Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/PJgxqXkVPx725cGZ-evuY0OD2JM.roa
File: PJgxqXkVPx725cGZ-evuY0OD2JM.roa (raw, json)
Hash identifier: rXtqpQdn1cXYFZwvNCjCGfkx/4oaL9+/tKE6QpMq5nk=
Subject key identifier: 3C:98:31:A9:79:15:3F:1E:F6:E5:C1:99:F9:EB:EE:63:43:83:D8:93
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 08CA
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/PJgxqXkVPx725cGZ-evuY0OD2JM.roa
Signing time: Sun 07 Feb 2021 11:55:23 +0000
ROA not before: Sun 07 Feb 2021 11:55:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 219.84.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2250 (0x8ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 7 11:55:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C9831A979153F1EF6E5C199F9EBEE634383D893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ed:17:2e:a9:66:50:d2:de:a7:57:0a:50:1a:
cd:31:73:d9:fa:e6:bc:6b:c4:d8:93:c2:5e:d2:80:
18:f6:c7:ca:32:df:a2:4e:f4:36:96:72:1c:f7:b7:
82:d4:11:04:fa:7a:1d:20:df:47:c9:de:64:89:08:
31:11:6f:1e:03:f8:f2:a9:5e:a3:c1:e7:2a:0d:08:
71:45:3b:d8:80:e1:6c:e3:2b:06:0f:5b:4c:8f:fa:
07:98:c2:24:eb:92:b0:f5:bd:4a:e1:6f:17:7f:2c:
b0:23:7d:39:d8:e1:15:5b:45:44:18:4a:7f:3a:c9:
b0:6b:6f:af:a8:66:1d:9e:12:bd:e4:5d:0c:9b:77:
a1:7c:96:b2:5d:da:34:b1:5e:c6:48:5e:1a:91:39:
8a:ae:c3:03:e8:12:71:73:f1:9b:50:bc:22:9c:21:
e8:3a:28:59:58:7f:1b:c6:b4:7c:5f:3f:91:b9:44:
ad:8b:4d:a4:57:45:86:ff:67:27:b1:c3:f2:ae:a8:
e1:6c:cd:8d:ac:da:27:2a:e7:81:c7:92:8c:f4:68:
dc:3e:32:86:a9:6d:4a:8d:23:2a:3d:17:87:f6:d1:
e5:9f:fe:23:d6:7f:58:74:0c:f5:54:e6:c9:23:60:
94:46:3b:75:f0:62:88:93:b6:3e:f2:d8:3f:ea:46:
85:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:98:31:A9:79:15:3F:1E:F6:E5:C1:99:F9:EB:EE:63:43:83:D8:93
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/PJgxqXkVPx725cGZ-evuY0OD2JM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.84.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b8:1f:4e:d4:60:3f:6f:58:f2:c0:a6:95:0b:c3:12:a0:4f:3f:
68:64:1e:9f:79:bb:32:92:ea:ed:08:2d:c1:08:80:b0:0d:37:
3f:6d:af:34:00:67:a7:3c:1e:bf:c9:00:d9:ef:4b:ba:76:c0:
ee:86:aa:7d:dc:20:94:4b:e7:70:22:a7:69:da:66:db:a6:43:
57:4e:bd:82:fe:dd:b3:02:27:b2:1f:8a:ed:56:1b:85:78:6e:
79:ed:50:d9:ea:d8:b4:43:15:06:02:7c:67:75:03:80:52:54:
f8:f7:f3:50:a2:c5:9a:1b:9e:eb:83:56:4b:72:d8:fd:53:39:
cb:23:aa:d4:0f:f9:18:e3:a3:e5:4e:b9:6f:de:39:70:37:32:
d5:5d:32:51:17:a9:f8:ad:83:c4:15:6b:e2:48:df:28:bd:09:
05:9e:c8:4e:12:3e:49:31:3a:77:ba:0c:13:4c:36:cc:02:bd:
a6:fd:a8:d6:43:d3:b0:0d:34:6f:2e:dc:be:72:9f:30:2b:46:
8a:8a:61:85:e0:6f:8f:58:1b:0e:49:b0:eb:d9:a3:d9:62:15:
26:69:47:2b:b8:d0:d0:4f:eb:fd:e7:5a:cb:4d:6c:f9:1e:e0:
d1:20:f3:c4:09:58:bb:68:99:a4:72:76:4f:98:9d:7c:20:af:
38:30:12:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org