Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EoWffEBTODm-9egUs1MGOb4QirA.roa
File: EoWffEBTODm-9egUs1MGOb4QirA.roa (raw, json)
Hash identifier: aO2WVmLKyC6zCPx4EIElOMdGYns72ZHEv2xBkXfXxlA=
Subject key identifier: 12:85:9F:7C:40:53:38:39:BE:F5:E8:14:B3:53:06:39:BE:10:8A:B0
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EoWffEBTODm-9egUs1MGOb4QirA.roa
Signing time: Thu 15 Sep 2022 02:42:05 +0000
ROA not before: Thu 15 Sep 2022 02:42:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667 (0xa6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 15 02:42:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=12859F7C40533839BEF5E814B3530639BE108AB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0a:c2:f7:c4:7e:1b:7d:b2:70:0f:b0:79:23:
44:77:04:4b:1a:a2:2a:28:3e:be:58:1b:54:8f:46:
af:db:4c:4f:93:76:88:66:4b:dd:34:4e:9f:f2:23:
24:f9:31:54:8c:10:2c:4b:57:e1:e4:29:74:5a:ca:
16:ff:6e:23:75:17:45:86:00:40:13:8b:16:2e:62:
ee:fd:b0:75:ee:d9:46:83:5f:00:24:7c:84:ee:29:
f2:1e:29:96:fa:00:d0:aa:b0:97:75:2d:2b:bb:8a:
ce:99:38:e4:5e:f0:d6:d1:4b:33:b3:d9:4f:d0:c2:
cc:53:37:25:88:68:4c:56:ec:09:13:75:40:fe:73:
8d:ac:c5:c7:ee:c8:f9:f1:dc:5d:14:d6:d3:ac:e4:
9e:4b:46:64:4c:00:10:9b:73:5f:7c:88:1f:e7:2e:
e3:e4:7c:b3:df:78:eb:c3:85:6c:ac:93:7e:a4:27:
dc:81:ed:7d:1f:8a:ef:1e:82:e3:6c:50:4d:b1:c2:
dd:09:28:4a:70:f1:ec:c1:99:67:b8:e9:09:87:c1:
ae:b9:cf:29:c4:8e:ff:fc:ac:91:73:72:ed:dd:05:
86:0b:0d:79:d4:f7:76:d8:a9:7f:78:e3:04:1e:89:
2f:1f:a9:76:b2:e3:af:c5:86:0b:75:50:ec:56:db:
e6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:85:9F:7C:40:53:38:39:BE:F5:E8:14:B3:53:06:39:BE:10:8A:B0
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EoWffEBTODm-9egUs1MGOb4QirA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.106.0/23
Signature Algorithm: sha256WithRSAEncryption
59:83:6c:59:9b:d2:d9:d5:dd:38:da:59:d6:24:13:20:23:3b:
9f:ae:f3:13:a5:b5:47:32:8e:fe:7f:34:b8:b5:f9:c5:23:1c:
80:0a:4b:4f:85:4a:85:de:78:19:99:48:42:c4:e0:88:93:a3:
21:5f:c9:91:c2:96:b2:f3:09:fc:89:34:d2:eb:20:db:e5:2b:
96:3d:2d:9c:1c:d7:17:4c:3d:01:7a:1a:0d:ca:a9:6e:e2:9b:
a6:40:50:70:5f:dd:37:73:19:ca:d5:04:81:ce:3b:85:d2:c8:
30:05:80:ef:65:e5:13:ca:9b:24:2f:43:4d:81:bf:58:3e:4f:
31:fe:10:3a:7d:5a:9f:e8:10:7f:6c:74:3b:f2:d0:c7:70:84:
8d:d3:ad:2d:d4:c3:a3:5f:b1:2a:5d:d4:eb:9c:48:2e:f5:e4:
20:17:95:60:82:1a:70:25:5f:e5:22:9a:b2:c6:7c:4c:a4:8f:
d9:e3:75:13:43:f5:08:fa:4e:1b:cb:9b:64:ca:cf:e1:71:b6:
d3:cf:70:48:e9:dc:0a:f7:1e:1f:d0:79:46:d1:1a:48:77:5e:
15:dd:75:e3:7b:53:79:b7:54:fe:9c:1a:02:99:cb:f0:6c:86:
e4:75:86:96:38:81:e9:69:3d:cb:79:4d:ee:33:40:b5:83:ac:
5d:ac:78:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org