:4d:db:
04:d5:4a:7d:4c:1e:2a:32:b1:a8:55:f7:e3:35:cb:
5f:77:18:57:32:34:4a:6c:f8:88:55:88:d4:8a:14:
76:96:24:e9:57:8e:88:5f:28:0a:0a:ae:a1:ff:69:
dd:21:13:81:40:ec:41:a0:14:75:4d:a6:6a:42:67:
c4:fd:a6:fc:51:a7:2b:e8:ef:8b:66:23:05:c3:31:
57:44:fb:d2:28:99:ae:95:22:e6:1e:3a:5d:62:e4:
95:13:80:76:39:54:33:68:52:98:b3:e4:d9:fe:d4:
4e:ce:8f:de:7f:7a:c1:13:97:f3:f2:b2:62:6e:10:
bd:c8:c3:0a:ac:02:8b:98:3b:35:4f:15:06:0d:d9:
18:ec:ba:80:17:c6:66:09:25:9a:16:b1:d8:e3:6c:
de:9e:59:9f:79:2d:97:e7:38:42:12:37:b1:b2:a5:
3c:a5:d2:6b:f9:d2:d6:09:48:c2:13:5b:16:46:8f:
ea:8a:7b:e2:ad:c4:ae:71:b9:7d:d3:cf:ad:5f:6d:
d1:b0:c5:85:b7:0e:47:d7:fe:3b:e1:e0:67:42:00:
24:b0:0d:24:8c:14:8e:ab:9f:6a:aa:89:43:bd:2c:
8e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B1:F3:42:DF:01:B0:2D:27:26:31:CF:24:6A:3F:E6:6A:9E:43:59
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/y7HzQt8BsC0nJjHPJGo_5mqeQ1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.103.0/24
Signature Algorithm: sha256WithRSAEncryption
83:82:b2:04:a6:33:0e:8d:05:ec:9e:62:92:a1:fb:00:c3:15:
24:61:a3:1b:77:e7:f2:fd:e0:37:d9:98:3b:24:1f:81:7e:50:
b5:19:af:a6:bf:c7:b3:bf:ff:2c:7a:e0:b4:02:77:93:e9:0f:
9b:40:36:32:4f:c0:7a:ac:6c:09:0f:7a:96:3f:da:e2:df:f6:
16:78:53:9a:82:8c:1d:4b:86:54:ad:ec:78:86:7c:58:c9:02:
b1:65:ad:43:d7:d3:d0:f4:1b:91:75:f6:e0:6a:e3:32:f7:3f:
ef:b3:b7:cb:df:aa:62:55:33:13:30:b7:13:9f:8f:50:32:af:
9c:99:75:56:5f:f2:3c:d6:e8:f6:44:11:dc:1a:e4:8e:0c:46:
af:d3:92:c1:53:df:90:98:82:3b:c3:b6:12:23:3f:b3:aa:84:
83:e4:8d:bd:1a:de:18:96:38:99:a1:11:c2:6e:0b:60:86:4e:
20:cc:fb:f3:27:8a:7a:fe:f9:f5:a6:78:23:9e:4c:e0:90:46:
05:91:90:4f:ad:0d:59:75:c7:8b:0e:89:c0:64:84:c2:d4:7a:
5a:14:bb:37:9f:89:ce:57:ad:5e:94:53:28:8b:b5:4f:9e:0d:
7d:01:5b:37:bd:46:b5:80:3f:21:82:48:7c:e5:55:a5:6c:80:
ca:e0:a0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org