Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/iuqUq5p7Fk7GkLGScXO1UKfZUoA.roa
File: iuqUq5p7Fk7GkLGScXO1UKfZUoA.roa (raw, json)
Hash identifier: rzImA2CNV2/nvPJfDfrkHzaqX14eF20z0U+E643Rr1s=
Subject key identifier: 8A:EA:94:AB:9A:7B:16:4E:C6:90:B1:92:71:73:B5:50:A7:D9:52:80
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 097A
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/iuqUq5p7Fk7GkLGScXO1UKfZUoA.roa
Signing time: Wed 29 Sep 2021 02:51:53 +0000
ROA not before: Wed 29 Sep 2021 02:51:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18182
IP address blocks: 39.1.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2426 (0x97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8AEA94AB9A7B164EC690B1927173B550A7D95280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8c:41:85:c1:30:3b:b2:64:e7:43:22:d6:15:
89:b8:a0:0e:3d:a2:f2:f5:a8:af:60:fc:77:1d:c8:
8c:d1:ee:3e:21:45:03:cf:f4:82:40:da:14:3c:f5:
b1:32:87:24:d2:ee:7b:bd:51:44:86:66:65:3f:14:
4e:e0:ef:dd:24:34:79:d2:45:a6:75:81:3c:bb:da:
b8:9c:58:22:51:2b:14:47:92:cb:65:69:a2:59:01:
4c:0d:c2:9b:30:0b:22:90:e0:08:47:37:d9:e3:a0:
e7:22:5c:d4:7f:22:09:26:b4:d1:c2:b5:41:5e:e1:
b1:ad:53:22:98:01:26:8b:9c:8b:32:83:42:ec:bd:
a7:a5:14:c5:d2:2e:cf:32:62:32:d6:5d:fc:87:d2:
dc:32:34:12:4b:51:8e:ac:dc:57:8e:91:d0:f9:90:
a5:1b:96:9b:c7:55:ed:37:b2:0d:3a:6a:9c:8f:44:
a3:11:1f:a6:5b:61:bb:d1:66:94:51:8b:05:e8:59:
71:50:fd:7e:f3:03:e8:f3:1c:56:c2:1d:7c:20:69:
13:97:10:c8:30:c6:e2:4c:dc:68:fa:cf:5d:30:1e:
bb:1a:d9:17:af:23:f5:d1:fc:27:34:ee:6f:a6:b4:
e1:4e:b0:27:6d:38:d4:60:6a:7c:4b:e0:68:2f:a0:
a1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EA:94:AB:9A:7B:16:4E:C6:90:B1:92:71:73:B5:50:A7:D9:52:80
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/iuqUq5p7Fk7GkLGScXO1UKfZUoA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.1.0.0/16
Signature Algorithm: sha256WithRSAEncryption
35:ca:0a:b3:e8:24:f0:7c:35:05:19:92:11:42:2a:c5:5e:db:
d4:c1:92:39:c7:e7:12:86:13:58:ac:aa:65:4c:2f:39:e5:18:
1b:12:ba:4e:66:15:0a:83:74:54:c9:0b:fc:d1:10:0f:34:83:
86:45:8b:b7:92:bd:2a:87:37:55:78:33:f5:02:f8:d2:d4:16:
e9:c8:f4:d9:f8:67:03:27:6b:96:ed:c0:ad:1c:67:39:75:c3:
f3:d4:73:ff:f4:7d:2e:96:05:9c:22:f9:93:7e:6a:c2:8e:83:
98:7e:61:e9:c0:46:d9:3b:66:3c:9b:bc:14:36:8f:27:5f:f0:
67:84:20:85:e4:19:28:22:12:fe:af:0a:72:e8:76:36:4f:ba:
95:70:1a:22:81:77:b5:e4:43:f8:8f:97:5d:8d:d8:20:91:ae:
28:d2:9d:4b:c3:9b:60:5b:39:90:c2:a5:f3:cf:03:90:bf:2e:
2d:1d:13:d0:96:83:e4:70:d3:89:0c:c3:88:76:24:36:d9:5b:
6e:62:ff:25:e1:6f:f5:60:22:1d:32:c7:e4:35:2d:09:0b:e2:
e8:b7:e1:8a:d4:3a:f1:d3:6a:7d:d5:8e:55:ad:f6:f5:57:f9:
1f:09:c5:d3:c2:8b:a9:9c:b5:a2:67:26:97:4b:0d:a9:80:2e:
be:96:74:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:05 2023 by rpki-client on console-ams.rpki-client.org