Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/gsQ5CnADJBFBxYwjxRE2y1eNjDk.roa
File: gsQ5CnADJBFBxYwjxRE2y1eNjDk.roa (raw, json)
Hash identifier: VjnT3X5GKc+lv+/klmfia73nIfi+UjWPCDF3SC89Zc8=
Subject key identifier: 82:C4:39:0A:70:03:24:11:41:C5:8C:23:C5:11:36:CB:57:8D:8C:39
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0A45
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/gsQ5CnADJBFBxYwjxRE2y1eNjDk.roa
Signing time: Wed 01 Feb 2023 04:05:01 +0000
ROA not before: Wed 01 Feb 2023 04:05:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2629 (0xa45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 1 04:05:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=82C4390A7003241141C58C23C51136CB578D8C39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e6:c0:20:a1:94:2a:ac:21:fd:d2:a9:97:9c:
86:32:6f:a0:aa:64:82:d8:3c:13:48:16:df:86:b8:
63:37:16:ce:29:13:a4:4a:08:84:3a:42:2d:3e:a5:
2b:65:28:24:20:b7:cb:0d:99:12:f9:60:3b:e1:e3:
3a:27:8c:a0:96:74:cc:a5:25:ca:49:46:2d:83:a6:
b6:f4:99:3f:9c:3a:c8:3c:03:ad:84:5e:04:d9:f6:
fd:e3:a8:ef:46:ff:fd:69:80:9e:cb:6c:c3:f2:0f:
ae:82:0e:ee:d8:25:b8:fc:38:b5:3b:09:56:81:1f:
5a:4b:ac:da:66:15:97:2c:00:56:20:0c:37:ba:f5:
1b:3b:65:1c:ed:dc:e5:2d:71:18:16:ae:50:91:8a:
1c:9b:cc:fa:09:e2:2e:e0:fc:36:c2:83:25:0f:50:
35:6a:94:ce:e4:53:22:4e:77:f8:a1:e0:95:2b:ea:
e8:b9:e3:47:9a:de:57:43:f5:14:93:9c:b0:00:2c:
e4:3d:fa:5e:9a:73:53:91:aa:9e:e6:d3:08:0a:4a:
12:db:6d:39:44:74:45:ec:ca:ef:ad:47:3d:f2:80:
e7:4b:16:6d:bd:ef:65:bd:3d:13:95:3b:5e:0c:ec:
fa:6f:5c:b7:0f:b4:f3:3d:2b:e0:04:0f:75:6f:8a:
9d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C4:39:0A:70:03:24:11:41:C5:8C:23:C5:11:36:CB:57:8D:8C:39
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/gsQ5CnADJBFBxYwjxRE2y1eNjDk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:18:8d:e0:94:6e:95:2a:50:bb:e3:00:71:9f:18:28:3a:d8:
7c:53:37:6d:2d:26:d4:69:f0:ad:4c:e1:1d:6a:48:f0:61:25:
da:60:de:98:62:64:4e:80:52:fe:c2:85:97:35:b6:f0:19:b6:
f5:35:9d:9c:67:12:89:b1:4d:5d:03:7a:15:11:eb:74:af:75:
45:0b:62:57:44:24:c5:9e:63:92:bc:f0:39:dd:8f:63:3d:d5:
79:10:d0:ca:b6:2b:7a:9d:38:62:71:fb:52:39:bc:4b:2a:f7:
9a:df:28:7a:e7:b3:38:15:8a:9d:97:16:ab:f0:2c:90:e7:ae:
9a:96:48:f7:01:09:8e:1f:c3:aa:54:33:38:55:b6:e8:3f:ad:
2b:de:5f:c7:75:1b:0d:8e:70:47:56:0f:93:70:f5:da:75:d7:
2f:73:29:77:77:ec:70:6d:d2:7d:df:80:6c:2b:7a:c9:0b:bf:
ad:51:e7:59:70:c4:82:f3:ac:de:c6:85:06:ed:95:6c:9b:aa:
12:4c:85:2e:61:f3:4f:c9:d7:4b:30:bd:b5:37:24:3f:ba:34:
f7:50:e0:7f:1a:b9:01:77:f8:da:76:2f:2c:81:da:36:49:27:
35:5d:f1:84:77:b6:29:f0:f8:3c:f7:86:49:f4:3b:8c:f2:6f:
1e:c6:0f:1e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org