Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/s7PHN9BE2ah_CK6WUGYRaK5wv98.roa
File: s7PHN9BE2ah_CK6WUGYRaK5wv98.roa (raw, json)
Hash identifier: XrJOxbVxodEL2ix2BDyxTvujrW0ZFXqs+4TO+MJXOBw=
Subject key identifier: B3:B3:C7:37:D0:44:D9:A8:7F:08:AE:96:50:66:11:68:AE:70:BF:DF
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 08B8
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/s7PHN9BE2ah_CK6WUGYRaK5wv98.roa
Signing time: Sun 07 Feb 2021 12:48:16 +0000
ROA not before: Sun 07 Feb 2021 12:48:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131593
IP address blocks: 43.251.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2232 (0x8b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Feb 7 12:48:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B3B3C737D044D9A87F08AE9650661168AE70BFDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f5:fa:90:33:d9:1a:9f:e4:6c:ef:3f:74:9d:
8a:ea:4c:5d:fd:5b:9f:ed:84:b6:9c:bb:b5:f1:96:
2e:de:35:7c:98:28:14:31:3d:4e:81:7a:b4:69:f2:
d1:27:d2:06:ef:bb:0e:b3:7c:c3:71:9c:8b:aa:fc:
f1:3a:1f:00:9e:eb:bb:9b:32:9c:15:e5:cd:09:6b:
18:3a:7d:a7:e9:73:f2:d7:26:19:0c:64:b2:6c:83:
df:68:1f:58:8d:51:a7:21:0b:df:3b:c6:86:85:9b:
5c:76:6c:48:13:e0:e5:9a:71:0a:79:88:87:9e:12:
0f:4b:8d:c6:75:40:26:02:0b:f7:be:7a:a4:67:b9:
4b:8b:a0:dd:0e:65:58:27:8f:07:db:58:c4:f7:0c:
00:3e:61:23:b2:dd:1a:d0:42:af:38:92:48:a1:28:
64:21:7f:8e:c1:d1:b0:2c:31:cb:f1:23:ee:2b:b4:
14:4d:c3:a6:e3:c4:54:e2:d8:f7:b9:14:00:44:8a:
a6:b7:8b:2b:91:c8:32:84:85:b9:66:97:f3:a7:ac:
72:f6:2d:b0:f3:1d:3a:a1:9d:88:f8:64:2f:ee:67:
27:62:8b:72:3e:37:c3:74:87:59:37:6e:da:7c:6b:
15:63:2f:cb:be:28:b6:bc:4e:27:10:f3:89:52:8a:
92:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B3:C7:37:D0:44:D9:A8:7F:08:AE:96:50:66:11:68:AE:70:BF:DF
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/s7PHN9BE2ah_CK6WUGYRaK5wv98.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.60.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:1e:78:27:f8:59:06:fb:03:85:d5:b4:d5:b7:e0:62:56:30:
17:6f:a8:39:82:84:7c:7d:14:73:95:af:29:57:78:19:3a:75:
de:80:47:07:7a:ca:7a:e0:b7:2e:13:56:34:32:0b:de:82:cd:
1e:9a:a1:2f:5b:c5:cd:c0:86:68:09:4a:12:1f:fa:d8:69:a5:
1c:bc:d4:2e:65:96:9d:35:1e:75:87:49:03:ee:cb:3a:0e:2e:
9f:a5:cb:82:22:0a:9e:46:54:dd:0d:ce:ac:d6:1a:e0:8e:e9:
11:a4:9c:fb:a0:4c:c5:05:c6:26:05:b1:70:6b:87:83:e6:22:
9b:12:9c:15:10:39:cc:9e:cd:71:93:97:37:7a:e1:5d:1b:55:
7a:85:ad:cd:f5:31:3f:49:d0:29:9c:87:37:7e:b7:9c:de:47:
68:d5:14:cb:02:3e:a6:f8:9c:74:eb:c2:23:6c:08:f6:ae:81:
16:b5:f5:7f:fb:9f:c2:ec:00:df:b5:f4:5e:23:e7:dc:d0:0f:
97:44:c8:69:4a:aa:ff:72:fb:28:26:1d:e9:96:f2:5e:c6:ae:
5f:7a:c4:46:96:c9:22:2e:db:15:8e:04:45:11:a0:c6:05:7f:
22:4f:db:ca:43:94:e7:52:47:a7:fe:9d:ea:cc:ef:f6:a6:83:
97:8a:eb:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org