Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ndxYZhnF4LfvKhlsbEEGbz-yECw.roa
File: ndxYZhnF4LfvKhlsbEEGbz-yECw.roa (raw, json)
Hash identifier: DLSiJB6xWag2g0+H1g7bLNbQkFl2BFgU5dvfZ2SP1UA=
Subject key identifier: 9D:DC:58:66:19:C5:E0:B7:EF:2A:19:6C:6C:41:06:6F:3F:B2:10:2C
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 077F
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ndxYZhnF4LfvKhlsbEEGbz-yECw.roa
Signing time: Tue 29 Sep 2020 10:06:21 +0000
ROA not before: Tue 29 Sep 2020 10:06:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 111.235.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1919 (0x77f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 10:06:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9DDC586619C5E0B7EF2A196C6C41066F3FB2102C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:65:2f:67:6e:5a:c7:9e:c8:35:64:b4:80:cc:
2a:9a:dd:49:23:c8:e0:35:92:b2:ab:7e:b1:33:ec:
f0:a0:14:d2:4e:8f:d2:e0:7e:84:b3:5e:df:00:2e:
2a:bd:54:8c:fe:a0:96:09:fd:fe:76:dd:b4:85:40:
40:dd:25:5a:0f:f0:24:cc:d6:e1:8d:9e:bb:ca:f2:
9c:ff:77:2e:74:0b:8b:9d:d4:af:32:b8:7e:37:0a:
ca:cf:ab:24:bb:f8:5b:b1:65:ab:b0:9a:56:49:88:
b4:57:d3:34:8a:79:d9:91:cd:56:93:fa:f1:d9:14:
1c:2d:4a:a1:28:d8:a8:af:17:cf:27:32:b5:be:27:
9f:43:6a:e3:0c:da:18:1c:e6:8a:29:fa:1a:b7:73:
85:a3:b5:cf:ba:dd:3d:d8:99:b8:53:bc:51:c2:ba:
98:fc:99:87:e0:d8:80:55:91:7e:67:af:84:69:39:
7c:61:a0:89:07:5c:b3:30:6f:b4:53:25:8f:1e:e8:
ec:19:0b:86:5f:7a:0f:62:42:79:3b:13:3d:d4:0b:
e4:9e:86:0a:ac:34:b4:90:f7:c3:4e:a4:90:a5:2d:
f5:fa:7c:b4:8f:af:83:51:1e:d1:84:83:15:88:b5:
20:4d:00:86:c6:00:33:5f:83:94:66:9d:32:93:b2:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DC:58:66:19:C5:E0:B7:EF:2A:19:6C:6C:41:06:6F:3F:B2:10:2C
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/ndxYZhnF4LfvKhlsbEEGbz-yECw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.235.192.0/18
Signature Algorithm: sha256WithRSAEncryption
ba:83:41:2f:4d:80:b0:de:c6:1f:f6:00:2e:ec:6c:61:8c:4c:
8e:ff:11:df:85:b5:84:ad:b0:91:ef:3c:31:7c:07:86:9a:06:
36:20:83:fc:8b:a0:21:20:0b:db:30:1e:8b:29:f8:74:45:42:
c9:0e:04:a8:e0:77:38:de:0b:c9:8e:11:7e:22:2f:49:61:79:
de:fe:76:6e:13:86:0b:27:24:61:59:1d:52:18:80:5e:a6:e6:
17:bc:5c:52:90:e1:10:79:1d:d9:c3:59:9a:ce:bc:99:12:fd:
51:13:e5:1a:3d:79:06:69:84:d7:22:31:ac:45:bf:c4:aa:db:
cd:0a:63:bb:41:4c:8f:9c:00:f5:6f:8f:6e:e6:79:47:08:a3:
51:40:47:1e:6f:e4:b8:d2:33:c6:fe:67:b3:ed:54:d1:d8:8c:
f6:3f:56:6a:01:4c:ec:f9:0f:5e:eb:33:a5:f0:c1:aa:28:66:
ad:f4:64:76:b8:55:87:81:3d:c7:b1:10:0d:73:c5:3e:8b:07:
b0:b2:5e:1c:c5:c0:11:6b:ec:35:7f:10:67:ad:ca:c4:49:c5:
7a:ca:a0:5a:25:e0:a6:df:36:3c:14:c1:1e:9b:36:a8:76:a1:
5f:c7:33:f9:cf:25:2f:13:80:aa:b5:4e:25:78:7a:d7:45:35:
a0:f1:f9:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org