Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SYTe6KX-Gyco3Kr9IgdikMhe-Hg.roa
File: SYTe6KX-Gyco3Kr9IgdikMhe-Hg.roa (raw, json)
Hash identifier: 96TgC0svOxFirwVuCLPuUvgb5/zpYTIAfIWQ7rwZm3U=
Subject key identifier: 49:84:DE:E8:A5:FE:1B:27:28:DC:AA:FD:22:07:62:90:C8:5E:F8:78
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 07A3
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SYTe6KX-Gyco3Kr9IgdikMhe-Hg.roa
Signing time: Tue 29 Sep 2020 10:07:18 +0000
ROA not before: Tue 29 Sep 2020 10:07:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131621
IP address blocks: 101.102.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1955 (0x7a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4984DEE8A5FE1B2728DCAAFD22076290C85EF878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e7:41:9b:5a:20:05:fe:e3:a0:63:7e:c3:fb:
04:bb:ab:09:44:96:45:20:5a:38:e7:b5:b0:b4:57:
67:27:99:39:b8:20:46:48:a7:ae:d5:d6:7a:45:6f:
2b:d4:6e:2c:28:f7:0d:3e:0d:b5:23:c8:98:40:66:
7e:ce:0c:ae:ec:b9:4c:bb:7d:65:fc:60:a3:93:26:
1f:d5:5a:8d:1d:b5:ea:b5:cb:ec:a3:f5:49:b0:4b:
4d:89:ad:a5:7b:15:06:54:d2:61:83:bc:59:24:c2:
d8:df:84:46:c3:01:b6:88:17:76:25:99:d8:83:1b:
4e:de:77:e6:93:ef:e6:5a:d3:a4:e0:7c:95:4a:9c:
e0:77:87:54:48:b9:99:97:93:d9:b7:d5:d7:0e:01:
34:10:6a:7d:f4:8f:c9:7e:d0:bf:16:ce:e5:f2:9e:
b9:fb:1e:38:5d:be:1f:c2:3f:50:91:0d:8b:c8:fd:
95:62:8d:b2:f6:82:be:23:d9:f5:2f:e9:09:b1:b1:
f8:90:bb:5e:34:bc:8e:a7:f4:4c:2f:56:a3:c9:13:
37:63:85:4d:37:06:90:d4:c3:7f:62:af:8a:a9:a3:
56:04:d8:6a:39:72:aa:f7:e5:bd:31:44:51:03:da:
24:30:12:0f:4e:17:80:50:5d:07:67:ec:28:51:cc:
06:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:84:DE:E8:A5:FE:1B:27:28:DC:AA:FD:22:07:62:90:C8:5E:F8:78
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SYTe6KX-Gyco3Kr9IgdikMhe-Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.102.103.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:75:6d:99:e6:d7:47:e1:f9:9b:8f:12:1f:35:a5:29:27:b0:
ff:c9:4f:a3:a7:2c:ac:1d:71:c1:ad:91:9e:87:e7:ce:e6:00:
96:00:28:ad:2b:67:9b:5f:b3:0d:9a:c0:54:6a:15:a8:dc:9c:
f7:e6:dd:37:e4:28:6c:dc:f1:d8:57:ef:bc:1a:d6:ef:bc:67:
8f:4a:2d:2b:d5:4d:8f:66:ad:a3:af:77:3f:d1:20:e6:ad:38:
13:e3:ca:af:b2:62:ff:a8:75:db:d0:d4:8b:1f:a8:68:79:56:
a6:40:60:c1:1f:c7:03:f5:83:9f:a7:ed:15:51:00:bc:06:65:
01:5d:73:f3:91:1d:55:f7:39:ce:80:cf:fc:05:5f:ed:8d:71:
68:5a:2e:1b:84:01:31:c4:e5:1a:7a:5d:44:69:e7:16:82:d9:
d9:69:02:8c:c6:7b:25:a5:09:2f:b1:d9:38:45:4a:80:01:8b:
04:1b:d0:27:bd:f0:3d:4a:de:85:80:80:04:b4:37:4a:e6:d0:
ea:1e:88:91:78:5a:0e:8e:ea:98:6a:cb:d4:ce:5e:3d:c7:af:
97:dd:42:ee:b3:5d:dc:fe:58:05:13:81:69:a1:0e:6d:07:38:
de:a2:55:78:5c:95:2c:f2:67:87:f5:be:cf:6c:86:c5:0e:7e:
4f:6a:2f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org