Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ME5yzww4D9QjxLfYG4nB1VSLu-U.roa
File: ME5yzww4D9QjxLfYG4nB1VSLu-U.roa (raw, json)
Hash identifier: tre4gMsdao5IJVajbecY9BvbflCE7eRKhIHHB87NuFc=
Subject key identifier: 30:4E:72:CF:0C:38:0F:D4:23:C4:B7:D8:1B:89:C1:D5:54:8B:BB:E5
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A71
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ME5yzww4D9QjxLfYG4nB1VSLu-U.roa
Signing time: Fri 16 Sep 2022 06:13:09 +0000
ROA not before: Fri 16 Sep 2022 06:13:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2673 (0xa71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 16 06:13:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=304E72CF0C380FD423C4B7D81B89C1D5548BBBE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cb:f2:54:7c:fb:8c:88:9a:41:52:f2:47:62:
9a:00:da:06:36:9b:55:82:cf:b5:65:fd:92:aa:7e:
dd:5d:db:87:69:32:77:64:36:e4:ec:87:45:9a:5a:
79:e9:06:97:7d:d8:31:b4:26:f2:82:59:44:e7:f5:
3e:d2:47:e5:31:11:8f:73:6b:aa:84:af:61:c1:b8:
db:69:61:bf:f9:ec:a5:83:5c:0e:07:1b:63:45:dd:
2b:eb:dd:71:19:67:96:65:31:b2:2c:3c:b0:09:91:
33:d9:8b:23:34:1f:3e:3b:a3:7d:32:e5:bf:36:0a:
e8:ee:b2:b3:ec:d7:36:e7:24:bd:11:15:a8:33:53:
c0:90:41:2f:67:0e:48:14:66:c5:72:cb:45:82:72:
d7:34:fc:1e:05:c9:f3:8f:a9:89:6b:c6:9c:3c:3f:
a5:a6:c8:fc:69:c4:e3:fd:e0:2e:13:d5:e2:bf:c3:
f7:1b:79:2b:8b:42:2e:a9:c2:08:70:dc:db:e8:42:
7b:34:50:de:68:1e:d1:b9:50:16:04:bd:22:d0:25:
c3:8d:8c:5e:d8:2c:ae:90:05:67:fd:eb:16:13:10:
8a:e4:f2:70:ca:85:5e:da:bb:54:50:e3:08:04:b5:
47:b2:7f:fa:11:f3:c7:87:e3:b0:58:e7:4d:58:21:
aa:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4E:72:CF:0C:38:0F:D4:23:C4:B7:D8:1B:89:C1:D5:54:8B:BB:E5
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ME5yzww4D9QjxLfYG4nB1VSLu-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.128.0/19
Signature Algorithm: sha256WithRSAEncryption
67:22:dc:c4:af:2d:f8:4b:79:87:60:2c:3a:47:2d:18:a9:47:
9c:75:c6:2c:16:00:df:43:fd:4c:3f:8f:e2:87:9f:6f:a4:f5:
e3:85:3a:06:f5:c8:13:74:5f:02:d5:ec:ef:2b:07:dd:fe:03:
73:9b:7f:39:3f:fa:a1:06:6a:c4:e4:0e:b9:1b:10:12:be:39:
a1:5a:94:ee:b3:e2:f2:f3:69:c8:a9:6b:ac:df:02:4a:90:c7:
bd:f0:89:77:11:81:bc:f6:4a:9e:eb:62:25:d9:14:9a:3e:37:
b3:13:eb:49:90:1d:cc:9a:5b:fc:47:f6:fc:e3:b4:25:4f:37:
04:ac:dc:9b:78:68:93:4a:72:ae:ca:82:fe:3c:21:88:94:c9:
c8:60:98:42:8c:7d:4d:8b:b9:06:45:15:ee:59:09:9a:f2:5f:
c2:d0:fa:63:8e:b2:0a:0b:10:97:8a:b8:d6:34:8c:36:52:d4:
bd:1b:b7:59:f9:8e:39:1c:bf:e9:79:b6:c3:7a:14:06:6a:e0:
71:f1:5a:35:93:5b:9e:cb:ca:8c:eb:7e:e0:83:01:32:aa:68:
f7:e8:9f:3d:2f:28:81:55:5d:2e:fa:ce:d5:38:a3:a9:6b:de:
a5:3c:66:f2:d5:58:09:7f:e4:cb:df:bf:b4:e9:92:b1:bb:d5:
b6:fc:95:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org