Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Z-lfcR-IeVUGo8ylXczIrx-A2Yg.roa
File: Z-lfcR-IeVUGo8ylXczIrx-A2Yg.roa (raw, json)
Hash identifier: 2IdlzTQ/ZHYt1bAK3w99MO+x7pS6dj4MxmUhfv8X5JM=
Subject key identifier: 67:E9:5F:71:1F:88:79:55:06:A3:CC:A5:5D:CC:C8:AF:1F:80:D9:88
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 096E
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Z-lfcR-IeVUGo8ylXczIrx-A2Yg.roa
Signing time: Wed 29 Sep 2021 02:42:13 +0000
ROA not before: Wed 29 Sep 2021 02:42:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 111.235.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2414 (0x96e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 02:42:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=67E95F711F88795506A3CCA55DCCC8AF1F80D988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:83:00:5e:13:2c:e6:03:b5:d4:c7:b2:dc:61:
e4:06:af:62:00:f7:fb:7e:cc:3b:c4:2f:5c:9e:90:
92:5d:25:c8:b3:23:31:f4:e6:73:06:78:28:16:86:
90:7e:cd:2f:9b:d3:75:a6:5b:32:ce:32:7b:9c:83:
00:61:4c:96:53:30:8a:bc:94:ea:ca:e6:2c:86:c8:
45:91:67:7c:9d:4c:43:b4:01:90:61:9c:53:47:d6:
b8:30:3d:29:80:57:26:63:4c:e5:ae:83:7d:35:cb:
49:9b:75:ab:17:1e:cb:9b:e5:c2:f3:15:17:91:57:
ea:47:c0:37:c1:68:7b:81:71:c2:55:00:f2:b1:9c:
54:99:02:85:3c:b7:02:2b:ae:b4:76:42:f8:d8:59:
f5:3c:32:30:ae:b2:f6:a5:75:a5:58:4a:ec:27:ed:
cf:cb:1e:c3:ff:ff:24:bc:8c:87:17:fb:4d:85:fe:
23:f0:8b:45:b9:25:a3:ba:04:5f:c0:9a:c8:f6:6f:
b0:25:99:44:2a:fe:6f:ab:47:e6:ac:12:60:15:4d:
59:96:47:17:6b:f0:f3:b4:82:d9:ec:ba:d6:63:c3:
91:c7:28:da:1e:ab:69:9e:0d:ca:7f:33:fa:50:d7:
0e:9a:3d:7c:92:49:2e:c3:7a:65:6d:eb:41:98:4b:
80:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E9:5F:71:1F:88:79:55:06:A3:CC:A5:5D:CC:C8:AF:1F:80:D9:88
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Z-lfcR-IeVUGo8ylXczIrx-A2Yg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.235.192.0/18
Signature Algorithm: sha256WithRSAEncryption
40:8b:43:7d:50:02:82:0d:c6:86:62:c8:23:44:2a:02:3c:db:
1c:e5:71:4b:79:6a:01:d1:ba:a6:cb:5f:cf:9a:13:d6:fb:4b:
dc:14:12:63:c0:1b:df:86:69:c9:c4:41:0a:59:74:cc:2c:a7:
63:5c:93:fe:fc:4a:04:a8:dd:75:00:98:12:5d:51:20:50:aa:
fc:09:bc:74:99:16:44:48:9d:20:06:56:9b:10:f9:6f:27:66:
fd:b8:ba:39:ba:47:6f:86:d3:cf:19:b0:9e:14:40:80:44:14:
62:38:35:f8:87:77:13:b8:17:80:6d:b9:d3:fd:00:a1:63:4f:
50:65:a5:b6:b7:38:1b:ff:a8:e8:bf:97:d6:cf:82:9e:83:e3:
3c:8f:68:56:36:dd:c3:21:8c:08:43:60:c1:d9:33:e1:f4:74:
40:cb:99:8c:5f:c8:c7:61:a3:f6:b5:2d:b5:c8:cd:a8:dd:a6:
85:b5:b6:ba:7f:d8:99:d8:1f:ed:1e:24:0b:8b:a2:a3:e9:fe:
e8:ff:00:68:d2:10:81:e8:c4:dd:ed:9a:b9:8e:9d:25:4b:a5:
51:78:b9:d5:82:2b:7a:1a:36:d1:3d:83:4c:45:79:6b:2c:50:
2d:3b:ee:d7:46:81:97:1c:d9:0b:c5:0a:d0:15:47:55:3f:10:
9f:c5:0e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org