Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/gwi94nFZGX5AeR3taPS_XqBrUCs.roa
File: gwi94nFZGX5AeR3taPS_XqBrUCs.roa (raw, json)
Hash identifier: dRiFG1GlD73bd9JH1beLD6Z5QddaDpYS3apCfwebRus=
Subject key identifier: 83:08:BD:E2:71:59:19:7E:40:79:1D:ED:68:F4:BF:5E:A0:6B:50:2B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0F7A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/gwi94nFZGX5AeR3taPS_XqBrUCs.roa
Signing time: Wed 16 Mar 2022 02:43:03 +0000
ROA not before: Wed 16 Mar 2022 02:43:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3962 (0xf7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Mar 16 02:43:03 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8308BDE27159197E40791DED68F4BF5EA06B502B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:bd:ac:db:c9:f7:d3:1e:5c:43:a4:3d:e1:
01:08:cd:93:06:6a:4d:91:29:77:4d:b9:da:12:fb:
0e:59:97:3a:7b:82:01:53:44:95:66:b7:06:35:17:
83:fc:49:1f:ae:40:49:68:ac:89:b7:9e:db:49:ff:
4d:33:75:5d:12:7f:0f:07:75:46:5a:c8:ce:6b:c1:
c2:87:0c:98:d8:0f:b4:59:28:29:5a:4f:8c:65:a0:
49:d4:c3:6a:ab:b8:76:ca:59:2a:18:78:8b:76:e6:
ba:4a:fa:4f:29:ed:90:93:78:5f:58:ad:37:63:0b:
62:ca:07:5e:dd:84:2f:f7:7c:03:fd:48:cd:8d:ee:
fd:00:89:62:9d:fb:6c:a0:10:b5:86:f9:75:dc:59:
2a:91:07:c8:12:91:6e:00:84:51:8e:0b:80:b8:0c:
1c:28:d2:52:83:d8:75:3c:35:f6:ba:ce:3f:ef:f4:
f5:a1:ad:c5:64:77:60:b0:c0:b0:77:eb:5f:62:d4:
56:74:56:80:0f:b4:15:d3:a0:1a:33:60:72:87:ae:
5f:f0:c7:f9:07:e3:67:aa:aa:34:5e:f4:b1:53:1d:
14:9f:a8:50:dd:ff:66:d1:c4:37:eb:fa:ae:3d:6d:
e9:68:88:ca:61:09:f1:66:34:d4:95:ca:96:b5:48:
d6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:08:BD:E2:71:59:19:7E:40:79:1D:ED:68:F4:BF:5E:A0:6B:50:2B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/gwi94nFZGX5AeR3taPS_XqBrUCs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
07:8d:b8:e0:fe:4b:8d:34:04:0a:48:df:d3:6e:87:24:90:80:
32:c6:d3:be:5a:ab:6b:15:25:c3:dc:38:2a:44:aa:2b:d2:7e:
b6:8e:96:e5:5a:f6:eb:17:8f:a1:d2:b6:fb:dc:a0:ae:11:c9:
2f:72:9e:6d:ab:02:28:5e:18:32:9c:84:45:10:d1:0d:4a:47:
51:34:ce:3d:b7:0d:2d:1e:f1:3f:e3:9d:c5:37:e1:f0:58:e0:
8e:1d:f0:bd:f2:ad:b0:5e:4b:e4:7e:7d:ce:6a:ff:dd:b3:de:
f3:15:94:58:9d:3c:69:39:9a:ac:01:39:5a:47:09:12:09:94:
e0:de:2f:15:eb:10:80:56:34:e1:72:38:db:e6:c4:d4:f8:c9:
b0:75:42:bb:26:9f:cd:5c:76:81:3b:83:8f:c1:73:90:e1:3f:
61:f9:e7:d7:72:d2:b7:b2:2a:7c:9f:32:2a:89:0c:53:ac:1a:
2c:1d:8c:ce:ca:88:11:93:05:50:6e:42:64:b8:5d:3e:0e:55:
ad:ad:83:f3:9c:1d:18:4a:1a:38:ed:21:3f:ba:dd:76:2f:86:
10:ba:d4:ef:4a:32:9f:60:2f:76:f8:0b:59:09:48:67:8d:48:
dd:b7:a1:7a:88:34:b8:35:6e:69:9d:54:4e:ac:77:78:01:c9:
3a:3f:da:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org