Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/AUQXZTBj9E5FQPUCo3XBQtY64bk.roa
File: AUQXZTBj9E5FQPUCo3XBQtY64bk.roa (raw, json)
Hash identifier: nmhPCKj/kaRI9QGpJVlw4g+9mKUbSjaMW+HeISpKMy0=
Subject key identifier: 01:44:17:65:30:63:F4:4E:45:40:F5:02:A3:75:C1:42:D6:3A:E1:B9
Certificate issuer: /CN=FB4739A5E61A639F566FDE0FDB41208BA3F69BF1
Certificate serial: 08AB
Authority key identifier: FB:47:39:A5:E6:1A:63:9F:56:6F:DE:0F:DB:41:20:8B:A3:F6:9B:F1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-0c5peYaY59Wb94P20Egi6P2m_E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/AUQXZTBj9E5FQPUCo3XBQtY64bk.roa
Signing time: Sun 07 Feb 2021 12:38:16 +0000
ROA not before: Sun 07 Feb 2021 12:38:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18045
IP address blocks: 211.76.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB4739A5E61A639F566FDE0FDB41208BA3F69BF1
Validity
Not Before: Feb 7 12:38:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=014417653063F44E4540F502A375C142D63AE1B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7e:6a:41:b7:b6:27:4d:fa:ad:d2:e4:ab:e6:
09:53:f9:e4:c0:f7:dc:5b:22:1d:43:f1:e6:d1:00:
b2:ed:c2:7c:73:ac:cc:9c:58:52:f1:6b:79:a9:f7:
cc:ab:11:b1:1e:dd:e8:f5:e9:29:86:62:a7:e6:39:
a3:18:08:5c:36:61:4d:8d:de:73:fc:c8:8c:fe:b8:
42:82:f5:5a:93:c8:4d:70:d2:fd:c9:a6:88:86:25:
42:1d:98:96:d2:05:a2:fd:93:ca:e4:03:8c:c9:3a:
df:7a:60:63:f2:c0:d9:c4:eb:7d:16:dd:91:99:78:
fe:9d:d8:1b:db:b0:24:96:6b:34:38:59:41:01:29:
d3:8c:ad:8d:94:66:b8:59:d0:af:54:c2:69:2a:7c:
bd:c9:54:1c:96:f7:c4:18:09:59:f0:04:74:de:79:
a4:d9:52:81:cd:49:d8:ef:c4:dd:ac:86:ab:d2:50:
bc:8c:32:49:d9:c3:7f:e9:7b:5a:5a:ca:c4:40:4d:
29:00:d8:48:a7:b1:0b:c9:dd:a1:51:fc:ca:b2:a8:
56:88:ed:41:e4:31:d2:93:5c:bd:62:9d:ce:82:b5:
9b:b3:64:24:49:ae:9c:e6:81:b4:9c:db:2a:89:9b:
e4:2c:63:3e:67:42:fd:dc:68:2c:b8:79:12:95:50:
e3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:44:17:65:30:63:F4:4E:45:40:F5:02:A3:75:C1:42:D6:3A:E1:B9
X509v3 Authority Key Identifier:
keyid:FB:47:39:A5:E6:1A:63:9F:56:6F:DE:0F:DB:41:20:8B:A3:F6:9B:F1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/-0c5peYaY59Wb94P20Egi6P2m_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-0c5peYaY59Wb94P20Egi6P2m_E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/AUQXZTBj9E5FQPUCo3XBQtY64bk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.144.0/20
Signature Algorithm: sha256WithRSAEncryption
d7:23:37:81:08:35:f5:02:33:5f:7a:57:67:70:25:00:cc:a7:
55:f0:f3:df:d0:04:6e:00:f2:2c:76:ed:be:f0:f9:ca:73:46:
c8:b4:da:a1:c9:67:48:9e:c9:1e:5d:2c:a6:41:06:66:f0:90:
2c:af:eb:0e:9f:48:ec:30:e4:12:74:76:fe:66:76:52:5f:2d:
d1:18:d3:4d:aa:53:48:08:73:7d:49:13:f1:1d:2c:c4:57:b6:
bc:e9:31:7f:cb:10:98:3f:51:fe:85:83:48:f4:a7:a4:31:98:
6e:ce:24:1f:17:ef:d7:26:70:eb:72:59:3f:14:4d:04:7b:b5:
f1:a7:15:a9:93:2f:29:76:76:af:e7:ac:e3:9d:dc:cc:57:5b:
38:bc:aa:07:63:1f:50:0e:57:53:c4:b3:47:6e:97:c4:ea:9f:
51:74:65:18:c2:54:64:7b:c7:a2:10:83:0e:6f:50:6f:a6:88:
24:2e:d2:f5:9f:8d:a1:b8:15:fb:b1:5e:ed:86:1d:c1:5f:28:
4a:9a:40:28:16:2e:ef:46:a9:9e:04:ae:a0:d8:ca:ec:dc:7e:
e2:02:68:8e:13:28:75:23:af:1c:37:d7:27:cd:a8:4c:11:1e:
2e:56:8a:1a:ba:0d:a2:09:53:29:b6:6d:0b:54:7f:ee:28:bf:
f4:70:ec:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org