Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/24S4Uygata2cciY_hnea2X1qzyw.roa
File: 24S4Uygata2cciY_hnea2X1qzyw.roa (raw, json)
Hash identifier: LcM8lc80PcZQIrxB2gB96R9sAl81Y8DyUwqAsfDAj6k=
Subject key identifier: DB:84:B8:53:28:1A:B5:AD:9C:72:26:3F:86:77:9A:D9:7D:6A:CF:2C
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 07A1
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/24S4Uygata2cciY_hnea2X1qzyw.roa
Signing time: Tue 29 Sep 2020 10:07:18 +0000
ROA not before: Tue 29 Sep 2020 10:07:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 150.242.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1953 (0x7a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DB84B853281AB5AD9C72263F86779AD97D6ACF2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:ac:a9:ab:7e:b4:72:2c:45:6a:43:2d:07:
36:c4:15:af:05:ae:10:34:af:00:d9:64:71:fb:e4:
81:d1:23:83:a3:98:27:da:13:6d:15:14:8b:04:93:
43:4c:62:0d:a0:35:95:3d:6a:84:27:51:44:0d:d7:
60:73:b3:a8:69:80:00:73:1a:bf:9d:f9:9c:49:d2:
b0:15:66:2e:b5:62:58:e3:a2:d4:7e:bf:37:2b:be:
da:0d:bf:6c:ec:a5:05:2f:09:39:58:0d:f9:39:34:
cd:06:55:7a:fb:a9:db:ca:a5:49:7e:34:b9:c3:64:
77:99:91:13:a6:33:98:15:ba:72:eb:a2:d9:39:a5:
10:3c:a7:5c:9d:fd:6d:7f:05:74:02:84:75:6d:84:
2a:dd:0e:97:4a:95:41:9a:01:07:bb:70:6b:5f:77:
1d:91:c3:bb:f6:b4:0f:77:7a:a7:1e:87:71:fe:2d:
7f:84:f5:ec:19:ee:a2:6e:38:40:a7:a3:3c:81:bf:
1d:97:fa:84:92:a4:1a:91:d4:11:30:0d:e5:06:38:
8f:9e:b9:11:05:45:d6:c5:87:66:ec:bd:4f:0e:b8:
b0:74:3b:7a:c1:0a:c4:98:5c:56:a6:4a:24:ac:4f:
a4:42:2b:ac:ee:4b:f1:0d:b7:65:94:db:e0:fd:26:
ce:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:84:B8:53:28:1A:B5:AD:9C:72:26:3F:86:77:9A:D9:7D:6A:CF:2C
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/24S4Uygata2cciY_hnea2X1qzyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:5a:50:24:fc:72:70:90:fa:2a:85:d6:b6:1d:5d:78:74:05:
0e:56:be:80:6e:5e:b7:4f:4c:fd:ca:6a:88:d7:6e:17:ab:82:
7b:83:16:c4:47:b9:2d:73:22:ca:68:32:ce:a5:a1:a3:d5:da:
31:4b:6d:96:1f:0b:f2:f5:05:17:79:89:4e:8b:8f:b8:1b:65:
ad:ae:d5:f2:00:31:60:cc:da:fb:df:28:b4:b4:ee:e1:c1:16:
2e:80:5e:fb:51:52:8f:2a:e1:24:e0:ea:21:d6:48:92:56:58:
0a:cf:2f:28:04:88:d0:95:99:88:bb:d6:33:33:d7:bc:de:01:
5e:ad:0a:90:5b:ce:57:b7:7e:37:24:81:f3:35:6e:fa:7d:70:
4f:94:b7:c4:2b:ae:98:0e:16:fd:98:a4:6e:38:6a:95:94:7a:
0f:43:cf:5e:aa:17:10:06:7d:ef:a0:33:95:db:88:d6:9a:a3:
da:6e:51:e9:28:86:6e:e9:fd:74:5f:39:82:be:36:d8:3f:c6:
6f:25:80:b3:e7:43:a5:0e:5b:b6:c5:81:10:2a:d3:17:73:4b:
c5:50:4c:2f:d7:82:7a:4e:f3:02:c4:81:ed:ed:49:bc:05:94:
7c:11:17:57:87:40:d2:c3:3c:20:4e:44:c4:9f:55:42:a3:0a:
ff:7e:b4:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org