Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1KlO5UuczLLTHOnMySMgVk32btA.roa
File: 1KlO5UuczLLTHOnMySMgVk32btA.roa (raw, json)
Hash identifier: dOwe8PEloi4pFqxKljTNsC1BW4sR2EcWFWAsJSsdTvQ=
Subject key identifier: D4:A9:4E:E5:4B:9C:CC:B2:D3:1C:E9:CC:C9:23:20:56:4D:F6:6E:D0
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 08CB
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1KlO5UuczLLTHOnMySMgVk32btA.roa
Signing time: Sun 07 Feb 2021 11:46:58 +0000
ROA not before: Sun 07 Feb 2021 11:46:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 101.3.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2251 (0x8cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 7 11:46:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D4A94EE54B9CCCB2D31CE9CCC92320564DF66ED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:00:48:d8:3e:a9:fe:27:22:e7:9e:79:86:aa:
19:88:ca:8f:d8:0a:40:90:c0:15:0b:1f:a0:45:db:
80:98:fd:f9:46:c4:d6:c7:59:43:e8:cd:34:14:05:
9c:e5:05:19:7d:0e:ef:32:60:e1:56:5b:25:1b:86:
20:5d:e4:62:67:e8:47:72:39:6e:92:db:a9:50:57:
bd:1d:b1:1f:55:ca:7c:e1:60:ad:42:68:ee:7b:2d:
72:67:9c:5c:68:37:31:39:1b:70:86:46:70:c7:ab:
64:e3:b6:b2:c3:1f:d1:b7:7a:ea:ad:b5:17:ea:cd:
e5:76:a1:d9:b5:bc:75:58:3c:20:69:e9:55:fd:aa:
fa:a0:74:ba:79:29:7c:17:bc:57:4f:e0:b2:e1:07:
77:e0:07:a5:37:3d:a7:5d:15:d9:13:a7:81:18:6d:
d8:a5:8d:8f:8e:69:2d:35:e2:96:17:9d:0a:57:44:
3a:a2:23:80:d6:24:25:b8:c3:c4:e1:47:2d:81:af:
36:e6:8c:92:bc:62:48:4e:73:4a:a9:eb:fd:42:ca:
66:44:bf:d9:d3:a6:eb:90:eb:91:8f:0f:86:59:2a:
b3:92:34:14:2b:85:2f:05:a6:18:a8:b7:42:77:cd:
96:3d:23:20:27:6d:f9:8e:be:84:0a:2e:c8:e1:4b:
4f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A9:4E:E5:4B:9C:CC:B2:D3:1C:E9:CC:C9:23:20:56:4D:F6:6E:D0
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1KlO5UuczLLTHOnMySMgVk32btA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.0.0/16
Signature Algorithm: sha256WithRSAEncryption
61:bc:8f:f1:15:67:81:0a:51:ac:2a:58:e3:39:46:e1:f4:31:
b4:f2:a2:e6:93:43:46:51:15:df:c0:a7:1a:6b:f4:5e:89:8e:
94:3c:93:65:78:c8:30:37:8e:77:34:72:54:bc:dc:f0:fd:c9:
2d:a2:93:9a:33:35:af:3b:cb:06:8e:ea:fb:53:2d:ba:25:62:
12:7a:35:ca:2c:5a:b7:a8:47:8f:20:64:2f:44:e9:bd:44:cd:
9f:e9:21:4e:44:9a:47:21:ff:58:18:ba:97:bc:ab:aa:eb:f1:
15:f3:64:8e:a6:c4:f3:8f:ea:d6:38:d9:c1:8f:21:65:95:2d:
1b:47:f4:0c:67:14:9b:69:4c:0f:32:8b:18:ac:a6:97:1d:2c:
c9:2a:eb:1a:53:a0:80:68:96:ab:50:aa:b7:d1:e1:94:36:54:
ad:36:08:1c:82:96:c0:c7:fc:ae:e7:f3:6e:83:c5:ba:35:89:
0e:da:bd:91:a0:ce:7e:f2:55:af:79:45:c5:e7:46:7c:27:87:
d0:bd:30:09:b5:a0:85:3e:97:9d:38:ca:57:75:e3:40:90:8f:
35:91:7b:21:40:91:54:6b:64:4d:dd:44:dc:60:e9:26:01:c2:
76:14:83:b2:11:92:22:57:fe:00:5e:52:db:ee:43:cc:6f:29:
f0:69:85:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org