Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-ezgKKnaF4aPmR3fkXrXIq1-zzk.roa
File: -ezgKKnaF4aPmR3fkXrXIq1-zzk.roa (raw, json)
Hash identifier: gwwk8fNU+2svqXrJhS+NQKjypuhOnHdHEkpzoxPryJ8=
Subject key identifier: F9:EC:E0:28:A9:DA:17:86:8F:99:1D:DF:91:7A:D7:22:AD:7E:CF:39
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0E38
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-ezgKKnaF4aPmR3fkXrXIq1-zzk.roa
Signing time: Sun 07 Feb 2021 11:50:10 +0000
ROA not before: Sun 07 Feb 2021 11:50:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131621
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3640 (0xe38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 7 11:50:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F9ECE028A9DA17868F991DDF917AD722AD7ECF39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4b:1d:85:27:27:18:c0:fd:d3:08:f5:0a:bf:
66:bd:3d:b1:47:f2:6e:b8:1f:48:20:8c:e8:30:91:
59:84:7a:42:fa:f4:d6:1a:9e:44:14:93:df:a8:6e:
3e:a2:a2:dc:4a:fb:2f:3c:0d:d2:fe:4e:df:94:fc:
83:e3:57:86:5c:fc:ab:cc:92:43:62:13:04:0c:db:
e7:58:c9:fb:ed:e9:05:13:8e:1d:2f:73:ad:56:16:
5c:45:11:71:58:8b:5d:9b:86:b1:3a:cf:a8:b7:55:
cf:65:e0:23:9f:36:44:5a:90:24:88:12:59:1c:c5:
49:a4:5c:68:79:30:20:68:b3:17:43:4f:0a:50:3b:
f7:79:ae:68:da:ab:d7:ab:93:4f:f4:09:61:c3:1e:
92:8a:72:e7:4a:de:af:89:b4:fe:a2:60:69:1f:d4:
a4:e4:91:15:28:02:07:d6:1b:07:d5:b6:b5:ab:d3:
e9:58:28:b5:69:41:b5:f9:68:b7:ba:e8:ef:55:41:
d0:d8:eb:68:0b:4f:1b:38:fc:76:6e:60:1c:83:69:
d2:d1:2f:e7:38:ee:b2:5a:57:e0:77:09:17:de:11:
2e:c1:b6:74:61:59:c3:35:55:f4:d4:e9:5b:03:1f:
2a:62:d0:49:c0:33:08:28:88:c1:e6:37:f5:cd:a1:
04:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EC:E0:28:A9:DA:17:86:8F:99:1D:DF:91:7A:D7:22:AD:7E:CF:39
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-ezgKKnaF4aPmR3fkXrXIq1-zzk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:eb:c7:45:87:11:e3:ca:33:3f:0a:f3:b8:e4:6d:0d:44:bd:
57:85:41:ac:1c:d8:a1:a6:47:64:e5:24:31:31:2d:dc:b3:9e:
28:ff:c5:de:9e:e8:80:09:01:89:a9:e3:6e:0b:52:61:8d:da:
ee:7b:2e:2e:9d:70:0b:18:b7:c2:a1:42:39:cf:2c:25:07:80:
b7:de:f2:ca:63:72:52:e3:5c:47:69:2e:05:18:73:79:37:cc:
85:88:5b:32:ed:dd:3a:73:5c:3b:92:83:ac:03:cf:82:12:36:
e8:87:00:4d:75:c2:61:20:41:f5:25:f9:75:71:cb:d5:9a:67:
b1:26:59:7e:d5:c0:34:c4:cc:d1:9c:ec:09:20:55:92:21:38:
65:ae:07:0a:5a:92:22:89:70:4e:21:40:af:8d:24:73:c2:36:
64:36:53:9d:e9:de:f4:69:81:fd:8b:44:5f:e4:f7:78:7c:20:
eb:fb:ae:c1:a0:c1:8b:82:67:c2:94:bd:f9:e1:45:79:02:46:
db:49:c4:3c:5f:98:37:36:b1:10:46:a9:54:7d:95:cd:bc:02:
91:ab:88:22:18:55:86:a9:35:94:41:48:7c:b1:fd:da:48:89:
85:ed:9f:ba:23:5f:59:c9:4e:ad:84:3a:62:b7:c4:fb:08:ec:
da:08:71:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org