Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/nS7NJwvR_2qkuDaURHPQUktfdMM.roa
File: nS7NJwvR_2qkuDaURHPQUktfdMM.roa (raw, json)
Hash identifier: YxRvN/r8sq1zgocBKAQhL13TRMOnGnaz9y1MbBlusRE=
Subject key identifier: 9D:2E:CD:27:0B:D1:FF:6A:A4:B8:36:94:44:73:D0:52:4B:5F:74:C3
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 077C
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/nS7NJwvR_2qkuDaURHPQUktfdMM.roa
Signing time: Tue 29 Sep 2020 09:59:54 +0000
ROA not before: Tue 29 Sep 2020 09:59:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1916 (0x77c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 09:59:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9D2ECD270BD1FF6AA4B836944473D0524B5F74C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fc:37:08:09:48:5e:02:eb:23:29:19:7a:e3:
ac:17:14:ce:e5:95:59:ec:26:ec:4a:54:53:a3:4c:
bb:be:5a:cd:c1:28:7c:c7:ce:a2:8c:25:2d:1e:29:
b3:0f:e9:a3:9e:de:ac:83:09:0b:37:3e:5c:16:b4:
7d:5a:58:04:72:4b:cd:b7:f0:87:0f:5d:ed:97:00:
f6:ba:89:14:62:98:d7:c2:e7:69:27:c5:76:03:d6:
37:7b:70:b7:f2:7d:57:bf:ed:4f:43:44:d3:c0:f7:
1f:fb:ec:25:a6:bc:5f:3e:ac:60:7a:e3:1a:94:49:
93:d5:18:1a:0d:cc:a2:5e:f1:00:c9:04:21:23:22:
b7:39:b1:3c:9c:49:2b:f3:17:c7:fb:d1:ab:c9:49:
29:33:07:0c:83:ca:8c:30:3a:b0:6b:13:c4:2a:08:
a0:0b:5b:72:61:f4:e9:be:98:6c:dd:22:31:8a:be:
34:34:cd:ce:7b:7c:c4:4c:03:5e:48:93:36:7d:1e:
55:88:a1:7b:9d:3c:e9:88:da:6a:99:e7:b7:0b:e6:
a9:df:ec:e8:c0:04:83:91:36:7a:c1:b5:ea:66:62:
8a:ac:c9:50:9b:37:6b:9e:3d:48:96:47:8a:e5:c0:
a0:25:a0:93:e0:e0:b8:31:39:39:7d:d8:91:aa:88:
74:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2E:CD:27:0B:D1:FF:6A:A4:B8:36:94:44:73:D0:52:4B:5F:74:C3
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/nS7NJwvR_2qkuDaURHPQUktfdMM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2c:33:d5:5c:66:bf:af:31:eb:a8:e6:f2:ed:e6:f1:bd:94:e6:
0c:1a:0e:bf:9a:72:9b:2a:64:63:fb:94:9a:99:4b:3e:1a:d8:
ec:00:7d:69:25:d6:89:a3:cf:82:e9:3c:71:1e:d8:05:33:c1:
14:f5:38:d5:52:54:9b:c9:56:fa:97:88:ce:e8:c0:99:52:b4:
37:82:dd:a5:a8:80:9d:55:8c:d3:a6:29:ab:f9:2d:9c:a0:c9:
2b:53:18:1b:c5:3b:6b:6f:47:02:8e:d9:fb:c0:e1:c2:c3:3a:
c8:a6:e9:9d:dd:36:65:57:56:e0:0a:09:e8:91:1b:e2:3c:cd:
f0:0e:3f:67:a0:47:7a:fa:c1:22:23:1f:b2:79:3e:3a:72:75:
95:aa:6c:93:a3:60:05:df:a2:e1:c3:5a:d2:22:4e:63:d2:3a:
a3:04:21:21:8d:df:b6:5a:5b:5e:2b:0e:7d:98:f2:ee:27:cc:
06:69:a8:c3:5f:51:88:dd:62:a9:44:c2:83:12:c0:21:0c:3e:
93:f7:35:ad:7d:85:e7:d9:f2:04:6f:24:06:07:fe:60:a3:e6:
75:76:90:09:d8:a6:bd:b7:de:60:2c:a9:08:84:b1:93:ed:24:
08:c7:87:28:b9:e7:7e:84:4f:88:48:df:cc:be:94:97:df:92:
1c:42:fe:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org