Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1wVpPoZehjdUH1mLtAOfBVcMYMQ.roa
File: 1wVpPoZehjdUH1mLtAOfBVcMYMQ.roa (raw, json)
Hash identifier: u1E9TmFyIfEiX56gb7IpZtEzPqYVYy2E0wSQjtfz6m8=
Subject key identifier: D7:05:69:3E:86:5E:86:37:54:1F:59:8B:B4:03:9F:05:57:0C:60:C4
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 08CF
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1wVpPoZehjdUH1mLtAOfBVcMYMQ.roa
Signing time: Sun 07 Feb 2021 11:47:01 +0000
ROA not before: Sun 07 Feb 2021 11:47:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 111.125.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2255 (0x8cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 7 11:47:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D705693E865E8637541F598BB4039F05570C60C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:24:11:58:4d:2e:d8:0b:82:11:2a:24:df:2e:
f5:df:49:2d:c8:e1:2f:10:0e:27:55:2f:cf:17:bb:
0c:06:b8:65:28:1b:63:7d:b1:d7:95:41:45:05:05:
5d:67:c7:a8:fc:44:0b:cd:00:3b:e2:25:75:2c:87:
56:1c:59:33:5d:b0:6b:f6:7e:b3:c9:9e:4c:d2:73:
b6:d4:50:aa:6c:6e:a0:cf:c3:58:32:43:3d:b2:67:
81:4e:9f:68:28:23:13:d4:67:1d:ef:57:ba:f7:02:
fc:21:f6:f7:1b:d4:8c:de:2d:a4:5c:ab:a3:79:9a:
89:2a:7b:4e:3d:05:e6:2a:d5:7d:ea:4a:2c:cd:a4:
05:00:9e:48:27:9e:14:dd:3c:5e:c5:55:80:75:cf:
df:54:b5:e4:26:ce:ff:93:91:18:3a:c0:5e:e6:43:
69:f4:2d:cb:b1:d5:a9:64:11:b4:c4:33:44:14:db:
05:b3:33:c9:d2:7e:33:5f:ba:1c:06:a7:33:c1:92:
b7:6f:67:e7:95:b9:01:75:d7:65:4a:f1:93:6e:c6:
31:20:c0:95:85:13:15:60:6c:27:da:42:2a:ab:1e:
da:6d:ee:38:c7:4c:4c:69:01:f4:8d:2d:f2:b3:7e:
46:d2:36:59:29:08:61:54:58:bd:c0:e6:01:aa:ed:
67:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:05:69:3E:86:5E:86:37:54:1F:59:8B:B4:03:9F:05:57:0C:60:C4
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1wVpPoZehjdUH1mLtAOfBVcMYMQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.125.128.0/21
Signature Algorithm: sha256WithRSAEncryption
d8:bf:78:c2:f9:67:13:78:14:aa:a8:e4:ee:5b:c3:3e:fc:e2:
7e:7f:6e:d9:e1:85:ea:72:0b:c6:47:65:44:d5:8e:93:b5:f8:
52:33:73:ca:1e:ff:35:78:f1:9e:98:64:33:4f:3f:e1:5a:a1:
34:19:59:f5:de:b4:55:31:e6:82:a3:bd:bc:ca:bf:ac:81:32:
07:56:9e:17:7d:34:07:5a:8e:b5:b6:41:be:87:3f:62:e4:38:
48:e9:55:01:3e:27:0b:cf:8a:59:b5:7e:7a:ce:4a:4f:b8:7b:
05:bb:13:fa:0f:2a:75:52:ca:9a:2b:87:7d:c7:12:97:f4:66:
34:eb:68:5b:4c:ef:a8:46:78:6a:87:2e:c3:a4:53:c4:21:28:
19:40:ed:32:d5:45:cf:d5:99:80:58:9c:ac:20:ca:8f:8a:85:
b3:06:5b:8f:be:ef:5b:12:98:9e:35:77:40:b2:d3:64:6a:4a:
14:0b:68:54:16:1c:64:b7:0b:2d:b0:33:ba:db:31:f6:11:98:
46:46:1b:91:80:eb:33:7c:0c:0c:47:ab:9f:f5:ad:c2:e3:96:
21:3e:36:d0:47:ea:6d:10:f2:63:4e:a3:69:4a:3d:ce:77:ff:
f3:44:d4:02:5f:2a:a2:9e:cc:33:c3:d5:07:48:0e:44:3f:fa:
3a:49:1f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org