Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/fhHLNnjtfY1iRwgPnTdEU9NJD2Y.roa
File: fhHLNnjtfY1iRwgPnTdEU9NJD2Y.roa (raw, json)
Hash identifier: sFm9DuEs7mCQbLIlq/kfZbPOxiK3a9B+q17ZL3MLjV8=
Subject key identifier: 7E:11:CB:36:78:ED:7D:8D:62:47:08:0F:9D:37:44:53:D3:49:0F:66
Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Certificate serial: 109D
Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/fhHLNnjtfY1iRwgPnTdEU9NJD2Y.roa
Signing time: Thu 15 Sep 2022 02:42:10 +0000
ROA not before: Thu 15 Sep 2022 02:42:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 202.126.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4253 (0x109d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Validity
Not Before: Sep 15 02:42:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7E11CB3678ED7D8D6247080F9D374453D3490F66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:41:51:09:54:fe:8c:54:b0:6c:24:15:19:d4:
c7:dd:ec:44:4f:4e:9e:8d:40:a7:32:70:df:e2:12:
1c:82:e1:56:e5:c2:75:05:15:b2:3d:d2:a9:26:21:
70:41:a9:f3:80:39:6b:9e:c8:94:b4:fc:11:1c:4b:
77:af:6f:c4:de:cc:73:ac:fe:57:e3:60:02:7b:d5:
f2:95:c8:4d:e9:f0:42:a5:54:ad:05:8e:cf:d2:86:
33:ed:d3:8a:22:82:ee:0c:b4:04:bd:ef:48:e2:82:
dc:0d:ec:e1:ae:7f:b6:69:2f:bd:6e:55:91:25:a7:
4f:d0:ee:71:01:0f:23:35:6c:f5:7d:77:10:37:0e:
dd:1e:30:3c:95:b8:b1:86:53:b9:e0:0f:01:c8:c2:
cb:46:d5:4f:16:7a:b6:9c:51:f5:47:11:a6:7a:9c:
9c:cb:38:e8:c9:ba:7e:1e:9f:78:55:ea:57:c5:81:
a8:eb:55:53:38:f5:87:02:28:ae:90:58:37:06:74:
30:3a:b9:b5:25:66:07:76:e0:d6:fd:d8:8c:4b:ca:
f3:ab:97:44:94:af:f6:e0:7d:25:41:c3:1d:09:11:
bc:71:c2:9c:d2:91:37:29:82:ec:32:30:a5:f4:3c:
7b:f7:14:b6:85:bd:fa:f4:40:33:c0:53:93:5a:ab:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:11:CB:36:78:ED:7D:8D:62:47:08:0F:9D:37:44:53:D3:49:0F:66
X509v3 Authority Key Identifier:
keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/fhHLNnjtfY1iRwgPnTdEU9NJD2Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.64.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:53:f5:3c:b6:87:ea:13:b6:d4:fb:48:30:ce:c4:ed:2c:ed:
f7:9c:bf:b7:ce:a2:73:96:e0:44:bb:96:13:01:34:42:10:fd:
ba:9b:3c:ca:e6:ac:d4:db:53:76:de:01:00:cb:bf:5f:95:bf:
8d:f7:cf:97:51:29:5f:84:8e:0f:3e:1f:80:4b:05:12:7d:54:
b8:da:20:9e:ad:7d:38:d0:a9:28:31:8b:67:f1:c2:fa:11:51:
aa:e6:b2:de:99:9b:32:e1:45:d1:38:4d:24:ee:4f:25:0a:8a:
cd:ff:29:9d:ea:39:5c:53:04:b0:9e:08:37:e1:1e:b4:d0:2d:
1c:21:f6:c8:0f:f7:00:67:d0:b6:5e:81:c6:5b:4d:d5:4d:df:
24:5f:eb:de:7d:53:ac:66:bb:88:7f:7c:d0:ed:3d:5c:db:ea:
5b:68:c4:de:87:49:d2:43:89:63:40:63:18:86:b2:db:ab:14:
ef:cf:5d:b4:ee:4d:d1:8c:b9:e4:ae:a3:01:2c:83:ba:22:bb:
9d:a1:7b:14:97:3e:ef:8a:38:8e:0c:79:95:16:35:45:72:47:
2b:82:e1:db:33:71:13:67:fd:35:20:13:b4:49:61:ed:ce:db:
dc:fe:fa:cd:40:4e:e6:75:10:5a:a8:62:68:97:d1:46:86:ea:
25:d7:a5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org