Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/GH5I6Gz3BCXefPxNMO_QGuQM80U.roa
File: GH5I6Gz3BCXefPxNMO_QGuQM80U.roa (raw, json)
Hash identifier: Fgn1XU0QSDkSD328Knoe3GbDddkO7qhNRC4lVggaY8M=
Subject key identifier: 18:7E:48:E8:6C:F7:04:25:DE:7C:FC:4D:30:EF:D0:1A:E4:0C:F3:45
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0E34
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/GH5I6Gz3BCXefPxNMO_QGuQM80U.roa
Signing time: Sun 07 Feb 2021 11:47:35 +0000
ROA not before: Sun 07 Feb 2021 11:47:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 150.242.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3636 (0xe34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 7 11:47:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=187E48E86CF70425DE7CFC4D30EFD01AE40CF345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fc:3c:fb:65:3a:3e:84:a0:43:66:18:c5:87:
02:be:a4:b5:dd:c2:a2:15:2c:01:2f:83:ce:cc:f4:
e6:95:20:08:13:53:75:69:b8:f5:a9:79:f6:eb:51:
f7:e1:6b:b3:22:46:4b:70:9d:54:51:48:e8:bb:72:
d2:d5:04:b9:e1:4b:b4:2d:05:37:4a:f6:e0:24:20:
7c:ea:ee:5d:03:bd:d0:f1:3b:0c:35:4d:fd:57:87:
95:5a:1d:c1:c5:fa:11:61:b5:82:de:61:f6:9a:5c:
e2:4e:f1:91:52:fc:ee:07:78:80:7c:f4:3d:13:87:
98:88:f1:66:b3:43:8e:37:63:c9:1f:f2:5b:7a:0a:
01:40:f1:1e:fc:0d:77:53:9e:44:9f:21:50:de:0d:
52:02:61:29:77:4d:9c:7b:74:5b:6b:6d:b2:2d:0b:
60:e2:46:35:8b:fe:c5:3f:4a:8b:42:b8:49:ed:4b:
4d:b0:a0:e2:7d:ff:23:3b:f1:c2:7f:38:63:39:a9:
5c:78:b9:0e:fe:7a:32:4b:db:59:7c:27:05:e0:fd:
98:88:be:6f:cf:88:4a:ae:33:21:85:6a:71:39:0c:
35:ee:ed:42:34:3c:3d:c1:d1:56:f0:1b:c9:53:ea:
b4:2c:46:91:02:aa:08:42:ee:38:ad:5a:5b:08:b0:
65:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7E:48:E8:6C:F7:04:25:DE:7C:FC:4D:30:EF:D0:1A:E4:0C:F3:45
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/GH5I6Gz3BCXefPxNMO_QGuQM80U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:0e:84:fe:d2:71:32:dc:6c:88:2c:14:a5:b6:3e:8d:db:2b:
e6:09:73:43:93:79:b7:32:38:5f:43:73:b1:25:bc:b4:b3:a1:
b1:62:c7:c1:3f:ff:db:24:ed:c1:75:b9:d7:39:51:06:1b:c2:
ef:8c:5c:ec:2e:30:86:4e:e5:0c:ae:a0:04:d7:b2:fd:83:e2:
49:d7:cb:0f:6b:90:fa:08:e2:9b:03:e4:e2:b0:c1:c5:91:8f:
55:19:49:ab:bd:bb:52:ae:45:d7:28:09:8c:f5:47:75:3f:21:
59:9e:fc:c6:d2:da:f6:72:ec:cc:1c:33:98:f8:7b:2c:a3:57:
25:e2:a8:7e:e5:69:d5:c7:7c:bf:a4:14:39:03:40:77:89:f5:
3d:23:aa:d3:56:37:79:5b:3e:3a:c2:e9:a2:54:e2:99:71:b6:
f7:d6:18:51:49:bf:3d:23:35:82:d1:c2:11:c3:9f:11:7c:ee:
93:dc:3b:a3:96:5d:da:88:f0:fa:13:cd:d1:fa:81:8d:c0:c6:
63:a6:63:64:65:c8:44:90:6d:1c:b6:0d:77:be:3d:42:95:1b:
c3:f4:a1:02:71:fb:dd:34:e1:25:5b:c5:8a:b6:e8:eb:bb:e8:
de:4d:af:ec:34:0d:b1:e7:39:1c:ef:94:3c:ae:8b:20:d0:91:
29:df:f3:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org