Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/eYPU5EG-WblAslWfvIuFHq8Ndu0.roa
File: eYPU5EG-WblAslWfvIuFHq8Ndu0.roa (raw, json)
Hash identifier: +N/b/ByAQ3DNIh1IMH64YOupBL70fxd0yHW+VUcK55I=
Subject key identifier: 79:83:D4:E4:41:BE:59:B9:40:B2:55:9F:BC:8B:85:1E:AF:0D:76:ED
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0A47
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/eYPU5EG-WblAslWfvIuFHq8Ndu0.roa
Signing time: Wed 01 Feb 2023 04:05:02 +0000
ROA not before: Wed 01 Feb 2023 04:05:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2631 (0xa47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 1 04:05:02 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7983D4E441BE59B940B2559FBC8B851EAF0D76ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cb:f7:d0:79:24:ef:39:09:ff:fc:a1:1d:cc:
f1:97:9b:82:09:b3:47:76:3c:bb:14:07:a6:18:98:
47:bf:4c:ec:38:46:14:a3:d1:12:dd:a2:c4:e3:17:
e7:72:dc:ee:e6:f1:85:ff:3a:f9:65:fa:ae:0e:ef:
c8:b2:c2:4e:82:4b:b7:7e:73:84:b0:41:69:ee:5f:
fc:c9:db:ca:19:3f:ce:5f:f4:3d:15:7b:fe:90:ec:
9e:28:e7:c8:e0:d4:21:de:1d:0f:f8:e4:93:46:c8:
fb:2e:d6:c8:f0:32:89:42:6d:8b:c0:63:6b:af:d8:
ac:0e:ef:11:f6:96:32:f4:e3:a1:1c:fe:46:aa:78:
15:01:91:2a:1a:58:1f:a5:8c:26:85:75:6f:b6:7a:
89:14:ab:bc:87:e6:0c:69:fa:f2:dc:aa:cb:ff:35:
56:3d:8e:9d:54:c8:1a:11:78:e2:ae:a5:fc:12:40:
13:c3:22:4c:dc:f9:59:58:88:53:2c:01:8e:a5:9c:
b7:66:56:65:b7:69:24:b0:89:f1:61:dc:06:db:bc:
eb:63:20:a2:f3:10:b0:42:91:ce:31:b9:80:2a:bd:
df:8e:50:48:5e:40:52:9e:76:ab:fb:a9:3d:cf:70:
34:ec:29:9d:7c:b9:48:aa:1c:60:2f:64:03:aa:b9:
0b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:83:D4:E4:41:BE:59:B9:40:B2:55:9F:BC:8B:85:1E:AF:0D:76:ED
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/eYPU5EG-WblAslWfvIuFHq8Ndu0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.15.0/24
Signature Algorithm: sha256WithRSAEncryption
38:4f:c1:c8:e7:a5:25:47:d2:15:17:93:d4:0c:a0:be:ca:72:
4e:6c:fb:28:f9:36:49:51:7a:15:b4:27:1b:88:2e:46:b7:dd:
97:c5:db:5e:1c:4a:3b:6b:0f:4e:98:19:02:9d:82:fd:54:07:
9f:08:a7:5c:91:42:54:c8:1c:77:1e:24:71:01:ad:1b:e9:b5:
c0:d1:31:41:f2:68:c8:95:39:68:62:08:22:8a:d7:d7:37:ac:
a0:fb:ae:ce:2e:ac:6b:b5:54:8e:89:b7:79:04:f0:e2:05:f0:
64:87:70:5d:59:7b:ba:a6:5a:8d:20:38:55:b6:b9:21:72:39:
2d:01:94:dc:8b:25:7d:b7:cb:20:f5:9a:21:45:e7:75:ca:cf:
65:c0:b5:3c:b4:2a:50:0e:a2:f7:fa:60:2c:7f:e3:66:92:fc:
9f:df:a0:c0:2a:fb:60:a5:c2:8f:67:cf:0f:c3:92:a4:fc:15:
a2:3e:96:fc:ad:e3:ee:26:00:6f:7b:b3:27:21:4b:2a:f2:13:
0b:a3:7d:22:36:9b:20:c5:49:35:7c:8c:8c:c6:eb:16:48:13:
3d:48:58:8a:be:44:f2:c6:b6:86:d0:eb:fd:2e:89:ef:47:67:
ec:cc:ce:d0:02:dd:05:bd:05:ba:90:ec:ef:53:9a:04:35:0e:
35:0a:fc:55
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org