Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/wL9TqwPvX_bCTjZa2crQKLndwXA.roa
File: wL9TqwPvX_bCTjZa2crQKLndwXA.roa (raw, json)
Hash identifier: VnWFH882DgvxByy3AXdhlGo+jHSDKhHzfXwdaMwecos=
Subject key identifier: C0:BF:53:AB:03:EF:5F:F6:C2:4E:36:5A:D9:CA:D0:28:B9:DD:C1:70
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 08CD
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/wL9TqwPvX_bCTjZa2crQKLndwXA.roa
Signing time: Sun 07 Feb 2021 11:46:59 +0000
ROA not before: Sun 07 Feb 2021 11:46:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 111.235.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2253 (0x8cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 7 11:46:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C0BF53AB03EF5FF6C24E365AD9CAD028B9DDC170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:3c:da:d1:ba:a8:e1:e2:98:64:20:00:6e:b3:
80:c7:55:eb:8f:72:bd:42:d8:bf:71:74:dd:c3:a9:
1e:47:0b:fb:fb:0e:82:82:ee:09:ad:3e:e7:db:74:
4a:09:b7:ce:ac:86:66:84:d2:8b:40:f9:d0:8e:cb:
f8:de:ca:5e:0c:ed:c6:ce:29:6e:9d:bc:f9:5b:d9:
7a:58:71:fd:66:2b:6b:66:8c:f3:74:0c:7c:c6:89:
86:9d:64:75:2b:b0:e4:93:5b:ff:2d:45:1b:86:11:
92:ad:d5:76:d0:05:4d:63:6e:54:c0:ca:db:9f:3c:
ea:bd:89:49:0e:68:21:c9:a6:0f:0e:d1:24:11:cc:
15:5b:f8:37:19:b9:f2:ae:42:db:81:8c:55:cc:50:
0c:32:96:9e:5b:36:52:d1:42:f4:e9:97:cf:e1:60:
15:50:41:ed:de:e0:95:b0:3a:15:2e:4f:d2:ef:b0:
ef:9a:54:87:2d:86:9e:43:78:56:1b:d4:79:9d:1a:
a3:6f:68:dd:23:e4:60:63:76:05:0f:35:46:bb:5f:
fb:a2:9d:d6:22:71:b3:9b:19:95:d9:22:70:c4:fc:
3b:77:2b:2c:c1:13:10:4b:15:bb:fb:e4:25:05:ac:
75:ee:43:9f:52:ce:7f:b9:91:bb:42:6d:a2:d6:72:
68:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BF:53:AB:03:EF:5F:F6:C2:4E:36:5A:D9:CA:D0:28:B9:DD:C1:70
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/wL9TqwPvX_bCTjZa2crQKLndwXA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.235.192.0/18
Signature Algorithm: sha256WithRSAEncryption
28:f1:63:02:0d:ff:4e:1c:4d:12:06:23:a1:02:01:51:18:1d:
cd:70:95:91:a4:e3:c7:1e:d7:65:b7:da:34:43:71:48:c8:b4:
e1:19:2b:9e:64:17:87:07:21:31:28:16:55:93:df:e3:e8:f0:
a2:82:0c:7f:bc:5d:83:2a:f4:e5:bd:9b:5f:ba:81:b5:9e:0e:
86:51:44:af:8b:0b:bd:a6:31:25:53:cf:a8:14:b7:69:97:76:
bb:18:4e:9a:9c:db:75:df:57:a8:f2:7f:12:0d:6a:da:0d:27:
de:51:b4:98:56:4f:22:1e:6d:6b:7f:9b:5f:b9:0e:a3:de:76:
fd:5b:f8:f6:ad:4b:5c:1b:24:ea:9b:87:65:3b:fd:28:5e:b5:
2f:d2:d1:6f:be:75:4d:a9:ab:95:2d:75:14:71:38:da:c1:05:
ee:29:e2:b3:80:d0:6a:7d:f7:c9:1a:63:0f:54:ed:51:95:7a:
cc:b6:f3:3e:e3:83:01:5d:55:2b:e1:d7:eb:49:84:ad:af:3b:
48:48:aa:38:79:56:35:87:24:95:d5:dd:3e:89:42:c3:0d:00:
62:e1:63:9f:76:da:29:bc:d3:73:25:5b:cc:e8:cd:ce:93:70:
06:20:b0:14:e4:54:62:e7:b6:ca:50:3d:ec:89:bb:1a:d2:b0:
a6:9c:61:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org