Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/kPnbj37IOZSfeoK1MaUpFZW7xD4.roa
File: kPnbj37IOZSfeoK1MaUpFZW7xD4.roa (raw, json)
Hash identifier: 6TlFFnizi0Oz+6taD4tGjaT+hi6LIvraaVY4YgAx3RM=
Subject key identifier: 90:F9:DB:8F:7E:C8:39:94:9F:7A:82:B5:31:A5:29:15:95:BB:C4:3E
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 075E
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/kPnbj37IOZSfeoK1MaUpFZW7xD4.roa
Signing time: Tue 29 Sep 2020 10:05:27 +0000
ROA not before: Tue 29 Sep 2020 10:05:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131593
IP address blocks: 43.251.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1886 (0x75e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Sep 29 10:05:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=90F9DB8F7EC839949F7A82B531A5291595BBC43E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:17:0b:4e:01:e0:70:5b:1e:ce:3c:1f:38:
6a:80:cb:dd:81:52:49:1b:56:9b:00:e6:49:96:34:
c9:32:90:a1:aa:0a:61:ec:ad:79:9c:10:fe:dc:5a:
b2:11:16:f1:24:00:31:b0:fe:d8:79:38:92:e3:65:
00:c5:68:c5:1f:33:42:c9:b9:18:93:6d:53:4a:f2:
d9:05:87:25:8f:01:b6:d0:35:b8:47:12:de:bf:8d:
48:0c:91:18:bd:f7:b7:37:23:92:2d:4b:65:28:a7:
f3:3d:24:3c:59:6f:46:ef:29:9f:a3:cd:f5:1e:15:
26:71:d8:72:43:22:8d:10:ad:7e:8a:1c:51:33:ce:
f2:28:96:7a:01:5a:cc:37:76:9c:53:d6:4e:5a:1f:
16:16:5c:de:d0:68:dd:6b:84:5a:98:1b:6d:46:5d:
25:e9:e1:da:da:60:d2:98:bc:6f:a0:db:ee:2f:64:
d4:2a:b8:93:a7:ff:7f:97:d8:7d:fa:04:7e:42:23:
31:90:02:6b:bd:94:8e:3c:1a:b5:d8:96:9a:a8:67:
be:2a:18:b9:df:7f:15:78:89:00:6b:c9:9a:f5:dc:
73:53:76:d2:8d:9f:bb:5a:b9:0d:c3:57:a4:14:cc:
9d:2a:04:2f:3a:3a:98:de:0c:bd:4e:30:d3:28:63:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F9:DB:8F:7E:C8:39:94:9F:7A:82:B5:31:A5:29:15:95:BB:C4:3E
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/kPnbj37IOZSfeoK1MaUpFZW7xD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.60.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:c3:d3:6c:f6:c5:fd:76:36:ed:28:9d:e9:85:26:28:cc:c1:
f3:3b:f3:40:aa:9a:3c:cb:57:6f:66:31:ff:f3:f0:72:97:e8:
32:5d:65:1a:c5:31:99:cb:d4:ac:ad:d1:8a:4a:7b:24:3a:4c:
93:fa:75:88:22:92:4f:c9:a1:ae:a1:3c:03:bc:08:b4:42:ff:
6f:bc:55:3d:66:a2:e2:bb:8b:c4:f1:a7:79:83:2d:ca:05:99:
4e:1b:70:c0:ae:59:13:13:7e:f8:26:ed:c0:fc:81:56:8f:b2:
5a:b2:93:e8:2c:40:ed:ba:7e:2e:60:70:4d:63:c3:29:0d:28:
ad:ce:3b:05:88:eb:82:23:87:74:94:54:2c:2f:d9:6c:9e:9d:
7b:75:ba:7a:1a:00:6b:a2:20:66:4f:67:93:aa:ac:1a:30:12:
80:58:c1:e1:67:2b:19:d0:b0:7d:72:6b:ed:99:5c:3f:79:2d:
67:b4:82:98:ce:ea:e6:a6:1c:65:08:8a:2b:34:05:4a:de:7d:
42:5b:6b:24:f8:2e:94:a2:6c:c5:8d:25:40:1e:86:ad:9e:65:
a4:e5:24:02:23:5b:5d:c3:54:64:51:0a:27:e3:c9:09:a8:58:
a3:f3:c8:d4:89:69:a9:8f:4f:f3:c6:ca:7c:cd:d8:55:79:db:
da:a1:57:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org