Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1xhuUVJhI86xM1Lg4jclbpkAyLk.roa
File: 1xhuUVJhI86xM1Lg4jclbpkAyLk.roa (raw, json)
Hash identifier: qNY27ymiQcGpyx5U5pE6mc840DDA34PhzqupehWDYcI=
Subject key identifier: D7:18:6E:51:52:61:23:CE:B1:33:52:E0:E2:37:25:6E:99:00:C8:B9
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0AFE
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1xhuUVJhI86xM1Lg4jclbpkAyLk.roa
Signing time: Fri 17 Feb 2023 15:14:37 +0000
ROA not before: Fri 17 Feb 2023 15:14:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 101.3.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2814 (0xafe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 17 15:14:37 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D7186E51526123CEB13352E0E237256E9900C8B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:af:92:f0:18:ab:68:54:48:18:22:7f:84:69:
9a:a5:97:16:5a:cf:d9:dc:32:b6:e2:6d:ad:38:1a:
a5:40:05:9a:cf:61:c8:ec:48:77:44:d8:48:6a:f2:
70:b7:a7:85:60:e0:86:45:08:02:eb:62:7c:67:b0:
2d:71:33:e2:1c:89:46:19:9d:82:4f:43:3c:f4:fd:
3d:f7:7c:78:4f:f6:c5:50:17:0e:9f:a3:9f:69:21:
23:89:26:95:ea:91:8c:8b:7c:c5:3a:08:14:fa:ff:
2c:67:45:fd:f5:10:97:4f:a9:5c:35:40:fb:16:79:
df:33:d4:05:fe:7a:43:f7:64:ac:4a:23:f1:d9:b5:
24:1f:92:9f:52:8f:21:01:43:9e:31:01:9c:65:2a:
26:0a:4f:b9:96:62:8f:52:ce:4d:3c:76:c2:96:d9:
9c:b9:4c:60:f3:d4:3c:11:48:97:af:6c:27:da:4d:
1a:50:01:1f:8c:11:eb:f6:23:39:28:a5:1e:fe:75:
b0:aa:4a:97:c6:13:70:58:23:b6:e6:eb:73:61:c0:
69:6e:e9:95:4d:f5:ba:53:ec:34:ed:cc:a4:88:9d:
58:9f:a6:da:35:88:bd:90:f2:d1:44:8f:d7:1f:e0:
a6:e5:5c:ff:89:4f:d6:ce:15:33:5a:08:17:39:a5:
03:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:18:6E:51:52:61:23:CE:B1:33:52:E0:E2:37:25:6E:99:00:C8:B9
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/1xhuUVJhI86xM1Lg4jclbpkAyLk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.48.0/20
Signature Algorithm: sha256WithRSAEncryption
52:f8:19:93:d1:26:f8:be:77:1d:14:d2:0d:84:a4:f8:64:8c:
c2:44:9e:59:0c:e4:64:59:00:05:db:dd:87:ff:52:2d:c5:ae:
9c:28:bd:c7:0c:d0:a5:26:a0:05:f7:98:cb:2a:47:8f:1a:0c:
6e:18:79:b6:06:ac:6e:f5:c3:c6:eb:37:b1:49:18:c6:f4:c9:
03:90:f8:82:9d:83:c9:6b:88:3e:e7:28:d7:7c:ca:f1:65:dc:
37:04:37:ba:93:19:d6:f3:f6:48:37:ba:84:2a:b8:5f:12:aa:
b3:f0:9e:79:c1:ce:e0:b0:ce:a5:d7:69:19:de:06:ee:eb:fd:
94:c5:f4:fd:a8:ac:bf:cc:43:4d:32:82:d2:7c:55:3d:2d:92:
f7:aa:95:38:a9:24:dd:95:c6:31:7a:fb:98:23:35:10:4d:5d:
bf:51:89:38:99:da:a4:f0:36:05:1f:f9:c9:1f:81:0a:26:bd:
91:de:f7:ca:76:e6:87:c5:31:ae:04:5b:ce:2a:af:85:e7:7a:
cd:47:15:68:09:4d:46:14:52:7a:0d:4e:09:14:2f:8b:9e:bd:
a6:58:30:d6:03:ed:ee:ee:d3:bc:c6:42:59:fe:2a:0a:8d:31:
91:60:87:bc:c1:df:0f:6e:46:4e:da:6e:cb:16:92:4a:47:08:
b6:5a:08:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org