Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/gweDLoTzLnk51h--p72p2pog-LA.roa
File: gweDLoTzLnk51h--p72p2pog-LA.roa (raw, json)
Hash identifier: 8NB7k43dwG8oHai1M5TFgV+xIiOI1RAF8NfGu4/mGko=
Subject key identifier: 83:07:83:2E:84:F3:2E:79:39:D6:1F:BE:A7:BD:A9:DA:9A:20:F8:B0
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1082
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/gweDLoTzLnk51h--p72p2pog-LA.roa
Signing time: Thu 13 Oct 2022 08:51:16 +0000
ROA not before: Thu 13 Oct 2022 08:51:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131644
IP address blocks: 182.173.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4226 (0x1082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:51:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8307832E84F32E7939D61FBEA7BDA9DA9A20F8B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6f:13:c0:93:1a:73:14:4b:b2:a9:1e:16:0e:
3d:ee:4e:6e:bc:42:99:e2:91:06:ff:f5:cd:4f:32:
22:ad:87:15:79:44:ac:c9:e7:4c:af:f3:07:05:a0:
38:54:29:2b:e9:20:49:6f:c8:d6:31:d0:c8:66:a0:
66:b9:53:b0:7f:9a:41:1d:7c:b3:23:01:66:1b:42:
27:29:b4:b3:76:43:17:42:9f:f3:94:1f:00:81:cd:
0e:8f:79:02:8f:cf:8f:ca:0d:27:9f:85:63:c8:92:
b2:49:88:fa:98:dd:5b:c4:4f:be:49:8b:f3:65:32:
a7:00:14:fd:35:e0:24:fa:8d:c6:34:ae:3e:cc:64:
e5:4b:9e:01:8a:99:30:95:fb:2d:3c:b0:ed:1d:b3:
b6:c6:88:8b:ee:21:ae:25:96:f4:83:24:86:ae:c0:
76:1d:68:42:19:82:e4:50:d8:ff:6a:ab:9e:32:13:
40:46:2d:22:24:11:b2:34:f1:b1:2f:d3:15:23:0f:
2b:2e:56:a1:51:4f:bb:a6:99:97:b0:2c:2f:60:d0:
9c:3b:95:aa:5a:d1:c5:3c:7a:0b:21:0a:82:3e:a4:
98:4b:3c:24:1f:8d:87:07:9c:28:15:94:42:72:78:
e2:24:df:e7:9c:b9:36:d5:bb:c3:9f:b1:91:b7:3a:
55:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:07:83:2E:84:F3:2E:79:39:D6:1F:BE:A7:BD:A9:DA:9A:20:F8:B0
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/gweDLoTzLnk51h--p72p2pog-LA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.0.0/24
Signature Algorithm: sha256WithRSAEncryption
15:a6:b0:c9:89:2a:4c:c8:64:16:1d:16:bb:59:bd:28:35:3c:
61:2a:71:79:2f:60:28:c0:5a:03:a7:ba:17:cb:93:c5:f8:da:
3c:8e:18:de:64:bb:a6:1b:e5:46:f5:d7:a0:09:b9:7a:b8:35:
79:b6:bb:29:e6:e4:03:de:21:ac:87:fb:91:a2:46:bd:71:18:
db:d7:7a:da:e6:ef:ca:0f:56:3f:26:8a:a3:e6:82:9a:fe:63:
c5:ad:30:01:40:a8:dd:25:c2:f0:8b:b1:e7:e4:52:e2:dd:39:
cc:86:52:eb:f3:54:57:9a:81:db:43:f6:ac:13:bd:87:5f:a2:
94:a8:d8:e8:14:9c:cc:01:e2:f5:82:5e:bb:55:59:71:34:b7:
6e:64:d3:aa:f7:76:a5:87:96:fe:06:9a:34:89:79:ec:8b:8e:
bc:d9:a1:8e:93:8d:35:a4:14:af:81:36:3d:3d:f6:3c:68:49:
9f:02:c1:48:1b:34:46:af:37:1a:45:0f:7f:1c:0d:32:ca:4b:
39:f7:c2:11:bb:28:bd:84:d3:70:43:37:f5:ec:10:c3:fd:bb:
27:22:01:55:5c:c3:78:50:37:ae:e7:ee:33:3b:8d:a7:0e:65:
af:1d:f3:20:13:99:c8:45:4b:e6:38:d5:04:f4:4f:f6:d4:11:
5b:64:ba:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org