Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/vYTVUnqHDbX85al3aMVcU4TARRM.roa
File: vYTVUnqHDbX85al3aMVcU4TARRM.roa (raw, json)
Hash identifier: As5nBjApS6JmnvLBp0HfG05ZJ6fmyUGSOhiu/q4fqTA=
Subject key identifier: BD:84:D5:52:7A:87:0D:B5:FC:E5:A9:77:68:C5:5C:53:84:C0:45:13
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0938
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/vYTVUnqHDbX85al3aMVcU4TARRM.roa
Signing time: Thu 13 Jan 2022 17:22:01 +0000
ROA not before: Thu 13 Jan 2022 17:22:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 133955
IP address blocks: 223.165.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2360 (0x938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Jan 13 17:22:01 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BD84D5527A870DB5FCE5A97768C55C5384C04513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f8:4f:8c:c1:e5:dd:59:53:00:33:a8:c1:52:
29:2c:3e:6f:27:7f:f8:0b:a6:17:f5:b7:34:ca:9a:
fc:ca:1d:8e:9c:06:ff:6f:05:99:17:11:dd:9b:60:
8e:34:6e:dd:2a:bb:c2:2b:a3:c5:67:28:04:2d:6a:
fd:9d:82:6e:de:48:8d:ee:ef:f8:bf:c1:b0:41:4f:
4a:1b:4c:77:bf:cd:80:bc:09:13:97:11:0e:2b:3c:
06:2b:e7:8c:ab:33:b3:86:34:f8:b0:bf:13:77:bf:
8b:d1:c0:1c:22:07:10:92:0a:f0:47:d1:eb:2a:47:
c7:ea:2e:a4:53:2d:da:55:3f:6c:bd:3a:77:ec:ee:
38:80:38:69:9d:4a:84:4c:dd:bc:e2:d0:85:d7:0e:
b6:e8:26:b3:f6:4e:78:40:be:d8:89:85:de:23:ac:
1e:8e:12:1a:e4:7b:1c:5c:09:cf:ab:8b:e4:d9:a1:
d5:33:8f:6e:29:ca:2d:20:85:dd:a4:d5:24:62:bc:
a3:20:24:91:87:8f:46:84:30:2d:9f:49:e9:f7:c8:
99:0f:00:52:a8:02:5e:12:4e:e0:e7:ca:b5:8e:11:
97:da:76:17:8b:0c:b5:14:29:7d:02:12:4b:f0:9b:
d9:45:71:9c:2d:c3:76:39:7c:ad:cc:d8:0f:f9:d9:
73:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:84:D5:52:7A:87:0D:B5:FC:E5:A9:77:68:C5:5C:53:84:C0:45:13
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/vYTVUnqHDbX85al3aMVcU4TARRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.10.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b4:cb:1b:d4:f9:51:ce:ec:0d:a3:a9:25:a8:2e:21:fa:4e:
35:5b:ae:dc:e7:55:02:5d:d0:d8:d4:76:1d:ce:77:69:1b:b6:
b5:7f:24:ed:bc:43:b6:40:93:1b:7e:bd:1e:4f:b5:02:88:16:
6e:d0:93:7a:d8:35:c4:df:f2:f7:40:d9:3c:2d:91:cc:ed:7d:
f7:37:3d:f7:8d:3a:5e:5c:59:c8:6b:33:19:47:71:33:83:80:
97:df:c5:65:bb:21:bc:ff:12:8a:0c:b5:25:fb:1e:18:fc:af:
4e:f8:f5:4d:f2:2d:d3:1d:86:a0:88:8d:9c:ef:ff:71:9b:6f:
df:63:96:46:47:5b:1a:21:a4:e9:b8:c3:0c:a5:09:d0:c2:cb:
11:87:68:f7:24:fc:67:88:93:8f:af:a4:03:f7:e6:41:76:b1:
0d:0d:a8:79:16:46:cc:ec:86:fb:f1:d3:9b:23:79:24:f9:85:
03:37:50:b0:87:bc:37:91:c1:09:30:c9:86:8e:82:a0:54:28:
8a:b1:db:60:b5:00:ba:d5:c8:0e:e3:18:d8:ac:9c:fc:86:8a:
75:72:ee:53:db:11:cd:40:00:2b:6b:d1:74:00:31:88:cb:f5:
3f:25:72:bc:15:f2:d0:80:f6:67:7e:21:e6:f8:bd:13:ad:d4:
f2:84:97:bd
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org