Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/AhuAzP7Yh-y9alP5A98U3JZ3dvI.roa
File: AhuAzP7Yh-y9alP5A98U3JZ3dvI.roa (raw, json)
Hash identifier: Acc3PeGqKqNgalgMZhDh5MjqaoZCHIAzTyWXDuf9fVk=
Subject key identifier: 02:1B:80:CC:FE:D8:87:EC:BD:6A:53:F9:03:DF:14:DC:96:77:76:F2
Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Certificate serial: 0FB3
Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/AhuAzP7Yh-y9alP5A98U3JZ3dvI.roa
Signing time: Thu 30 Sep 2021 14:22:10 +0000
ROA not before: Thu 30 Sep 2021 14:22:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 202.126.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4019 (0xfb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Validity
Not Before: Sep 30 14:22:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=021B80CCFED887ECBD6A53F903DF14DC967776F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f6:ed:cd:9a:93:8d:eb:28:e7:ed:18:0b:df:
4b:a0:a3:06:77:f8:1a:57:1a:fe:b7:89:ba:77:5d:
f3:01:d5:5f:d6:e9:3e:e9:fd:0b:ed:45:7d:a4:9c:
ea:bc:65:47:ea:1f:1f:86:5d:dd:58:af:34:48:20:
ca:88:05:4a:f7:d3:7b:48:32:b5:1c:fe:51:a8:a7:
31:01:f9:56:67:81:59:9c:77:3a:42:06:19:8f:90:
7b:51:56:21:69:a3:f4:70:26:96:bc:23:bc:6c:6b:
97:1a:32:43:fd:29:b5:98:73:b0:10:6e:73:26:71:
f1:8d:92:3b:8f:fb:e9:18:ab:9e:d1:d2:6b:32:a7:
03:c5:ed:74:1e:d3:c4:3e:08:2f:29:99:8a:a0:6d:
42:5a:3f:97:d6:e2:92:2e:43:0a:01:aa:10:c6:9c:
d2:f4:cc:68:c5:f4:e8:64:17:8e:d2:de:4d:a7:e4:
36:6b:d3:4e:65:c1:74:8a:e7:4d:7d:83:7a:c4:4f:
d3:20:b8:f7:27:14:bc:ae:df:0a:9b:90:c1:9f:b8:
94:74:fa:6e:f9:95:5e:36:76:cc:85:f3:20:e7:a2:
a5:0d:f9:ca:02:8e:0c:7d:d7:b3:a9:f9:65:9e:1e:
a6:63:99:13:d7:31:70:07:41:66:7f:af:70:de:0d:
cf:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1B:80:CC:FE:D8:87:EC:BD:6A:53:F9:03:DF:14:DC:96:77:76:F2
X509v3 Authority Key Identifier:
keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/AhuAzP7Yh-y9alP5A98U3JZ3dvI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.64.0/22
Signature Algorithm: sha256WithRSAEncryption
df:80:c1:4f:6c:87:da:b1:2b:a9:bd:c2:b8:c5:cd:c9:f5:7e:
45:ce:b5:5d:0c:fd:43:63:ff:88:ec:32:60:73:db:67:ba:69:
9e:2b:9d:68:3d:12:03:7b:b3:6f:4e:3c:9a:ef:43:ff:ff:3b:
0a:b7:a5:09:a3:ed:24:18:bb:96:52:38:82:b9:3f:6d:d3:4d:
d4:4d:a0:c5:5c:ec:c7:20:90:63:89:e1:fe:89:ee:74:5b:7c:
5e:7f:06:de:e4:20:f4:13:63:a7:89:ff:4c:ef:71:2f:2a:70:
e0:32:72:c6:0e:da:2b:68:76:85:1d:db:48:63:ba:58:20:f9:
ec:3a:98:14:5a:34:2b:e5:19:2e:42:b3:e7:bf:d5:c9:6a:a2:
92:f2:65:be:4b:fe:c0:c2:5c:cd:87:54:59:12:f8:3c:8f:d9:
13:43:f4:c8:43:7a:d9:8f:b0:3c:fd:f5:6f:66:e7:3b:8a:a9:
3b:9a:4a:a4:19:66:3a:73:3b:df:4f:33:b1:bd:e7:0c:74:cf:
b4:1c:c4:ba:46:dd:95:c7:9d:58:b9:42:1a:fa:e0:1b:79:bf:
cd:6c:94:cc:81:47:e2:34:8c:9d:0c:2a:fc:a1:0c:22:41:bf:
f9:3f:b3:cc:f0:3b:c6:81:55:2d:f6:d1:d7:f3:86:e9:b4:cc:
60:20:40:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org