Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/dNeygWEuqVVXAhRqVQ5ufdU8Ptc.roa
File: dNeygWEuqVVXAhRqVQ5ufdU8Ptc.roa (raw, json)
Hash identifier: Si+Uk5vSjzH5LaWBuTC2aHd+8dHKpWIhkw5DE1j8674=
Subject key identifier: 74:D7:B2:81:61:2E:A9:55:57:02:14:6A:55:0E:6E:7D:D5:3C:3E:D7
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08E1
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/dNeygWEuqVVXAhRqVQ5ufdU8Ptc.roa
Signing time: Sun 07 Feb 2021 11:53:58 +0000
ROA not before: Sun 07 Feb 2021 11:53:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 116.241.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2273 (0x8e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=74D7B281612EA9555702146A550E6E7DD53C3ED7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:cf:3a:c9:69:4e:3b:94:4e:e6:48:12:61:
e3:4d:87:cd:2a:8f:7d:f5:7e:76:0e:4e:c5:2f:d8:
8a:70:a9:69:7e:6d:ba:6d:15:8a:6d:22:67:be:7a:
11:8f:40:d8:db:a8:ac:80:c0:75:3b:47:ce:69:9d:
85:b5:15:41:26:49:90:4b:a7:ea:a4:44:b9:f6:d6:
e4:b8:59:8f:06:92:d6:3f:92:a2:83:2e:b1:d6:59:
12:95:8a:f9:e6:d2:c6:86:ff:86:b2:06:19:0c:b7:
96:0d:6f:2a:e1:db:de:1b:e0:51:39:32:2c:eb:b4:
72:72:94:19:e6:14:0c:a0:a9:ab:48:c8:ca:55:f3:
94:26:0c:d9:c8:97:4c:35:8a:d1:37:7c:2a:90:62:
a7:68:3d:5e:8e:1b:a7:79:4c:e2:d0:35:d2:ff:fd:
4c:4d:51:a0:0c:ae:fe:5d:b0:af:96:15:75:82:ae:
8e:a7:46:d5:03:bd:df:02:ae:f9:95:e2:9a:22:c2:
70:55:e2:3d:47:06:6b:11:08:85:07:b4:8a:f8:7f:
5e:82:18:50:a7:65:95:01:ac:61:e2:f4:e1:ab:bf:
e3:c6:8a:27:17:c2:b2:a0:4b:12:b4:92:bd:47:51:
19:80:2b:96:55:17:b1:f7:7e:f7:15:ac:eb:dc:9c:
d1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D7:B2:81:61:2E:A9:55:57:02:14:6A:55:0E:6E:7D:D5:3C:3E:D7
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/dNeygWEuqVVXAhRqVQ5ufdU8Ptc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.241.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0a:a9:75:4c:46:46:90:b9:02:4e:f4:05:f4:e9:e7:24:77:cf:
ce:30:20:ee:e3:0f:e7:07:46:e0:bf:75:dd:45:4b:ee:99:5b:
57:ac:95:0d:9d:fe:ca:4c:9b:55:2c:86:3a:10:d6:31:fa:10:
32:18:f7:ae:e9:b8:e6:34:5f:03:6f:c1:8c:16:1b:f5:a2:c1:
5a:42:e9:c3:cf:3c:ac:df:f9:ea:2b:41:80:11:6a:c5:76:f6:
92:53:65:fb:d7:a8:b7:23:cf:94:0a:d8:93:1f:ff:9e:66:e4:
1d:0a:e1:c6:3b:f8:4b:4e:58:bb:fb:84:28:f3:b3:a2:ef:6c:
59:dc:7c:be:25:30:c1:c6:b2:67:dd:9b:16:88:a8:88:30:45:
a4:d4:f3:33:3e:7c:5a:7d:28:f5:94:e5:9e:46:65:e0:e0:3e:
6b:72:d1:38:85:43:e8:31:a8:34:b1:fc:34:5b:33:48:c1:04:
6d:be:60:9a:f3:d2:0f:71:f9:27:08:74:59:61:c1:cd:8e:34:
c9:83:76:81:03:94:51:b3:89:57:6b:2b:76:b1:ed:26:29:54:
43:c2:5d:dc:c4:20:c7:d4:93:bb:91:9f:65:34:17:b0:e4:e2:
a5:71:4c:e5:e6:7d:64:a6:db:44:c0:02:d9:c8:40:0c:be:76:
51:78:8c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org