Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/QxPB4pwrB_3u7v1Uzpym9-FwHoI.roa
File: QxPB4pwrB_3u7v1Uzpym9-FwHoI.roa (raw, json)
Hash identifier: A7qad6fl/dl+jLrnnb6rcI0KmQ/84NUATlpINJPXzzo=
Subject key identifier: 43:13:C1:E2:9C:2B:07:FD:EE:EE:FD:54:CE:9C:A6:F7:E1:70:1E:82
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0E32
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/QxPB4pwrB_3u7v1Uzpym9-FwHoI.roa
Signing time: Sun 07 Feb 2021 10:53:15 +0000
ROA not before: Sun 07 Feb 2021 10:53:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 203.119.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3634 (0xe32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 7 10:53:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4313C1E29C2B07FDEEEEFD54CE9CA6F7E1701E82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8a:cf:22:53:25:88:91:39:41:1c:63:72:75:
49:ca:fd:29:2e:17:e2:51:5d:aa:6b:54:2b:d0:96:
85:4f:7c:3e:48:18:53:0c:e9:75:e6:73:85:10:56:
b1:e7:6c:b3:4b:85:26:a8:1c:23:4f:aa:cb:69:17:
39:6d:13:63:4a:c1:b2:f0:dc:74:b8:e4:9e:68:63:
82:fc:9b:8b:39:85:7f:15:44:24:8e:3b:31:86:71:
a5:80:d2:db:1e:3a:b1:0d:ec:df:6b:29:34:82:bb:
19:55:dc:a0:27:db:41:a9:e6:92:2a:5e:50:8f:99:
30:38:4d:d3:07:e2:2d:85:1b:0f:50:cd:49:83:e8:
bf:d5:70:f9:a4:e1:fb:75:4d:9b:59:b2:c1:3b:81:
85:3d:f1:e6:cd:89:0c:e9:11:cf:1d:77:03:6a:a0:
fb:0a:e1:ec:9b:0c:11:6b:2d:0e:7c:8d:3d:0b:2e:
96:87:79:19:b5:b4:f0:7b:68:c3:75:12:17:2d:79:
13:0f:79:17:1b:1f:87:af:0f:d5:c2:ea:de:9d:5e:
1b:d9:9c:52:61:fc:ef:77:d4:9f:13:7e:26:0b:a9:
db:72:25:33:db:05:01:66:5f:b6:e7:ed:f4:f1:3e:
bc:88:56:a9:30:6f:2e:6f:a5:cd:25:a7:17:23:1c:
6e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:13:C1:E2:9C:2B:07:FD:EE:EE:FD:54:CE:9C:A6:F7:E1:70:1E:82
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/QxPB4pwrB_3u7v1Uzpym9-FwHoI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.3.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e7:13:20:01:88:55:42:12:04:96:62:56:2d:74:79:f4:22:
ae:3a:c0:eb:f9:2a:04:20:27:fe:97:83:d7:1e:e7:bb:b8:b1:
47:04:df:f9:68:84:d3:9d:04:35:92:fe:5c:17:29:c6:eb:b0:
a4:df:7b:fa:03:67:99:13:88:5d:73:5e:bd:79:c3:8c:eb:7e:
b7:fd:14:25:9e:32:55:69:05:6d:6d:26:00:7e:e6:52:04:70:
2d:15:d3:4a:5a:4e:d3:7c:71:b4:d5:ca:de:b7:30:0f:d2:d7:
66:17:9f:da:4a:c4:fa:27:7f:66:5f:f2:4b:d1:a1:64:62:00:
17:32:29:21:37:39:7e:5c:7b:c7:1b:79:67:3b:71:b8:e0:45:
68:3b:87:05:c5:1b:b7:08:d2:9d:0c:a5:dd:86:4a:f5:97:c4:
64:a3:99:d7:77:a6:bd:07:f9:e0:d4:91:44:b0:68:b4:0c:44:
22:bc:0f:9a:88:39:e5:c3:71:1e:95:a1:06:1b:fa:59:69:f5:
63:24:05:7e:27:12:73:3c:0e:85:c8:0e:1c:a9:7c:75:8c:21:
d8:2b:ea:99:55:40:08:c1:91:79:ec:02:2d:cf:ad:fa:62:e8:
ea:aa:07:88:0b:ea:56:c8:08:cf:08:78:d1:f7:f1:32:ae:a9:
4e:07:94:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org