Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VBxvAiDUIIx7wAwylBYVYzrwon8.roa
File: VBxvAiDUIIx7wAwylBYVYzrwon8.roa (raw, json)
Hash identifier: xLsWf7dgT6NG5ssMKYgTqHUzv+U6o8933dhs/spxUcw=
Subject key identifier: 54:1C:6F:02:20:D4:20:8C:7B:C0:0C:32:94:16:15:63:3A:F0:A2:7F
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 098A
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VBxvAiDUIIx7wAwylBYVYzrwon8.roa
Signing time: Wed 29 Sep 2021 02:52:29 +0000
ROA not before: Wed 29 Sep 2021 02:52:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2442 (0x98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=541C6F0220D4208C7BC00C32941615633AF0A27F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1a:94:98:b3:52:dd:17:2d:41:ef:de:d7:17:
fc:9f:17:9d:30:58:1e:1e:3f:fb:26:55:81:7c:d2:
da:e6:b5:65:b8:23:4c:e6:24:61:4c:60:6a:16:93:
ca:e8:ee:16:01:54:bd:79:c9:06:cc:a4:3b:d6:ef:
a9:d1:b8:48:51:f1:68:42:1b:0b:6a:75:15:95:fe:
39:dc:e2:15:fc:da:ea:55:14:ba:47:1c:cd:ad:b6:
0e:43:3e:ed:4e:68:d5:b2:fb:d5:33:c5:97:ac:d5:
ec:49:2f:3c:96:0f:29:79:5b:f6:a4:0c:55:76:e1:
de:0f:11:90:02:d1:ac:5e:00:7d:8c:f5:d6:0b:72:
34:d8:8e:3e:09:1d:28:06:cf:23:45:75:a3:fc:93:
9c:a1:be:6b:eb:cf:85:a0:6d:5a:3d:2d:6e:fc:92:
c1:d4:94:2f:3c:eb:97:b6:01:bf:e8:d5:b7:6d:45:
72:50:cf:42:3e:3f:37:ce:ce:a5:11:ba:08:8f:15:
c3:cf:d7:3b:c1:c4:44:c1:b4:41:40:95:4e:e1:88:
99:48:95:a6:fc:2b:c6:de:43:e2:73:f0:3c:88:ce:
dd:0d:3b:43:0d:53:39:e9:8e:58:42:38:4a:0e:60:
8d:5d:0a:e0:6b:6d:ca:af:3c:d7:ac:6a:14:d3:91:
d3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1C:6F:02:20:D4:20:8C:7B:C0:0C:32:94:16:15:63:3A:F0:A2:7F
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VBxvAiDUIIx7wAwylBYVYzrwon8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a5:94:c0:e9:3d:31:10:d5:82:18:77:52:e7:91:4e:1c:ae:30:
54:b0:c2:ff:58:00:4d:ae:bd:8e:23:c7:b5:9b:ed:e9:9b:7a:
a8:47:1f:d4:a8:e2:ea:44:02:1e:47:76:d6:38:5d:98:50:fc:
03:66:49:a7:69:1d:ab:07:a7:c0:49:2c:25:51:69:80:36:f4:
4f:df:fc:66:8f:96:de:b7:11:55:3e:f7:7b:09:05:c6:b6:42:
ff:8c:d0:ee:17:2a:e0:bf:67:8b:86:a3:51:26:5a:e4:1f:20:
bc:86:c7:af:83:98:a7:19:8f:2f:ff:04:db:dc:50:a8:30:fb:
5c:14:f1:18:d0:03:e1:88:92:4e:a5:05:1f:15:80:3e:a8:9d:
db:86:d6:73:58:59:2b:0a:15:c5:da:f0:d8:e7:a0:80:42:4c:
ed:93:b3:f9:a5:f0:4a:4e:0a:04:ae:4e:b0:6c:7b:84:b9:39:
ed:99:b6:69:81:cf:76:2f:dc:e0:64:bd:97:be:7d:ac:c9:09:
4b:7e:08:14:f3:54:d2:cf:17:5f:9d:4f:5b:a6:36:77:59:73:
b1:f0:d7:53:4d:a9:9c:12:5b:c3:5f:1d:4e:f7:ce:83:0b:2f:
70:a1:3e:36:ed:1b:a2:d1:74:cf:fb:4c:12:b3:08:9c:0b:6b:
a1:26:a8:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org