Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/IUaMmW8oaIjwYFRLFSew-mNjrcY.roa
File: IUaMmW8oaIjwYFRLFSew-mNjrcY.roa (raw, json)
Hash identifier: RKhEzsnc+6pItle37ZpPN3jcVCagJpmgiV1r988UnK0=
Subject key identifier: 21:46:8C:99:6F:28:68:88:F0:60:54:4B:15:27:B0:FA:63:63:AD:C6
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 097C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/IUaMmW8oaIjwYFRLFSew-mNjrcY.roa
Signing time: Wed 29 Sep 2021 02:51:54 +0000
ROA not before: Wed 29 Sep 2021 02:51:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18182
IP address blocks: 219.85.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2428 (0x97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=21468C996F286888F060544B1527B0FA6363ADC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:16:61:58:75:d9:53:00:c6:93:06:54:d3:ed:
4c:15:f5:fc:61:32:be:2a:d1:65:55:b6:98:fe:6e:
f2:d3:d1:ab:38:54:6e:f5:17:f8:c4:e0:42:51:9c:
cc:a3:91:95:a4:7c:46:4e:b8:56:7a:00:f7:58:2f:
5b:6b:8b:a1:0e:68:03:b0:bd:91:f8:7c:06:55:cd:
6f:7f:fc:82:86:4f:62:7c:66:c3:f5:8e:61:e2:a6:
9b:3c:31:11:7b:67:05:b5:65:0d:b9:91:8c:c3:d1:
b6:3e:5c:e6:da:c9:73:ce:b9:15:8b:e2:f5:a7:8d:
85:f3:4e:19:ec:84:2c:41:89:ba:2d:c9:17:62:2c:
83:6e:54:fa:31:61:72:0b:77:1c:77:41:5a:33:29:
df:c2:1c:fb:da:37:47:a4:47:ab:60:ba:f1:0b:34:
55:06:c6:7b:36:eb:cb:70:37:0a:f5:c6:2f:e6:50:
a1:cd:d0:d9:0f:29:b7:27:ec:5c:51:c0:b6:be:49:
d0:95:dd:e6:c5:9e:26:9f:cb:c6:32:6a:4f:f0:b1:
3c:8f:3d:be:04:9c:50:90:b7:bc:8f:2b:f8:66:80:
a2:15:39:b8:2d:a4:94:9c:5e:b0:fa:d4:f7:09:e9:
d9:b9:80:21:9b:4e:0f:de:2b:9e:b3:82:e0:6d:f1:
1e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:46:8C:99:6F:28:68:88:F0:60:54:4B:15:27:B0:FA:63:63:AD:C6
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/IUaMmW8oaIjwYFRLFSew-mNjrcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
75:d1:59:76:8d:ff:07:81:e4:a2:e1:ec:60:2d:35:9d:ea:00:
ea:f6:0b:e0:1c:2a:c7:21:7b:40:ff:82:ba:68:96:dc:71:3a:
05:0c:de:45:f1:d6:0f:71:b0:6d:f4:76:ab:0d:d9:32:ad:96:
50:5a:87:eb:ff:94:47:06:9a:05:b1:22:dd:3f:c7:b2:5e:18:
81:15:74:a0:bb:f0:ca:e9:c5:df:a5:2c:94:42:1d:66:8f:5d:
0a:a4:c0:7d:f6:6d:0f:72:00:09:72:f3:a1:14:24:72:bd:63:
c7:42:92:dc:ad:33:bc:4c:8e:fb:d5:fd:be:98:af:5f:40:a9:
d3:fb:88:a6:8a:7f:15:72:8f:dc:7b:21:31:72:01:6d:6d:14:
9d:f6:01:f1:f2:03:a7:0d:6e:bf:86:48:84:b8:75:6f:88:c1:
1a:16:e4:f3:f0:e6:8a:2b:57:94:2c:02:7a:2f:ce:00:ad:55:
69:a6:07:f1:dc:b1:54:02:83:50:87:c5:a3:a8:7a:79:fe:e2:
65:5d:e7:5b:0b:70:61:0f:4b:47:29:7b:59:79:67:4d:20:99:
91:cc:08:c2:7c:f5:39:3d:83:28:eb:b5:16:c9:33:99:03:67:
1b:56:ff:1b:be:f3:f0:58:a8:d3:9b:83:a8:56:c2:ef:4b:e9:
47:f3:c0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org