Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/36m8gYqhlftXrxHkDCN7EawI0tY.roa
File: 36m8gYqhlftXrxHkDCN7EawI0tY.roa (raw, json)
Hash identifier: VZgU7yoCAcjgV3+6pwm2dY4ZFWWeyfsM41XjuZerErE=
Subject key identifier: DF:A9:BC:81:8A:A1:95:FB:57:AF:11:E4:0C:23:7B:11:AC:08:D2:D6
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0AE1
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/36m8gYqhlftXrxHkDCN7EawI0tY.roa
Signing time: Wed 08 Feb 2023 03:11:42 +0000
ROA not before: Wed 08 Feb 2023 03:11:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 59.102.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2785 (0xae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 8 03:11:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DFA9BC818AA195FB57AF11E40C237B11AC08D2D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e1:6d:bc:97:e5:f9:c2:c3:3f:71:03:cf:d0:
99:c3:00:14:07:2c:f6:7e:ca:31:57:af:b0:36:9e:
05:13:88:9f:36:c4:83:50:d6:61:1d:82:01:b8:5e:
aa:eb:2e:5c:ed:c0:09:c0:da:3d:94:0a:73:41:e7:
f5:a0:ec:00:a0:00:a0:41:a5:59:e6:0a:ee:b2:62:
b1:d7:48:6b:bb:a9:86:86:95:55:cc:1e:9b:c7:34:
61:93:de:09:fe:3f:b7:11:25:dd:52:bb:71:64:2b:
a5:bb:d3:e0:ed:d7:55:d6:2f:6a:12:ee:ac:3a:97:
97:87:24:f8:ed:8f:bc:a6:d8:65:fd:f8:00:21:a1:
97:19:53:bb:7f:99:34:42:fd:84:98:0e:b6:74:0a:
f0:01:8f:a6:75:65:47:76:73:bb:35:7a:68:ca:2b:
fe:fc:39:20:1d:7d:5c:fb:8c:6c:06:0d:e6:17:fd:
5a:61:5f:e8:80:e8:0d:15:34:90:75:52:24:29:c4:
b4:7b:5b:93:50:ab:2c:62:30:e1:f5:cc:ce:ea:ac:
ad:e9:a8:88:81:e9:29:bf:78:05:3c:c6:e3:fb:93:
c5:d1:6b:01:c2:e6:a7:bd:85:dc:e5:7a:e0:61:af:
74:e2:56:8b:78:ad:64:c9:96:97:ed:87:7e:30:de:
d6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A9:BC:81:8A:A1:95:FB:57:AF:11:E4:0C:23:7B:11:AC:08:D2:D6
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/36m8gYqhlftXrxHkDCN7EawI0tY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:be:63:7c:20:69:ce:7d:40:4c:91:80:a8:0b:d5:b9:97:38:
f6:f1:88:5c:50:8c:46:6d:62:90:ad:2d:94:9a:bf:40:0a:4a:
90:83:b1:2e:e1:a7:90:78:00:76:37:08:c3:93:18:01:f4:61:
dd:c5:f4:a2:4d:f8:4c:0f:1b:ab:fe:e4:95:00:1e:3c:23:4e:
6a:27:7e:89:84:65:22:42:ea:bf:4b:b7:e0:a6:44:e1:e2:0b:
7d:b1:47:14:52:a9:f6:8b:b4:23:5f:76:af:15:f9:5e:20:82:
7c:53:6c:ee:37:8b:81:07:1d:61:41:d2:4d:d2:25:4f:12:e9:
87:7b:0c:d6:db:df:8f:44:a4:c6:29:f4:11:ab:38:f9:d1:df:
ca:12:07:b0:99:fa:95:ba:e6:29:56:2f:c8:de:ed:5c:ff:ee:
34:38:e7:93:e4:b8:c4:56:9e:b9:4c:3b:a6:64:ac:bc:94:d6:
f1:8e:87:ea:5f:94:37:f3:06:1a:d3:19:b6:83:d4:7e:1e:e2:
7a:d6:71:8d:f8:66:97:24:0e:f5:0e:58:7f:6e:52:4e:c7:7a:
a0:8c:bf:5c:dc:22:05:9a:17:8c:b8:df:3c:04:72:66:3d:b2:
6f:bf:24:05:a4:97:b9:dd:39:38:0a:07:e1:3c:09:5d:d3:c9:
c1:dd:32:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org