Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/VYvNkY6bIiNf58qa-Ci7H9Vv6JM.roa
File: VYvNkY6bIiNf58qa-Ci7H9Vv6JM.roa (raw, json)
Hash identifier: G1IqNumBMtcxsQFx6iBlTevaS59i1INqyK6DXYAR7jE=
Subject key identifier: 55:8B:CD:91:8E:9B:22:23:5F:E7:CA:9A:F8:28:BB:1F:D5:6F:E8:93
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 08DD
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/VYvNkY6bIiNf58qa-Ci7H9Vv6JM.roa
Signing time: Sun 07 Feb 2021 11:55:20 +0000
ROA not before: Sun 07 Feb 2021 11:55:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4783
IP address blocks: 202.39.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2269 (0x8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Feb 7 11:55:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=558BCD918E9B22235FE7CA9AF828BB1FD56FE893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ae:f8:4e:9f:54:6f:66:ac:8c:bc:4f:4e:2a:
4b:4a:2a:fe:40:c9:1c:5a:8f:cd:1b:c0:ed:be:21:
52:46:b4:c0:d5:04:89:60:36:f1:63:d7:57:9b:0c:
b4:8b:0d:9c:ae:b5:f5:4d:40:ab:af:85:34:40:77:
b4:d2:68:c7:cc:04:7a:6b:84:53:36:45:b0:5b:93:
c3:c7:0a:c8:fe:30:f3:ac:67:d7:82:f2:2c:33:27:
55:f6:36:6c:73:a0:db:96:de:6d:5e:f3:fd:3d:5f:
6c:a5:5c:f3:b9:46:e7:90:58:92:13:10:e8:42:58:
11:24:34:ef:9e:f5:1b:03:ee:39:22:5a:06:60:b2:
a7:dd:46:27:78:2d:7f:1c:bd:6a:c5:b4:75:49:14:
77:9f:b0:83:b4:86:47:ff:0d:9f:93:19:24:d3:8b:
cd:54:d2:73:1c:fa:3e:12:4f:7f:d4:74:28:99:b3:
ea:ae:00:82:fd:2d:4c:45:46:41:8b:b1:b3:8b:c2:
9e:19:cb:86:99:85:ed:1d:43:7d:06:66:9e:a6:26:
1f:dd:30:41:56:45:ef:8d:98:b5:40:dd:af:96:c8:
76:5f:c0:33:0f:4f:2f:61:73:b1:d5:ad:61:21:56:
ac:10:06:79:43:a8:b0:99:78:97:60:50:41:f5:58:
c9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8B:CD:91:8E:9B:22:23:5F:E7:CA:9A:F8:28:BB:1F:D5:6F:E8:93
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/VYvNkY6bIiNf58qa-Ci7H9Vv6JM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.96.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:bb:e8:51:b8:59:26:62:8e:65:00:69:f0:ab:eb:5e:c1:3d:
a5:06:33:7a:6e:1c:78:5c:5b:44:26:65:c1:7e:dd:29:d9:40:
88:b3:be:dc:d5:32:b7:84:d2:09:40:c7:31:26:50:e3:80:31:
5d:a8:b8:c8:0c:32:3a:fb:a2:e9:7d:85:5c:bc:4e:bb:f8:39:
12:6d:4b:78:6f:84:59:78:9e:68:2c:02:98:a5:2d:bd:a8:84:
a6:54:23:08:74:53:dd:10:82:f5:4a:56:f6:b6:aa:4a:6c:96:
2a:89:d1:96:70:d8:49:9c:46:2a:da:16:08:ec:79:4c:ab:1d:
d5:ea:b4:7b:00:6d:42:91:06:c7:4f:14:43:b2:3c:16:04:58:
c1:15:84:40:63:03:eb:27:87:ac:86:ca:15:b5:95:80:f5:36:
e1:87:86:06:7f:9f:0b:3a:cf:f4:25:c1:da:60:65:c3:01:d4:
c5:c1:c7:ca:45:0b:82:d1:df:01:56:f3:3b:9a:6b:29:57:3f:
c7:3b:20:8c:d1:3b:40:d6:81:46:54:ac:f1:3a:f5:47:e8:de:
50:43:7a:69:c3:bb:21:bb:ab:24:8d:40:7e:36:71:26:6b:d2:
c0:be:a8:7b:0b:9e:91:98:01:9d:2a:4f:4b:e4:59:10:f6:ce:
11:e1:b5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org