Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/R1T2I8fpfJnTwvs2oQZ-XAOM9V0.roa
File: R1T2I8fpfJnTwvs2oQZ-XAOM9V0.roa (raw, json)
Hash identifier: gah3Aos8zYIxA4CAjSXm7L6mTg3guZyQfSTh6++V7Ic=
Subject key identifier: 47:54:F6:23:C7:E9:7C:99:D3:C2:FB:36:A1:06:7E:5C:03:8C:F5:5D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0F7C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/R1T2I8fpfJnTwvs2oQZ-XAOM9V0.roa
Signing time: Wed 16 Mar 2022 02:43:28 +0000
ROA not before: Wed 16 Mar 2022 02:43:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 101.102.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3964 (0xf7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Mar 16 02:43:28 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4754F623C7E97C99D3C2FB36A1067E5C038CF55D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:53:ca:11:4d:29:7c:72:7d:6a:ac:28:93:
29:a9:c3:5f:d5:8d:1e:a6:65:96:79:90:cd:37:03:
fa:7b:31:df:37:89:21:76:d5:69:25:7e:f7:62:43:
94:62:2e:bb:44:be:0c:80:6a:24:74:08:36:e9:95:
2c:f6:e7:df:53:2f:13:8d:79:2b:d4:9f:01:42:97:
d4:6a:eb:3b:3d:a7:56:8c:26:e2:cc:2f:01:c2:33:
5a:b2:32:9a:09:cc:58:3f:7e:46:9b:81:98:aa:01:
34:d0:72:dd:e6:08:41:87:ce:a7:7d:2b:99:f1:65:
d6:cb:d5:b6:2b:87:d1:06:ed:43:bb:44:d0:89:03:
00:69:92:61:bf:d8:0f:1c:6d:0f:31:ec:4f:36:93:
3e:e0:e3:20:59:2a:13:cf:cb:7d:49:de:4f:c1:8f:
99:2c:24:2d:d4:59:a8:31:15:de:bf:17:d9:a2:1d:
27:db:4d:a7:ba:71:53:5b:a0:c7:52:8f:b7:be:38:
24:95:2f:70:67:b7:af:45:fc:53:1d:45:a9:c9:b1:
2e:94:5c:b3:78:8d:8e:44:36:46:bf:03:ea:7b:26:
d2:24:0e:70:86:a7:f9:fe:f3:67:c1:79:4b:90:05:
9d:e8:c2:f1:e5:ff:5e:7f:4a:a8:c1:f9:6c:38:8c:
35:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:54:F6:23:C7:E9:7C:99:D3:C2:FB:36:A1:06:7E:5C:03:8C:F5:5D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/R1T2I8fpfJnTwvs2oQZ-XAOM9V0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.102.103.0/24
Signature Algorithm: sha256WithRSAEncryption
85:22:05:b7:c2:be:cb:3b:e0:a9:7d:07:a1:dd:1d:32:42:df:
57:37:5f:9f:2c:c4:51:8c:e9:01:f4:31:45:3a:20:7c:8e:4d:
a6:0f:73:35:f0:62:ca:43:27:de:e1:d9:ab:b4:dc:27:c5:89:
17:c9:09:45:b1:7f:95:2f:a8:44:25:3f:48:0c:0a:96:4f:63:
be:6b:d3:e9:93:e7:79:39:1c:e0:11:7b:2c:94:21:ea:c6:86:
85:49:53:59:b4:8b:e0:dc:de:3e:3a:ab:a1:20:33:31:c8:0c:
c0:45:b8:2e:f2:cc:49:fc:8e:d5:5f:c5:0c:62:fb:5f:08:2d:
fc:f8:06:15:d4:22:b1:ef:67:c5:3c:da:5d:a6:7c:fd:d4:ee:
09:27:78:92:83:fb:3c:44:4b:8a:ce:a5:e7:97:df:b9:c2:4b:
63:10:c9:af:5b:45:4a:71:fc:f5:78:b1:7e:29:89:60:d4:20:
86:f2:4d:8a:c1:54:26:c2:ed:e9:2f:12:a3:e2:f9:4b:9a:7f:
44:2e:17:c8:1b:be:ba:91:ff:d0:57:c4:21:41:93:28:61:ea:
52:1e:c6:3b:97:c9:9a:8f:e1:86:82:00:f6:03:c3:19:43:73:
7b:8b:7b:1e:84:e8:35:f9:36:70:51:3f:8c:72:5a:7b:15:89:
95:9a:4f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org