Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/obaaxEZMexS8PW5eByiM6P4E7Mc.roa
File: obaaxEZMexS8PW5eByiM6P4E7Mc.roa (raw, json)
Hash identifier: rC6Dd2VYfVpKNram0kOTG7V4LwioHUsZaBL81bh0MuM=
Subject key identifier: A1:B6:9A:C4:46:4C:7B:14:BC:3D:6E:5E:07:28:8C:E8:FE:04:EC:C7
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0971
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/obaaxEZMexS8PW5eByiM6P4E7Mc.roa
Signing time: Wed 29 Sep 2021 02:42:14 +0000
ROA not before: Wed 29 Sep 2021 02:42:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 43.255.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417 (0x971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 02:42:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A1B69AC4464C7B14BC3D6E5E07288CE8FE04ECC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:19:ac:b4:e0:a1:3d:69:55:8a:73:f4:9f:71:
84:20:33:2a:35:a8:14:03:29:31:2e:08:aa:b0:01:
d5:8b:6a:fc:67:0c:8c:74:99:62:80:32:ea:81:f3:
4e:41:e1:ab:2e:83:e0:be:c5:eb:96:b9:1e:c6:52:
23:bf:1b:8a:2f:79:5a:97:66:8d:ec:d2:83:41:69:
aa:d5:f3:e7:8f:4f:ba:6c:f9:b4:84:ef:51:d7:e3:
09:24:f5:16:56:2c:56:07:da:1c:fc:f5:2c:d0:52:
65:94:57:86:9f:8b:c8:0f:71:05:62:db:33:75:56:
9d:f6:04:2a:5e:40:d2:ce:4d:23:0f:dc:71:8e:c9:
2d:44:b2:98:eb:9c:14:f2:d2:6c:9c:e7:21:d1:43:
f6:05:f7:70:05:d7:3e:61:62:72:40:d7:01:2f:d4:
99:72:17:39:8f:7f:0e:58:34:c2:99:93:0e:2a:ec:
65:dd:de:01:7e:c7:4e:54:6d:55:f1:3a:59:21:dd:
cd:7f:15:c9:55:08:dc:f0:34:51:a4:5a:c9:c9:78:
01:20:35:93:de:97:b2:3e:e7:13:96:39:b4:7b:0f:
c1:6f:bf:11:e3:65:95:b2:87:3a:db:e9:8a:87:4c:
04:d0:be:05:ec:1a:ff:b3:20:58:06:63:ca:6c:da:
cb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B6:9A:C4:46:4C:7B:14:BC:3D:6E:5E:07:28:8C:E8:FE:04:EC:C7
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/obaaxEZMexS8PW5eByiM6P4E7Mc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.12.0/22
Signature Algorithm: sha256WithRSAEncryption
49:d5:00:99:b5:64:db:16:a6:32:e6:3f:ca:7c:10:96:d7:67:
04:ea:6a:46:6a:e9:df:bf:18:da:d9:90:11:ea:76:73:79:9e:
21:e5:b5:d2:63:a5:59:54:80:eb:5b:ab:b2:8f:9a:77:3b:e8:
b4:95:b7:1f:5d:62:a0:76:6d:d8:5f:15:21:82:4e:41:03:79:
f9:c0:cf:ee:71:6f:08:3a:b3:66:14:6e:a7:27:be:74:28:51:
72:33:ec:f8:8a:c9:37:2a:e4:87:74:d2:1e:87:5a:a3:8e:4b:
a5:1e:e6:47:e5:74:a5:62:43:06:2c:75:5d:a1:e0:a2:af:63:
bb:8f:0f:44:4c:4b:b8:45:7c:43:c6:25:30:87:56:19:42:dc:
b2:59:9d:f4:d5:46:5e:67:d3:48:3e:cf:6c:71:61:8d:4a:e7:
24:a8:6d:f9:8b:db:26:2e:e9:25:c7:df:31:cf:bf:93:23:4c:
37:51:68:6e:9a:ec:79:bd:c5:c9:1d:58:f7:43:6d:6f:f8:d4:
4f:72:17:eb:b8:34:fa:ae:1a:5a:f5:4f:21:46:ec:c8:f7:aa:
df:ed:02:7d:59:cb:6f:56:67:75:a8:84:c0:92:c3:90:1e:2b:
7d:0f:dc:cb:93:4b:8f:0e:ae:e1:34:69:5d:c8:41:e0:27:b9:
96:b3:35:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org