Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/U9gUS5k6hFhYtNwZgm8Sjlhst2s.roa
File: U9gUS5k6hFhYtNwZgm8Sjlhst2s.roa (raw, json)
Hash identifier: 2LUaz0Yo7XdhHGK5zqHRZK74dUDpNSZf2EUoEykvFZ0=
Subject key identifier: 53:D8:14:4B:99:3A:84:58:58:B4:DC:19:82:6F:12:8E:58:6C:B7:6B
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08E3
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/U9gUS5k6hFhYtNwZgm8Sjlhst2s.roa
Signing time: Sun 07 Feb 2021 11:53:59 +0000
ROA not before: Sun 07 Feb 2021 11:53:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2275 (0x8e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=53D8144B993A845858B4DC19826F128E586CB76B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7c:9d:05:15:b4:31:c1:f1:6c:4e:27:4c:26:
84:8e:b7:18:00:6d:06:89:7d:dc:38:77:0e:08:e2:
fb:fd:bd:a3:4b:e0:61:2b:08:69:7d:2c:0c:45:99:
fd:4f:09:ad:8d:f0:7a:10:dc:d1:05:22:01:f1:63:
fe:29:e1:30:98:ec:7d:4f:e4:3a:ee:2a:5a:8d:6b:
2b:f8:4a:a8:9c:b1:98:38:35:1c:5b:b5:19:6a:18:
85:c9:39:d1:3e:0d:e9:f3:82:6f:7a:c1:a0:4c:84:
57:d2:bb:5d:86:34:00:19:4c:1b:df:2b:9f:d1:19:
71:f6:ce:da:cb:ec:c7:43:19:03:6b:9c:0b:d6:77:
85:54:cd:17:c3:aa:79:5f:2c:81:df:6c:64:b6:42:
77:bc:5f:9c:d1:d6:4f:61:4c:b8:e9:96:e2:01:b9:
72:d7:70:d7:37:57:bb:55:8e:a2:76:47:c9:78:09:
57:0a:c3:c5:39:28:5d:50:a1:36:6b:fc:99:4f:b9:
23:3a:9e:39:a8:9f:5c:7c:1f:55:4d:8f:e3:99:51:
ae:cb:45:d8:af:7b:37:b9:2e:11:6c:59:3f:79:f4:
a7:a9:c7:65:d0:95:8f:f2:0d:d4:f4:f9:aa:4e:ff:
bd:06:28:8a:44:86:8e:d7:91:3d:a5:86:30:49:b7:
57:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D8:14:4B:99:3A:84:58:58:B4:DC:19:82:6F:12:8E:58:6C:B7:6B
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/U9gUS5k6hFhYtNwZgm8Sjlhst2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5b:73:52:f4:5a:a6:77:52:e9:40:8b:33:95:ea:48:a4:96:1b:
ed:8f:e7:2c:3b:32:76:35:57:8f:dd:80:75:61:cc:f3:fa:63:
2f:de:bf:13:7a:1d:fa:57:17:fe:1d:4f:a4:06:16:b7:ab:57:
8b:37:cb:a6:d6:e2:ff:28:89:f9:5d:35:4d:5c:16:83:fd:8c:
03:7c:50:dc:22:1b:24:ea:d5:a4:5a:17:67:51:89:a5:48:94:
d1:3f:36:61:ba:e0:49:01:1d:39:cf:0a:0d:21:f4:d6:a3:0f:
86:f9:71:1f:41:82:f9:55:be:cd:00:cb:30:2e:fa:a6:b8:91:
95:18:e6:d7:ab:a5:46:da:3b:57:9b:b6:18:ce:b3:37:2b:a2:
7b:dd:12:48:55:b4:71:a8:1a:68:54:da:c5:c0:5e:bc:a5:68:
17:84:ae:47:fa:b1:1d:e2:92:4d:96:85:b1:c8:52:a2:34:b4:
80:08:cf:3a:cb:2a:5d:f6:8c:4e:d7:41:00:0d:e0:4e:93:c4:
4d:d8:5b:ec:f9:98:0d:fe:6e:c2:59:1f:67:43:d5:1d:dc:39:
d8:9d:d1:0f:4f:91:8a:13:9e:4c:11:a6:98:7c:51:dc:58:1e:
03:c0:09:a3:70:56:b1:37:1f:fd:d2:bb:2e:c0:55:e6:46:1e:
c2:54:fe:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org