Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XeiyU16tmQIhf8OW1Kt4VCNugTg.roa
File: XeiyU16tmQIhf8OW1Kt4VCNugTg.roa (raw, json)
Hash identifier: RE9krfw9nxooVqetbG8/tucR4rfqecXurZpvzFSIXnA=
Subject key identifier: 5D:E8:B2:53:5E:AD:99:02:21:7F:C3:96:D4:AB:78:54:23:6E:81:38
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0E3A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XeiyU16tmQIhf8OW1Kt4VCNugTg.roa
Signing time: Sun 07 Feb 2021 11:50:11 +0000
ROA not before: Sun 07 Feb 2021 11:50:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131621
IP address blocks: 101.102.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3642 (0xe3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 7 11:50:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5DE8B2535EAD9902217FC396D4AB7854236E8138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:6e:dc:25:70:7b:2d:a9:5e:3d:c0:da:45:
b3:19:23:90:ed:f3:fc:1d:f9:f4:83:5d:11:1e:82:
8c:94:61:70:85:b0:5f:49:4a:a3:58:d2:f1:79:f6:
c5:3d:63:a5:f0:a9:7b:e2:fb:af:63:61:96:d1:27:
46:06:e1:c5:9b:4e:e8:58:a6:8e:a2:fc:9d:a3:1f:
e7:6b:0c:c3:7d:d2:08:34:66:32:a5:54:4c:90:a3:
af:59:88:51:8c:90:e6:d6:48:86:33:04:50:9c:ec:
5f:d3:be:af:f5:1f:6d:3e:b0:78:c8:e2:79:28:75:
6d:eb:37:65:98:c9:b9:d5:01:a9:0b:fe:fa:be:2c:
cb:38:fe:cc:78:4e:ed:06:73:02:6f:48:36:49:66:
a6:d6:90:b8:9d:cd:d0:56:d5:b6:31:9c:e5:5e:23:
5f:cf:be:74:d0:fe:70:b8:53:13:f9:82:ac:90:01:
c2:3e:6d:5f:4f:0b:bd:c1:0a:26:4a:8b:a1:5b:59:
4e:53:22:b0:50:63:6f:8c:fe:ef:76:ea:14:d4:ed:
98:8b:9c:2b:01:c3:e5:4a:b3:4d:c1:fe:82:45:11:
03:50:c0:5a:93:a4:52:37:8a:91:a9:8c:8e:0d:82:
19:cb:15:ca:ae:8b:c3:ab:93:da:fb:18:f6:e0:ec:
61:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E8:B2:53:5E:AD:99:02:21:7F:C3:96:D4:AB:78:54:23:6E:81:38
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XeiyU16tmQIhf8OW1Kt4VCNugTg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.102.103.0/24
Signature Algorithm: sha256WithRSAEncryption
33:1b:59:49:41:e4:c3:82:d3:d9:36:64:ee:0d:cb:99:d4:af:
ec:3b:5f:df:8d:23:ee:84:e9:2b:19:ca:b2:1b:08:fd:b1:3d:
fd:fb:82:c9:1a:70:0b:1e:f0:04:36:83:e1:c6:56:ca:05:14:
3e:88:e2:75:82:94:bf:e6:34:c9:71:ca:d5:d1:ff:96:62:67:
07:63:01:4a:33:34:14:1a:96:03:2d:6b:e6:a8:f1:0e:cc:7d:
49:53:47:7b:14:c7:24:35:3e:80:50:61:56:ee:4d:1b:aa:a7:
90:0c:f0:3e:64:b7:16:04:da:01:7f:c6:f3:15:77:1f:1a:1d:
f6:72:ca:4c:e2:65:84:91:d2:8f:ee:da:9b:06:68:c1:a5:b7:
23:e7:32:36:78:b7:c6:b6:35:50:b5:0a:79:82:cd:99:11:75:
82:65:ec:a2:ab:b0:e0:10:04:1a:e2:bc:e7:0f:d5:13:65:74:
c4:48:86:51:52:6d:28:ae:38:e5:99:cd:ea:01:e1:cf:24:f3:
23:5e:78:ca:e9:61:37:64:e7:2c:27:e3:eb:cf:af:c8:0d:5a:
18:0c:83:0c:c1:37:b8:4a:43:36:a6:d7:f1:84:ef:8a:78:9c:
c1:a7:07:8f:a6:ec:a4:df:f3:4e:81:9e:f0:c5:8a:dd:08:47:
c2:56:30:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org