Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/GXxIlMxHihbBhVm_Dy5M09g232A.roa
File: GXxIlMxHihbBhVm_Dy5M09g232A.roa (raw, json)
Hash identifier: q5AbnaSts0D15Pcp53PjroHpTpxzp0ac3EZVGNThNmI=
Subject key identifier: 19:7C:48:94:CC:47:8A:16:C1:85:59:BF:0F:2E:4C:D3:D8:36:DF:60
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0F36
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/GXxIlMxHihbBhVm_Dy5M09g232A.roa
Signing time: Mon 27 Dec 2021 07:55:28 +0000
ROA not before: Mon 27 Dec 2021 07:55:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131644
IP address blocks: 182.173.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3894 (0xf36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Dec 27 07:55:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=197C4894CC478A16C18559BF0F2E4CD3D836DF60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5f:b4:ac:9f:de:29:43:ac:86:1d:1a:80:8f:
ff:68:42:16:aa:fd:2d:71:b9:93:a9:fd:d1:43:94:
3d:6d:d8:73:e2:c9:37:92:2b:6a:ae:52:33:aa:06:
12:eb:a0:7c:c8:04:c0:f0:5d:ca:1e:a7:80:2b:e8:
95:e1:5a:7e:e5:44:b2:79:cb:02:c1:b9:fd:d0:39:
3f:59:fa:fe:1b:6c:c9:70:08:e4:ea:49:18:a9:f1:
8c:39:ea:b0:10:fa:58:24:11:a8:68:70:b1:75:9e:
79:d4:5e:1f:71:28:fb:83:ec:a0:12:32:08:47:e5:
6a:80:a3:f0:12:eb:d8:7e:66:b5:99:ef:a6:b4:24:
1c:67:9a:90:bd:08:db:a4:d4:2c:55:0c:32:81:cc:
60:06:00:53:f6:57:d5:99:13:5e:48:f8:dd:ec:34:
00:11:60:97:25:92:39:9b:33:34:17:01:07:74:cf:
c5:d8:27:8b:96:ec:82:bc:50:7c:5b:4e:45:92:1c:
0c:f6:ba:00:64:38:8a:25:1c:ba:78:84:ae:63:52:
0d:b3:45:25:5d:3f:2e:c9:6b:ac:7e:4d:c7:d1:55:
97:be:5c:ea:1c:13:59:8c:73:f9:7c:82:67:7f:83:
06:bc:bf:33:ea:d9:90:da:33:7f:f9:80:b2:d3:72:
77:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7C:48:94:CC:47:8A:16:C1:85:59:BF:0F:2E:4C:D3:D8:36:DF:60
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/GXxIlMxHihbBhVm_Dy5M09g232A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.0.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e1:ef:ed:10:e7:80:f9:f0:92:4e:77:1c:49:50:1d:d0:aa:
ea:fc:d3:2c:15:70:b2:85:10:2d:e6:13:0e:d4:e6:8f:37:a2:
3e:24:23:d5:ae:3d:a8:a0:ec:ce:a1:74:0e:bf:80:f0:1c:9c:
3b:ed:52:ca:1c:0d:13:eb:12:db:c8:45:9e:36:a4:6a:8b:3d:
74:60:84:45:cc:59:cf:d0:74:68:8b:e1:d8:a6:af:a1:89:38:
32:f1:d1:42:61:d1:17:91:95:ba:ec:8a:45:f9:11:fd:cc:c7:
e7:95:61:5b:03:2e:80:c8:2d:7f:0c:19:e5:a8:67:d5:c9:4e:
f1:1f:40:41:40:bc:d2:6f:04:c4:8f:5b:ba:13:b5:c3:47:23:
a8:03:77:03:95:29:af:5b:6a:ac:1b:78:cb:78:c4:e1:31:18:
1c:6e:c2:17:99:fb:cb:b5:6e:df:f3:69:b9:15:96:dd:5a:37:
be:85:a0:2f:fd:d5:25:01:b8:1e:39:86:5c:1d:7c:87:c8:91:
50:93:8c:8d:1f:5a:0a:a4:b7:48:4e:2d:54:3b:60:87:b9:2d:
92:66:62:5f:5d:72:14:e4:a0:96:73:98:6d:02:7f:7a:95:3a:
be:f2:6b:b8:d8:30:ae:a8:ad:df:f3:2e:d8:60:9c:da:4a:28:
35:13:f4:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org