Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/TvrmP4iVUJs_MtVvSbYlvUakrgo.roa
File: TvrmP4iVUJs_MtVvSbYlvUakrgo.roa (raw, json)
Hash identifier: aVHw5nUKCGKcQ9eQqMavr4tG1+J1ZJXV4PvFPzHnLdA=
Subject key identifier: 4E:FA:E6:3F:88:95:50:9B:3F:32:D5:6F:49:B6:25:BD:46:A4:AE:0A
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 09FD
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/TvrmP4iVUJs_MtVvSbYlvUakrgo.roa
Signing time: Thu 07 Apr 2022 06:11:12 +0000
ROA not before: Thu 07 Apr 2022 06:11:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 101.3.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2557 (0x9fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Apr 7 06:11:12 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4EFAE63F8895509B3F32D56F49B625BD46A4AE0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:48:dc:11:72:7c:b3:74:8b:c1:3a:23:a3:fc:
66:cb:e2:52:2d:b8:f2:84:52:07:44:ad:58:58:cd:
d0:23:6b:97:b1:e3:0a:95:18:58:ad:69:fa:59:ce:
76:7a:0f:ce:03:26:fc:26:13:bf:ba:c0:cc:28:17:
93:57:50:ef:f1:f9:ba:bd:7c:10:c9:b8:f8:e5:56:
6a:79:10:4c:8e:98:91:40:a3:b6:c9:70:3b:e0:53:
2f:81:73:9d:17:45:9b:50:dc:48:25:8b:73:fc:87:
70:8c:9c:9f:b3:11:97:c5:17:8e:c2:a8:79:b1:70:
2b:9e:c4:53:ae:32:ab:98:90:b6:e7:34:8f:a8:a6:
a6:a1:12:97:92:6a:fc:98:33:16:31:66:be:39:5e:
ae:fc:2b:fa:ff:3c:55:45:ad:12:ed:f7:1b:64:88:
47:9a:6a:5e:c5:fb:83:47:01:5f:67:21:5d:e1:d0:
d3:79:5c:e6:29:ed:60:71:0f:1e:69:ac:17:53:d1:
af:45:fe:d4:d9:f4:ee:30:21:fd:8b:98:64:6e:10:
a0:f3:61:46:a1:b6:c0:4b:17:28:87:9f:54:8f:ad:
25:10:f9:65:1b:a6:2c:29:12:3a:c4:2f:ae:99:d4:
c2:23:be:81:90:85:08:a6:1b:cc:a5:43:30:cf:f3:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FA:E6:3F:88:95:50:9B:3F:32:D5:6F:49:B6:25:BD:46:A4:AE:0A
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/TvrmP4iVUJs_MtVvSbYlvUakrgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.136.0/22
Signature Algorithm: sha256WithRSAEncryption
80:3b:08:d1:22:fc:f1:c5:85:6c:0c:0e:2c:d4:6d:a9:7f:87:
aa:a6:92:45:ac:79:59:d9:8d:d8:74:1d:d9:66:cb:03:49:60:
19:a5:24:00:09:cd:51:6e:6c:b3:af:77:76:6c:a0:4c:04:d3:
83:65:6e:4a:61:83:15:a7:46:5f:95:6a:30:43:b8:93:8f:7f:
52:6d:a5:92:e9:d5:64:58:e8:3e:eb:76:8e:d6:bc:06:07:41:
e0:17:82:ff:ee:19:a0:46:b5:20:cb:89:b5:11:aa:3c:06:91:
72:b6:49:93:28:7f:a6:a6:77:63:45:49:a3:8d:9a:44:b7:2c:
e3:bb:51:dd:72:b7:9c:71:70:0c:4a:23:c4:80:78:e4:a0:aa:
dd:fe:08:1a:78:e9:b9:b3:fe:2e:08:56:2a:f0:7c:68:51:62:
ca:6c:f5:78:02:c3:ee:bd:9a:b0:bf:0e:80:b5:63:55:f0:5c:
eb:19:c0:c7:6e:c2:3d:03:d5:06:ef:5e:04:48:59:48:39:bc:
ed:ec:2d:90:e7:af:da:29:5b:5e:4c:5b:c6:e9:90:45:0f:01:
0e:b6:dc:ab:b5:83:4d:11:8e:4a:a8:58:11:94:62:6c:c2:b3:
cb:15:33:ca:4c:42:30:c6:f2:7c:2d:90:f9:25:88:58:83:5a:
85:a0:18:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org