Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/zxs2imA8OwcoRksDA-2UR_hSLT0.roa
File: zxs2imA8OwcoRksDA-2UR_hSLT0.roa (raw, json)
Hash identifier: S/FblnCIhRdHsaAvi1CC24YQYE+7oNXPf9JNB1dQrTQ=
Subject key identifier: CF:1B:36:8A:60:3C:3B:07:28:46:4B:03:03:ED:94:47:F8:52:2D:3D
Certificate issuer: /CN=FB4739A5E61A639F566FDE0FDB41208BA3F69BF1
Certificate serial: 0949
Authority key identifier: FB:47:39:A5:E6:1A:63:9F:56:6F:DE:0F:DB:41:20:8B:A3:F6:9B:F1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-0c5peYaY59Wb94P20Egi6P2m_E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/zxs2imA8OwcoRksDA-2UR_hSLT0.roa
Signing time: Wed 29 Sep 2021 02:51:40 +0000
ROA not before: Wed 29 Sep 2021 02:51:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18045
IP address blocks: 211.76.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2377 (0x949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB4739A5E61A639F566FDE0FDB41208BA3F69BF1
Validity
Not Before: Sep 29 02:51:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF1B368A603C3B0728464B0303ED9447F8522D3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:80:e1:96:05:10:09:4e:6d:72:c9:2b:c3:49:
d3:54:b2:e3:32:27:19:86:35:32:4b:54:9b:62:83:
dc:e9:4a:2b:88:9d:17:d7:06:64:49:94:39:fd:dc:
45:e4:24:07:bf:e7:56:aa:a5:44:d1:25:f6:be:65:
83:ce:da:32:04:94:6f:ef:fd:12:bd:3c:bb:10:96:
92:62:f4:48:64:0f:2c:14:f3:0e:2a:3d:03:52:44:
7c:67:8a:2d:75:f3:37:e4:24:fe:9c:8c:21:bc:56:
7c:97:12:27:f5:ed:c2:e8:9f:3b:5a:b1:a4:f6:c5:
ef:72:c3:28:38:de:26:0c:46:69:31:39:2d:ec:d0:
fa:cf:4d:ce:b0:f7:27:87:9e:19:2c:31:ba:eb:5f:
c4:b4:b4:09:15:07:37:13:f1:6b:f6:9f:e7:16:95:
53:e7:59:1a:17:fc:b4:3f:c8:6b:1e:0e:f4:ae:1f:
fa:7d:2c:e7:24:e6:4f:7a:da:27:ef:ab:aa:68:05:
37:a7:04:d2:1f:07:f8:11:46:35:a2:f9:72:7f:56:
43:a9:ab:3b:67:d2:c5:a8:13:ab:52:c0:40:22:25:
60:50:45:85:11:17:c5:8d:ff:a4:be:90:a1:f0:a6:
13:ef:5c:22:6f:4b:c2:d1:df:19:ec:9e:2a:b9:1f:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1B:36:8A:60:3C:3B:07:28:46:4B:03:03:ED:94:47:F8:52:2D:3D
X509v3 Authority Key Identifier:
keyid:FB:47:39:A5:E6:1A:63:9F:56:6F:DE:0F:DB:41:20:8B:A3:F6:9B:F1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/-0c5peYaY59Wb94P20Egi6P2m_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-0c5peYaY59Wb94P20Egi6P2m_E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/zxs2imA8OwcoRksDA-2UR_hSLT0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.144.0/20
Signature Algorithm: sha256WithRSAEncryption
17:0e:99:2c:51:b8:7c:a1:21:bc:f4:22:61:d2:4a:8c:5b:6e:
f3:aa:5a:c9:5f:f8:ec:1b:b0:fc:13:ff:78:5c:bb:46:f5:fe:
c7:63:76:8d:05:90:9b:2a:bc:72:d6:04:cb:ff:4a:fd:2b:93:
38:d6:b2:54:af:0b:80:09:db:67:ff:9e:58:af:a3:e0:02:b7:
d2:95:60:90:d0:a2:e6:2a:94:6e:1e:3a:ca:77:a6:ef:1b:6c:
56:fd:65:87:d7:2a:99:a4:f2:bf:cf:64:67:64:75:8f:f7:49:
a3:27:17:91:6f:af:e6:82:1b:ab:ad:72:1b:5b:5a:22:7b:21:
40:4b:ee:28:84:bb:3d:7c:d7:ed:6c:3c:a2:57:03:5f:3c:a2:
95:19:d8:08:52:74:92:13:fe:9b:66:33:07:a2:c9:4c:7b:3e:
fd:a7:51:a9:ff:9f:59:2f:83:59:6d:00:54:aa:cf:c1:b4:3f:
79:1d:03:62:85:97:0f:68:92:4d:96:dc:19:9e:2f:b8:85:e7:
79:c8:c6:df:d9:ae:bd:dd:b2:45:bb:cb:b1:a3:64:e3:36:a9:
aa:ed:af:ef:48:b1:b2:72:51:98:bc:68:06:9c:b7:bb:54:54:
35:f4:9a:fe:ea:fe:75:a7:c7:ca:a2:65:c6:a0:b6:c4:c5:3b:
2f:fa:60:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org