Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/AHxjWy1dGX2M6zNc2mWssj2XOQA.roa
File: AHxjWy1dGX2M6zNc2mWssj2XOQA.roa (raw, json)
Hash identifier: KbW1RyNI3GPCAybJrPS0HnDjBB0DUVsCzhHh22ZfjKk=
Subject key identifier: 00:7C:63:5B:2D:5D:19:7D:8C:EB:33:5C:DA:65:AC:B2:3D:97:39:00
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 09E2
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/AHxjWy1dGX2M6zNc2mWssj2XOQA.roa
Signing time: Thu 15 Sep 2022 02:50:11 +0000
ROA not before: Thu 15 Sep 2022 02:50:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2530 (0x9e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Sep 15 02:50:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=007C635B2D5D197D8CEB335CDA65ACB23D973900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:8d:a9:c4:b5:87:d8:2f:a3:54:3b:58:c5:
f7:f6:5b:c1:25:56:54:0c:f4:d5:6a:47:43:ae:f4:
20:75:de:06:44:13:3f:6d:10:af:ef:6b:e9:2d:82:
52:a3:0a:6c:d0:0c:dd:07:8c:a2:1c:19:b6:11:d3:
a3:14:96:05:ad:52:fd:55:d5:83:71:b7:bb:2a:cd:
16:7e:28:96:1f:e0:8a:2d:10:50:ba:b1:16:da:e0:
e1:a2:45:e9:f9:ab:93:17:ee:33:8e:16:e3:66:45:
29:f9:98:e7:5e:97:05:0f:d5:5b:ef:44:f7:22:f7:
af:43:a7:f3:66:4f:9d:51:d1:1b:13:41:c6:5d:64:
bb:e4:2b:ba:38:76:61:bc:d9:a0:bd:3b:a2:cb:ff:
17:61:fd:c7:4f:c8:41:f3:2d:3b:9f:66:e8:33:3a:
71:70:66:11:88:28:77:5b:3e:df:12:ef:20:9b:4c:
98:d8:57:44:0d:ff:57:fa:5b:3b:c7:17:5e:4c:28:
94:b2:4c:98:af:c7:97:a4:f2:23:1b:d5:cc:3c:0a:
49:b4:b3:18:2b:58:fc:47:39:dc:2c:1a:f0:e1:5c:
1c:a0:cf:b4:e5:11:12:52:eb:56:47:b4:08:42:d6:
9f:27:84:e3:3e:ef:36:86:36:59:89:93:f4:1e:9b:
68:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7C:63:5B:2D:5D:19:7D:8C:EB:33:5C:DA:65:AC:B2:3D:97:39:00
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/AHxjWy1dGX2M6zNc2mWssj2XOQA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.10.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4c:b8:1b:c8:c4:7c:93:da:45:a2:a1:5b:d2:7a:66:dd:f1:
43:fc:d3:c6:21:82:65:ff:65:53:7b:4e:8e:3d:46:f9:e7:4d:
da:97:48:77:da:14:02:01:8c:f8:76:7d:7d:4c:7f:35:8f:98:
ca:c2:3f:8d:8e:6d:84:b3:9e:5c:f4:06:2a:e4:ba:96:66:94:
06:41:2d:ae:18:14:b6:56:45:97:f0:e6:78:b8:d0:85:0a:61:
c3:24:ec:ea:3d:ab:ea:0e:d6:b2:e3:7f:3e:fc:aa:96:1b:02:
78:e2:3d:c7:da:a0:40:84:3d:89:5a:a2:67:59:42:8a:47:9b:
51:3f:29:b3:ea:33:2e:e9:2e:49:8f:74:94:aa:b8:85:00:34:
dd:c2:70:42:35:57:a5:af:5a:90:55:a5:c2:1d:d6:df:65:e4:
d4:bd:bb:68:e0:2d:14:aa:dc:36:0a:6c:52:fd:b1:2b:a8:87:
5c:7c:24:1b:4b:ac:42:e7:55:96:d2:f4:38:ca:c8:8d:82:dd:
8f:05:84:e8:10:27:45:a3:96:0b:9c:cd:8a:20:bd:0f:c4:27:
c4:84:6e:59:d7:cf:80:77:e9:79:bb:ba:10:63:eb:48:18:b0:
4b:73:99:55:5e:24:37:1e:1e:37:11:f1:f4:8f:9c:5b:6c:13:
2f:b9:f0:2f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org