Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TTC/1c_cpQ5-Nqy1-w2_JK6ZThsnwwY.roa
File: 1c_cpQ5-Nqy1-w2_JK6ZThsnwwY.roa (raw, json)
Hash identifier: Mmp3nmnR0IlmEhe5jA7mBTgSWysGT81VHF5dLiZCidA=
Subject key identifier: D5:CF:DC:A5:0E:7E:36:AC:B5:FB:0D:BF:24:AE:99:4E:1B:27:C3:06
Certificate issuer: /CN=623B7714A03827FDE7D232BD8F4E01A29FB471DE
Certificate serial: 0A0D
Authority key identifier: 62:3B:77:14:A0:38:27:FD:E7:D2:32:BD:8F:4E:01:A2:9F:B4:71:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yjt3FKA4J_3n0jK9j04Bop-0cd4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TTC/1c_cpQ5-Nqy1-w2_JK6ZThsnwwY.roa
Signing time: Wed 26 Oct 2022 03:40:36 +0000
ROA not before: Wed 26 Oct 2022 03:40:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63900
IP address blocks: 115.42.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2573 (0xa0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623B7714A03827FDE7D232BD8F4E01A29FB471DE
Validity
Not Before: Oct 26 03:40:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5CFDCA50E7E36ACB5FB0DBF24AE994E1B27C306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:18:a1:d3:1b:2c:b2:f3:9a:70:5d:63:c3:ec:
75:1c:74:7e:f4:66:b3:5c:78:42:71:08:6c:b6:68:
df:31:4d:ac:f7:d6:54:ee:cd:01:ca:db:9a:dc:15:
76:1b:ff:fe:b8:70:e0:d6:34:03:a6:b9:a7:5b:ea:
f0:66:18:9f:9b:60:99:1d:7a:6f:f9:a5:da:4e:e9:
54:fe:4e:a8:b0:1d:5e:83:44:bd:28:6f:b4:24:29:
2e:05:94:b1:7e:88:b4:a9:f1:42:81:90:22:e4:95:
2a:8d:46:c7:7b:27:cf:dd:8b:49:42:19:8b:cf:e7:
2c:74:c1:67:24:96:4a:30:c0:2d:72:db:a6:cf:8c:
4c:dd:9a:8d:43:2a:26:06:2e:ba:3d:90:c8:f3:24:
bd:0d:0c:82:40:6a:f4:e3:1a:99:83:33:00:63:43:
90:16:41:28:1f:c4:d7:67:1e:c9:23:a7:8a:37:05:
34:b1:90:94:b6:65:db:ad:19:ba:cc:8d:18:fa:01:
44:68:11:cd:56:63:74:d1:e5:db:83:f7:7b:cc:47:
0b:2e:67:24:3d:88:ba:25:b8:8b:f6:c5:6e:3f:95:
1f:0c:2f:bd:27:2a:3d:d0:63:d1:29:c3:0e:1f:f3:
da:77:ea:92:05:3a:75:03:0b:6b:04:49:fb:9c:f5:
c8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CF:DC:A5:0E:7E:36:AC:B5:FB:0D:BF:24:AE:99:4E:1B:27:C3:06
X509v3 Authority Key Identifier:
keyid:62:3B:77:14:A0:38:27:FD:E7:D2:32:BD:8F:4E:01:A2:9F:B4:71:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TTC/Yjt3FKA4J_3n0jK9j04Bop-0cd4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yjt3FKA4J_3n0jK9j04Bop-0cd4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TTC/1c_cpQ5-Nqy1-w2_JK6ZThsnwwY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.42.119.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b5:7d:34:82:03:f5:50:12:43:9b:60:94:ad:52:da:50:8e:
c8:84:c1:0f:97:d3:08:4f:42:07:83:c1:3c:eb:aa:36:82:19:
c3:3e:77:cb:2b:2e:5f:ce:87:49:45:3c:1f:d2:f3:95:b9:d4:
b4:9e:5e:9d:e5:18:bc:98:56:bd:bc:49:7b:1d:9d:ee:fc:2e:
9a:a8:46:03:b2:b2:8b:4d:03:c4:91:c1:8d:e6:5c:31:f3:18:
61:ef:7e:e8:f6:8c:1b:16:ce:c3:ba:29:5f:06:27:86:86:1e:
78:66:70:33:eb:f4:e9:05:7a:67:d5:db:49:dc:3b:34:43:dc:
ca:df:55:bf:e2:54:52:3c:ad:7b:3b:5c:6f:9f:7f:5f:ab:25:
f4:65:57:b0:93:c9:d2:fe:34:bf:23:4a:c4:1b:1b:92:77:38:
30:73:55:78:26:09:8d:b2:2b:a4:a8:16:86:c9:38:82:ca:bc:
9b:91:00:f9:b6:19:2e:06:eb:b3:6f:cb:e9:80:5d:5d:db:3f:
4d:e0:f7:78:f2:b1:1e:ec:2b:68:ff:86:8b:bb:7f:4c:ea:09:
51:6d:82:05:98:53:45:64:1e:81:52:b3:89:8e:cb:2d:3f:5c:
0c:b6:ae:7e:66:6e:b4:2b:de:18:5c:17:1f:d0:2d:8c:5a:b6:
d2:4f:4e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org