Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/JRdmf96wZYPJOEA8vwzdn3oXGas.roa
File: JRdmf96wZYPJOEA8vwzdn3oXGas.roa (raw, json)
Hash identifier: qFQGu/ISjXtcBl9mC6UKvUIoULl6sgJcwEyDBeQTB4Y=
Subject key identifier: 25:17:66:7F:DE:B0:65:83:C9:38:40:3C:BF:0C:DD:9F:7A:17:19:AB
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0A46
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/JRdmf96wZYPJOEA8vwzdn3oXGas.roa
Signing time: Wed 01 Feb 2023 04:05:02 +0000
ROA not before: Wed 01 Feb 2023 04:05:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2630 (0xa46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 1 04:05:02 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2517667FDEB06583C938403CBF0CDD9F7A1719AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:93:68:2c:ef:98:fd:c5:4d:ce:d8:f9:08:71:
92:b4:9e:b0:4d:5f:a0:1e:3e:b7:cb:08:ce:a1:64:
c4:99:a0:cc:ee:8e:e0:4b:16:f8:16:bf:8c:de:95:
cc:10:13:09:0c:ce:42:c9:ea:d5:ee:da:ac:c1:a4:
35:8a:b8:70:3d:5d:6a:1b:5b:d0:57:48:f1:7c:95:
83:4b:24:03:ee:7c:fe:5b:36:78:c8:d6:1d:33:be:
6d:70:fb:35:42:66:ca:1f:fb:ad:83:20:05:b8:6a:
16:4e:2d:e8:b0:46:cf:40:9b:ef:ea:76:19:ee:ce:
2a:fc:2b:cc:e2:8b:53:20:a2:f5:67:18:b4:64:30:
68:80:b6:32:db:ac:57:7e:f7:2d:bc:ca:27:43:aa:
1a:f0:9d:68:27:cc:79:30:cb:3d:dd:fb:49:99:de:
64:4b:d8:b4:2f:78:84:14:2e:bf:7d:ac:81:89:b0:
d9:d1:bf:07:a6:c3:9e:2c:19:1b:ca:52:2d:65:38:
a2:1e:9b:87:a7:5c:78:65:29:6f:fe:44:c9:ed:79:
de:f7:50:b4:37:4a:90:d9:5e:6b:10:24:33:e6:b1:
fe:e9:69:cf:cf:d6:42:d2:78:5d:89:ae:3f:34:93:
58:9e:fc:07:28:da:42:21:ff:5a:b3:09:67:97:bf:
d1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:17:66:7F:DE:B0:65:83:C9:38:40:3C:BF:0C:DD:9F:7A:17:19:AB
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/JRdmf96wZYPJOEA8vwzdn3oXGas.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.9.0/24
Signature Algorithm: sha256WithRSAEncryption
76:51:6d:39:75:a8:45:23:05:e8:29:cf:78:71:be:53:69:22:
99:e4:a5:79:b5:60:21:ca:69:ff:96:37:8c:cc:b7:94:b3:a2:
f8:8f:2a:ec:ae:5c:a6:99:aa:b2:12:39:b5:3d:85:59:8a:c3:
9c:45:a3:3d:8e:97:ad:4f:be:59:52:27:8c:55:65:1a:80:55:
8f:da:2c:63:e5:da:be:0d:b7:f2:51:43:de:b6:66:66:de:f4:
0f:14:8c:28:de:ad:79:fa:ec:df:47:de:d5:08:eb:61:e8:ca:
c9:22:0b:39:76:fb:c2:27:15:ce:a8:b9:f2:29:59:22:27:85:
93:e5:e7:cc:4f:de:14:fe:25:75:8a:a0:33:5f:83:5d:0a:c4:
37:8e:80:b3:30:2e:68:41:62:40:9d:98:99:89:b8:ae:dd:c5:
cf:c5:99:ce:a1:22:92:b6:b8:56:84:b4:c4:07:53:ce:d0:b7:
bf:81:d1:d8:2e:61:9a:39:1e:c9:96:d8:c1:b4:c7:22:41:dc:
7d:9d:30:09:d2:89:5e:24:0f:d4:dd:d4:ce:64:b5:de:8d:07:
37:83:05:2b:6b:6e:a8:fd:28:3a:5a:18:b7:f6:c8:4e:02:8d:
3e:11:62:6c:43:0d:7f:b8:40:34:90:b6:50:aa:f9:f0:55:32:
4c:2c:77:c9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org