Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/a4W15tIqIxQmkTIXSWtX-ZiKt4U.roa
File: a4W15tIqIxQmkTIXSWtX-ZiKt4U.roa (raw, json)
Hash identifier: MR51GLmU9JR2vVmE0N7cV7Wzu9U2fd+6CnLPQXXgL9Y=
Subject key identifier: 6B:85:B5:E6:D2:2A:23:14:26:91:32:17:49:6B:57:F9:98:8A:B7:85
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 079F
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/a4W15tIqIxQmkTIXSWtX-ZiKt4U.roa
Signing time: Tue 29 Sep 2020 10:07:17 +0000
ROA not before: Tue 29 Sep 2020 10:07:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131621
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1951 (0x79f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6B85B5E6D22A231426913217496B57F9988AB785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7c:f1:51:b8:75:08:38:65:3a:72:5b:e0:5a:
0b:63:4e:5f:8d:94:2c:e9:24:d0:38:26:4a:34:6e:
76:cb:d4:a8:86:29:a3:25:0f:28:74:e6:fd:01:6b:
57:bd:95:ba:80:a0:cf:36:cd:f2:da:e9:d6:81:f5:
1e:55:f5:37:74:03:92:75:53:05:90:74:f5:dc:79:
fd:15:99:72:5d:21:7c:ea:03:cf:f1:c4:5c:ee:ca:
01:39:75:5a:8e:ce:8f:1d:14:e5:9a:3f:f1:26:0a:
29:b0:00:62:44:c3:39:27:b5:58:57:52:8a:ed:79:
f3:6d:ac:20:cc:74:45:c7:8d:8e:3d:fe:c2:30:fa:
81:fa:69:d7:83:d9:08:9a:00:e9:a5:61:90:1f:52:
3a:df:ea:80:ce:d4:90:a2:b9:24:ea:95:e3:0b:91:
03:60:df:af:fd:ca:f6:c9:6c:81:1f:08:89:64:ed:
6c:d6:f8:eb:ae:f9:22:ce:49:e6:fc:ef:fa:a1:3f:
dd:65:72:ec:da:10:f4:91:78:34:b6:23:4c:2b:a1:
a3:3f:bd:91:49:a5:6b:4a:b3:6c:26:4d:91:01:f5:
fc:1d:3d:eb:25:cb:cb:9a:08:ed:ef:0e:dc:25:f6:
5d:a5:fe:bd:f4:f2:68:83:8a:12:58:08:f3:96:77:
4e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:85:B5:E6:D2:2A:23:14:26:91:32:17:49:6B:57:F9:98:8A:B7:85
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/a4W15tIqIxQmkTIXSWtX-ZiKt4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:bf:7a:aa:33:ab:39:d0:46:1f:c8:bc:9a:9a:ce:bc:a9:bb:
7f:00:29:f4:20:89:65:cf:66:75:c6:71:60:38:ca:c4:9d:96:
f7:55:eb:79:96:ad:50:b7:26:97:31:b9:bf:40:c0:d1:52:68:
bf:a0:4f:77:62:84:d3:e9:4a:a3:8a:a2:bf:31:24:b0:ef:0a:
dd:b0:7c:ed:34:02:f7:f0:81:61:31:50:b6:09:c3:3f:71:01:
4d:d9:9c:82:9a:72:e3:13:f1:fa:91:31:11:0a:3b:29:59:33:
2e:7f:62:67:6f:a7:46:96:29:db:b4:6d:d2:72:8e:5c:45:c3:
9f:2f:b7:46:9b:c2:f0:18:0c:f4:85:a1:09:61:56:dc:f8:0e:
17:45:49:e0:fd:94:c6:b1:1b:bb:cb:e7:13:e9:0f:66:73:b6:
1d:26:15:0e:f9:b5:a2:47:07:39:5c:6b:c1:49:e7:98:37:4c:
8f:95:d7:a0:18:c5:cd:bf:a3:e9:d3:fa:d6:85:43:15:d0:8e:
6d:e1:86:60:12:5b:42:44:49:39:1f:6e:38:a1:71:40:6f:6a:
b4:a7:0b:04:4c:2c:ba:84:62:38:45:67:24:62:62:9a:48:39:
47:1b:05:2b:fc:3e:c1:74:f0:a5:bb:e2:91:7b:e2:9d:03:a3:
66:cb:78:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org