Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ZO5-LIZvzGjQ8JYcwQVCChbRzkI.roa
File: ZO5-LIZvzGjQ8JYcwQVCChbRzkI.roa (raw, json)
Hash identifier: 51qOZ/kn86D9xFFRBLN8pmWLd5mq/7G/Re+coUzWxpk=
Subject key identifier: 64:EE:7E:2C:86:6F:CC:68:D0:F0:96:1C:C1:05:42:0A:16:D1:CE:42
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A96
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ZO5-LIZvzGjQ8JYcwQVCChbRzkI.roa
Signing time: Tue 20 Sep 2022 05:58:52 +0000
ROA not before: Tue 20 Sep 2022 05:58:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 43.255.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2710 (0xa96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 20 05:58:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=64EE7E2C866FCC68D0F0961CC105420A16D1CE42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2e:c8:e0:9d:ec:ae:52:d2:26:a4:e2:20:5a:
cf:4d:77:f8:64:76:79:82:db:9f:00:70:3c:e1:36:
67:cd:a7:5a:23:7b:13:d4:68:c0:47:54:77:d4:ed:
49:b5:02:1a:aa:c0:a7:a9:cf:e3:d7:d3:20:d2:52:
b7:73:99:f8:de:8b:ad:ad:23:95:7d:f4:85:e7:74:
dc:fb:38:c9:4c:76:71:eb:23:c4:a0:8b:41:38:9e:
1d:14:aa:ac:71:82:70:3e:42:f6:24:f9:ea:e9:ef:
c8:86:e4:d9:b9:c1:0c:55:42:3d:05:37:19:5f:e8:
21:72:a9:5f:1d:52:81:9b:bb:d1:cc:0e:b4:09:65:
15:9f:cd:a9:e2:7b:85:56:d9:c8:07:c9:2f:d3:73:
3a:ee:dc:11:01:0e:31:52:da:db:ef:41:9d:e5:42:
a2:ad:62:e9:41:da:2b:96:26:8a:8b:87:ca:ec:83:
0e:86:77:0a:a4:2f:bc:44:5c:cc:c8:64:8b:24:8f:
b6:73:3d:a5:33:ff:17:78:d2:39:7a:0b:e1:1a:15:
20:71:85:de:be:34:57:0e:d9:fd:77:dc:11:3d:18:
b6:81:56:73:52:59:ae:a5:2b:19:8e:5d:1c:98:8d:
ae:b0:7a:51:33:ff:d4:03:0f:af:2e:ac:3c:64:82:
6f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:EE:7E:2C:86:6F:CC:68:D0:F0:96:1C:C1:05:42:0A:16:D1:CE:42
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ZO5-LIZvzGjQ8JYcwQVCChbRzkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.12.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:34:b9:76:15:48:87:fd:fc:73:df:6f:d1:f8:1d:fd:9d:c7:
e5:dd:42:91:d0:5a:e0:eb:28:44:80:a4:50:5e:5a:b1:33:27:
0b:b2:4f:30:26:3e:ba:5c:71:cf:a4:bd:1c:29:ce:6f:c4:ee:
da:78:ec:ff:88:e6:2e:79:bd:ee:97:81:3f:af:9c:05:05:e4:
8b:0f:8a:f1:cf:4d:d6:fa:f8:57:a7:37:7c:59:da:23:86:dc:
b9:92:80:b9:7a:45:2f:dc:de:e1:1e:e0:aa:a5:e0:b9:4d:2c:
78:73:ca:c4:96:8d:d2:20:43:ac:36:4f:20:22:69:0a:11:fb:
1a:aa:1c:c6:d9:b9:af:35:21:01:3d:03:e6:66:32:0d:ec:c0:
57:12:4b:6a:d9:2e:4e:ef:e4:ac:c4:77:49:af:c6:df:18:bb:
eb:e5:94:2a:11:eb:45:84:d2:4d:b9:57:37:9e:fa:bd:c6:8d:
cb:57:87:ed:78:f0:68:74:16:de:32:fb:9c:be:be:47:59:6c:
ce:7b:43:a6:92:e4:a2:7a:ce:07:5d:10:c4:e9:b8:a3:68:ff:
18:95:86:01:ee:9c:91:23:29:68:dd:7e:2b:04:a8:90:17:87:
2e:61:df:e9:c1:3d:c6:d0:4e:eb:22:e8:5f:df:ca:2c:ab:f0:
92:8a:6d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org