Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rYdHYAs0BYTki4C4km0TfgFLEX4.roa
File: rYdHYAs0BYTki4C4km0TfgFLEX4.roa (raw, json)
Hash identifier: vDX86Zchl7Jb+pF4sQKjK/+P+H0n8VGU53qK4kn3Mjg=
Subject key identifier: AD:87:47:60:0B:34:05:84:E4:8B:80:B8:92:6D:13:7E:01:4B:11:7E
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 098C
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rYdHYAs0BYTki4C4km0TfgFLEX4.roa
Signing time: Wed 29 Sep 2021 02:52:30 +0000
ROA not before: Wed 29 Sep 2021 02:52:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 123.0.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2444 (0x98c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AD8747600B340584E48B80B8926D137E014B117E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:01:64:36:8f:8a:10:3d:eb:f3:9b:1a:8e:
6e:a1:85:2f:4d:89:1d:ee:4f:e1:0f:74:af:6f:7b:
d9:ae:87:f1:af:ee:f4:ed:67:5b:ff:f5:b4:da:33:
c1:bb:58:6b:e7:f8:f4:52:e1:b2:cb:d9:b8:2c:c5:
fe:49:76:58:3c:16:e5:6c:1d:ef:65:1e:ca:6f:5e:
6f:f6:1b:f6:0f:c1:66:9b:1e:d5:bf:08:eb:d5:28:
29:55:d3:b4:10:2c:7f:de:f5:8d:69:8f:32:c0:19:
f6:59:c3:00:a0:61:2c:09:c6:02:12:14:2a:93:1b:
3a:66:95:af:70:97:66:a7:2e:91:c7:c6:c6:26:56:
1d:dc:1b:3c:f9:30:20:bd:7c:3f:9d:be:12:01:dc:
48:d9:82:5b:2a:16:fc:61:c1:32:3a:35:1a:47:11:
9b:ed:d2:ce:51:d7:22:a8:7e:83:1c:f9:77:09:0c:
57:a6:1c:a6:a4:84:92:df:bc:ad:f5:48:3d:76:17:
89:cc:40:69:0b:65:43:05:ba:f9:e8:da:61:b4:de:
e8:9d:94:1f:88:4d:df:e2:4e:0e:e3:d1:dd:18:c5:
1c:f5:a0:23:c7:3e:81:a4:3d:e4:5e:d8:27:bf:06:
9e:f1:d2:2b:04:eb:cc:11:c1:a1:69:e9:5c:39:ed:
83:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:87:47:60:0B:34:05:84:E4:8B:80:B8:92:6D:13:7E:01:4B:11:7E
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rYdHYAs0BYTki4C4km0TfgFLEX4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.192.0/18
Signature Algorithm: sha256WithRSAEncryption
40:58:f0:bd:cb:cd:b3:f9:80:98:f1:cf:87:fc:6a:8f:a1:bd:
0e:63:5c:8b:a7:ab:75:98:42:be:55:74:44:9a:c6:b3:6d:2e:
d3:b0:6c:34:7c:d9:7e:89:95:0f:c6:b2:86:84:60:a3:e0:af:
cd:7e:c0:27:51:51:34:e3:cc:d3:5c:47:5f:03:cd:28:d6:88:
9c:f9:b2:dd:85:54:81:0b:d4:54:7a:17:ef:a9:91:7f:4b:49:
c3:f5:2f:e7:4b:96:ee:d1:65:ff:9a:ac:c4:88:d3:a6:0e:bf:
8b:30:55:a1:c6:88:60:14:f2:0f:bb:0c:0f:cf:ce:24:79:98:
c6:56:b3:97:5d:eb:6d:8b:e5:dc:b2:8c:19:ac:da:30:2a:58:
23:b5:81:0f:75:01:78:d2:d1:13:8b:35:3b:b3:bd:b9:28:f3:
04:72:ce:a3:5f:1b:43:ae:29:a7:20:9f:a4:40:c3:49:fa:ab:
99:61:ff:c1:9f:bb:c9:b0:38:c2:4e:71:27:b2:0b:39:ee:e9:
25:d4:48:c1:90:6d:b5:0a:a0:d2:58:c1:80:82:c6:fb:66:a2:
19:9b:bf:1a:a1:01:ea:04:17:6a:d3:9f:a9:6d:d0:94:46:9e:
52:a4:ee:d7:7f:31:57:36:0d:bd:6e:20:db:f3:38:8f:29:92:
9d:d8:36:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org