Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/Qc3iqCSDQwOtUpCZFt60_p7_fsg.roa
File: Qc3iqCSDQwOtUpCZFt60_p7_fsg.roa (raw, json)
Hash identifier: GgO28u9kccUnPG+ecQBcKONLO/uwY6WWYTcJKDTB/So=
Subject key identifier: 41:CD:E2:A8:24:83:43:03:AD:52:90:99:16:DE:B4:FE:9E:FF:7E:C8
Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Certificate serial: 0F13
Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Qc3iqCSDQwOtUpCZFt60_p7_fsg.roa
Signing time: Sun 07 Feb 2021 12:48:24 +0000
ROA not before: Sun 07 Feb 2021 12:48:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 202.126.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3859 (0xf13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Validity
Not Before: Feb 7 12:48:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=41CDE2A824834303AD52909916DEB4FE9EFF7EC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:64:f6:92:ce:72:5c:97:c3:2b:61:fe:b8:3b:
b1:21:14:38:22:dc:7e:7f:17:36:ba:d6:66:fe:2a:
4f:46:24:d8:67:5c:ac:be:94:0b:7f:db:30:f9:53:
20:ce:66:f0:9f:6f:8b:be:b5:a7:eb:a7:32:51:bf:
00:04:53:b8:27:3a:a4:8a:c5:bf:7d:b6:c5:d2:54:
46:d4:0c:ec:ca:f2:82:dc:81:18:9d:21:0a:da:7e:
8a:24:22:6e:e4:f1:ce:79:dd:75:2d:bb:29:b6:d1:
20:27:b5:1f:73:48:8d:6e:9e:d7:44:95:4e:fa:e2:
df:16:40:79:52:6e:93:26:07:0a:b3:30:36:97:75:
ce:f3:dc:e2:25:01:4d:5a:5d:90:58:38:ca:43:1c:
06:47:70:09:3d:68:9e:dd:ed:35:fa:bb:30:c9:17:
3a:13:ea:79:29:fb:98:65:8d:2c:2c:a3:33:c7:ab:
bc:41:73:b1:9b:0f:11:48:8d:84:3c:45:57:fc:3c:
f1:87:a2:8f:06:32:df:b9:ee:54:3b:9d:a1:1b:80:
a9:93:57:43:30:bf:95:f9:ef:90:a1:ba:e7:de:bb:
4a:ac:f9:23:4f:7e:42:98:32:97:9a:dd:e6:a2:a1:
d4:82:cf:ca:4b:2f:8f:f6:53:84:9a:14:b3:ee:28:
5c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:CD:E2:A8:24:83:43:03:AD:52:90:99:16:DE:B4:FE:9E:FF:7E:C8
X509v3 Authority Key Identifier:
keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Qc3iqCSDQwOtUpCZFt60_p7_fsg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.64.0/22
Signature Algorithm: sha256WithRSAEncryption
13:57:34:43:fc:e8:ce:f4:5a:be:6c:2f:90:f0:7d:fc:48:b6:
c6:64:44:e1:84:04:be:e9:e3:ca:74:6f:02:1f:4d:b1:09:17:
e9:78:2a:29:f1:23:86:b3:f9:14:b4:dc:d4:2f:2f:f8:fa:30:
20:e8:e0:63:79:bf:ab:f6:fd:18:0f:2f:e1:51:b6:10:c7:3f:
f8:a8:4b:ee:01:34:dd:74:b0:56:46:57:05:92:e2:44:19:98:
9f:3a:df:54:26:c5:2d:14:15:1d:85:e7:5b:80:65:ef:cb:6f:
ec:07:e4:3e:bd:8c:15:3c:5e:f4:23:1a:fa:3c:74:aa:f2:4d:
05:97:d2:e6:be:0e:0d:3a:8c:ce:6a:f4:d0:bb:56:c7:e8:a2:
12:26:0e:02:bc:1f:84:b7:a4:b5:ba:f3:03:e3:95:15:07:f6:
be:40:51:cb:0d:e5:85:73:93:3e:45:37:dd:1f:52:37:a5:9b:
1b:c8:18:f8:92:71:da:0b:fb:b7:b1:bf:f3:b6:6a:6e:39:e4:
63:3a:0b:f9:cb:7e:d0:87:b3:6f:0d:22:24:56:dd:7e:23:38:
47:37:79:f0:12:15:f7:76:7d:e5:07:7a:15:bd:06:3e:36:5b:
2a:ad:97:ae:e9:75:fd:78:2b:8a:b5:1f:1c:dd:e0:d4:72:49:
02:a0:7d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org