Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jzQ0LKVi6XgD4qK5HNVVXZdBAVo.roa
File: jzQ0LKVi6XgD4qK5HNVVXZdBAVo.roa (raw, json)
Hash identifier: 3a9+lj6QhQRjRrGvI645qUf4jf8IPT3LgMAmthOVChI=
Subject key identifier: 8F:34:34:2C:A5:62:E9:78:03:E2:A2:B9:1C:D5:55:5D:97:41:01:5A
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0A7E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jzQ0LKVi6XgD4qK5HNVVXZdBAVo.roa
Signing time: Thu 15 Sep 2022 02:50:03 +0000
ROA not before: Thu 15 Sep 2022 02:50:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 15 02:50:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8F34342CA562E97803E2A2B91CD5555D9741015A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3b:a6:50:76:f7:bc:2e:47:ca:27:a5:f5:a6:
8d:31:e7:8c:1f:ef:e8:eb:8d:cc:b1:85:f5:a8:60:
1b:7c:ba:cc:e1:75:86:47:cd:3d:23:bc:a8:cc:9e:
0c:b0:e4:a6:46:5c:89:26:1d:ba:14:71:e2:df:0d:
0b:95:d9:aa:73:41:3d:78:47:1b:0b:60:d1:e9:9b:
7e:42:88:a7:65:d3:9e:72:82:b8:bc:36:8e:0a:e5:
ed:9a:24:d4:1d:ce:d7:d9:bd:db:c9:70:47:bd:cf:
c9:f3:e7:b4:65:80:08:99:75:e3:f5:6f:58:ba:b7:
f1:43:36:c8:0d:08:14:67:ee:21:b0:a9:c7:2c:37:
9d:8f:e5:5b:a8:4e:8c:b9:62:bd:92:1e:73:24:93:
e4:ee:93:b3:b6:c9:c3:b8:e4:75:fb:65:88:ec:93:
dc:01:a1:48:84:54:8a:10:72:37:38:3b:59:3e:55:
bb:39:68:0b:2c:0d:ba:53:50:85:b1:94:20:2e:d4:
0d:9c:ae:14:01:76:98:e6:c3:a5:8f:c5:23:12:36:
fe:fd:aa:87:2d:fe:e6:9c:b8:21:fd:95:91:2f:18:
49:7c:ad:98:db:cd:93:79:5e:4a:3d:81:5b:3d:f1:
80:97:6e:69:05:c5:57:19:f6:cd:6a:a4:37:55:90:
5a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:34:34:2C:A5:62:E9:78:03:E2:A2:B9:1C:D5:55:5D:97:41:01:5A
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jzQ0LKVi6XgD4qK5HNVVXZdBAVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
34:fe:f6:e6:83:76:f4:27:ab:1c:a5:d8:89:d3:a0:0a:6d:d2:
92:f7:11:8f:69:37:df:01:ed:95:62:f1:c5:0d:8f:d5:24:93:
7e:e7:e3:5f:3c:b4:0e:e5:32:05:c1:e7:5d:f1:38:08:58:6b:
88:38:c3:b5:a2:53:6a:ff:7f:4c:56:8a:f0:4c:c9:db:ea:09:
6d:7d:51:32:4d:e3:5e:4a:df:12:be:bb:37:ed:52:72:b6:a9:
a9:5c:6a:96:39:49:d6:63:07:d4:b2:1b:d2:8e:6f:97:4a:c7:
20:3c:ca:7c:63:9f:50:f6:42:ec:06:27:12:9a:f2:57:07:6f:
d5:78:96:43:f8:ec:15:e8:92:51:0e:5c:3c:d2:df:22:fc:0a:
ba:63:17:95:9d:4a:79:c8:cf:ca:04:8a:4d:1b:ce:0e:70:9e:
af:02:43:40:b1:8b:d8:0d:20:d5:a2:1a:8a:db:8a:31:f6:0a:
5a:0f:de:a6:21:2f:30:1b:a5:fb:63:8a:2c:da:a0:81:59:c3:
10:4b:ff:e8:4d:8e:1f:b8:19:1b:26:40:6d:70:8f:81:7c:c4:
07:81:69:d1:b6:83:19:ab:c5:b3:79:60:72:b8:6f:2c:d8:e7:
b7:06:1d:a6:89:91:1e:25:d9:90:cf:ed:b8:0f:7c:a6:ef:46:
4c:9d:ac:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org