Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/3CDh7dRbLNUiu7aiyuNHbKfcCJs.roa
File: 3CDh7dRbLNUiu7aiyuNHbKfcCJs.roa (raw, json)
Hash identifier: yuiQvagxnhIFXZ0+9vBFgenNqNcJTBFGkDjaA2cF25U=
Subject key identifier: DC:20:E1:ED:D4:5B:2C:D5:22:BB:B6:A2:CA:E3:47:6C:A7:DC:08:9B
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3CDh7dRbLNUiu7aiyuNHbKfcCJs.roa
Signing time: Thu 15 Sep 2022 02:41:14 +0000
ROA not before: Thu 15 Sep 2022 02:41:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 192.83.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DC20E1EDD45B2CD522BBB6A2CAE3476CA7DC089B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3d:7e:44:cb:97:86:e1:d0:99:13:89:22:80:
0d:32:03:d1:c7:d0:06:ca:83:f2:62:01:6d:82:80:
a1:23:b1:b7:9b:62:d9:2a:d9:cc:c6:a4:03:6a:36:
d8:65:de:34:84:6e:8f:ba:5f:0e:52:d8:44:54:0a:
18:60:7d:60:f6:00:bf:58:71:3a:97:d3:bb:a4:fc:
a9:3a:17:0f:cf:71:0d:91:e7:5c:48:47:bd:20:22:
98:37:b4:ac:1d:f4:f0:03:ce:0e:ee:fb:61:ac:66:
d8:ce:79:69:ee:ed:f6:a9:13:02:bc:2a:59:e7:eb:
bb:e2:b1:7b:cb:90:d7:77:39:83:28:a2:87:53:e5:
27:4b:9a:84:df:9f:6f:f4:8f:22:5b:a3:d6:94:85:
7c:82:33:bc:3e:50:69:60:03:69:51:69:ce:84:89:
c4:b7:7a:40:b1:2e:ea:d5:b9:dc:9e:33:8c:39:ca:
f2:fc:6e:44:9a:0f:1a:f7:d5:75:8d:90:2f:2b:2c:
b5:4e:d7:45:a5:c9:12:e7:c1:47:e9:3e:e0:82:17:
c9:6d:04:a1:24:ab:45:46:50:7a:69:e1:41:c0:e6:
cc:25:a3:a9:02:91:87:a0:8f:c2:d5:a2:d8:9a:0d:
87:6c:a2:4c:e4:13:09:8c:b3:a1:dc:4f:16:37:87:
87:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:20:E1:ED:D4:5B:2C:D5:22:BB:B6:A2:CA:E3:47:6C:A7:DC:08:9B
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3CDh7dRbLNUiu7aiyuNHbKfcCJs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.180.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:ef:94:45:67:9d:3d:96:90:a8:5b:c0:0b:f7:25:76:c7:67:
11:be:73:68:d2:71:e8:ad:e6:c3:65:7f:df:d9:ad:d3:21:cd:
d5:51:37:26:33:ea:7f:ae:cd:28:5d:07:a2:cb:c8:c7:0f:51:
0c:4e:40:87:51:75:8e:a0:cf:52:8b:54:53:13:dd:c1:8b:46:
90:9a:99:16:09:03:8a:5a:df:0d:07:c5:96:5e:6e:7d:b5:12:
ef:5c:b0:16:70:ed:82:6b:8e:03:1e:58:ae:cf:8a:95:36:8a:
35:81:55:e7:85:23:64:c4:c9:6a:3d:55:9a:11:88:13:d0:d6:
ea:a2:ac:fa:67:2d:f8:28:89:b6:59:2d:4f:74:3f:e9:7f:99:
e5:5d:c0:b4:36:8a:d2:e1:62:e7:08:0f:a7:71:73:81:a9:7b:
7f:2b:c7:39:f3:f0:43:ab:54:72:73:a3:f0:bc:43:d3:38:ac:
37:10:54:fa:10:19:9b:d7:ba:15:5f:0c:44:f4:26:b6:79:af:
b7:6b:5a:d0:4b:9b:44:fc:c2:67:67:6e:ee:5e:f9:93:b7:31:
6c:ed:7e:ae:b6:06:8a:50:0b:7a:46:b7:47:76:bd:5c:e5:56:
49:18:75:11:86:f6:af:c4:d0:24:70:b3:2d:fb:6b:59:2c:4c:
67:9f:66:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org