Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/JRRmXckH_3Y_kfWfNkbD4nnnlgc.roa
File: JRRmXckH_3Y_kfWfNkbD4nnnlgc.roa (raw, json)
Hash identifier: BS+k4rrdJr8uNRN1MEmzmlxt6ZuG4npD65s58qZOGP0=
Subject key identifier: 25:14:66:5D:C9:07:FF:76:3F:91:F5:9F:36:46:C3:E2:79:E7:96:07
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/JRRmXckH_3Y_kfWfNkbD4nnnlgc.roa
Signing time: Thu 15 Sep 2022 02:42:01 +0000
ROA not before: Thu 15 Sep 2022 02:42:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667 (0xa6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 15 02:42:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2514665DC907FF763F91F59F3646C3E279E79607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:74:f6:fe:99:7e:86:9d:23:0e:43:13:28:03:
f6:93:a6:88:b8:09:bc:fa:5c:80:da:e4:92:ed:bf:
1e:79:54:e9:24:d1:fc:56:a3:69:77:57:ea:03:9b:
fc:e1:0b:dc:95:e3:ec:bd:67:92:bd:88:55:88:51:
a9:93:7b:4b:ac:56:c0:0b:80:cd:92:1b:05:4d:ef:
0a:60:6f:94:22:8a:48:b8:0f:4f:a1:1a:94:c1:84:
da:e2:f5:76:28:1b:6a:b7:ab:8b:ba:15:99:ce:4e:
26:40:63:6f:74:0b:e2:3a:74:a3:90:27:aa:83:1d:
26:ab:e9:cc:c2:69:46:41:f9:83:04:08:df:1b:0d:
7f:8f:ba:40:04:2c:e1:5b:a1:e7:b4:fe:ae:55:bd:
09:41:ae:2f:0f:87:a8:5f:8f:b0:c0:ce:66:47:88:
64:b7:cc:9b:d1:05:70:a0:29:50:66:aa:21:c8:6b:
6d:32:20:c2:09:54:e1:38:92:a2:96:bb:12:45:17:
13:df:d0:f7:5c:ab:9a:05:16:d9:be:df:bc:f4:e7:
a0:26:b2:60:93:72:f9:39:82:30:7f:82:4b:44:0e:
10:58:75:25:1b:13:52:9a:72:eb:da:25:68:cc:65:
b7:12:69:33:0d:86:58:b5:95:22:41:bc:a7:ca:10:
9f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:14:66:5D:C9:07:FF:76:3F:91:F5:9F:36:46:C3:E2:79:E7:96:07
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/JRRmXckH_3Y_kfWfNkbD4nnnlgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.112.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:a2:a8:36:ba:01:32:97:a0:fd:0d:84:7e:14:a3:87:dc:74:
26:96:a2:9c:db:51:d9:9e:1f:65:9e:ca:e1:37:2e:72:83:57:
55:e9:a6:49:6c:20:68:cf:15:e3:d5:ba:82:62:3e:44:a9:3a:
7d:c6:f2:41:02:e7:ea:46:50:a6:1c:6c:cd:37:47:7a:86:c1:
b6:78:0e:d2:6a:57:bf:55:b7:02:f6:a5:b0:07:1a:78:26:b9:
28:13:e4:f0:da:1d:b2:b6:a9:7a:ab:77:09:f1:a3:cb:32:39:
82:d2:09:1b:22:5c:9a:d9:e5:31:c0:62:48:04:70:01:62:91:
0e:1f:91:55:f1:d2:21:e9:2e:ff:c9:97:ff:89:06:28:65:5e:
5d:6b:23:11:ac:6e:03:00:96:37:7b:ad:fc:e2:29:bb:27:50:
dc:c3:95:bb:e3:16:62:2f:6b:c6:3e:d5:a2:d5:7f:98:94:d1:
25:df:10:3e:6f:73:4b:12:ec:cf:24:33:ea:38:8f:ed:f7:e4:
02:d0:ec:28:d2:bd:7f:12:53:83:f5:dd:57:d7:c6:1c:33:a9:
c1:fb:7c:fd:12:db:d8:c1:dc:db:06:40:22:ad:6e:a0:39:73:
45:0d:2e:84:3d:56:f6:a9:ec:df:63:3f:aa:ae:2d:92:e8:3c:
98:54:21:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org