Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/p0Z8O5rs3vEFNAjEwEXFu6rRaKA.roa
File: p0Z8O5rs3vEFNAjEwEXFu6rRaKA.roa (raw, json)
Hash identifier: lLGu1hG1snoc5vvcqBFA4b0pYD0IFDEqdorrYjgVlj8=
Subject key identifier: A7:46:7C:3B:9A:EC:DE:F1:05:34:08:C4:C0:45:C5:BB:AA:D1:68:A0
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1078
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/p0Z8O5rs3vEFNAjEwEXFu6rRaKA.roa
Signing time: Thu 13 Oct 2022 08:48:21 +0000
ROA not before: Thu 13 Oct 2022 08:48:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 396982
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4216 (0x1078)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:48:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A7467C3B9AECDEF1053408C4C045C5BBAAD168A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:58:14:71:f2:5a:4c:b1:c4:6d:81:f9:e0:
81:ec:af:7d:0f:12:78:06:94:ca:66:7d:66:a8:be:
22:b4:e9:52:a3:26:76:f5:82:b0:63:c0:c9:2b:f1:
c7:7f:d7:6f:9b:fd:02:d8:10:73:da:43:0a:8f:65:
37:c0:b3:ce:a6:85:ad:4d:00:d0:fc:b1:2b:73:13:
9e:60:c5:2a:e2:20:0c:8b:b7:0f:e2:88:11:dd:d4:
70:12:31:64:ca:0e:64:45:c2:32:26:34:51:a1:cf:
9a:4f:f6:78:47:05:f7:6c:4f:f9:fc:46:1b:69:05:
ee:d1:fe:81:53:aa:26:0f:d8:cc:e2:5e:d0:3f:79:
7a:60:34:80:f2:6c:82:81:4d:39:06:62:83:a4:ec:
8c:d7:e3:60:55:d0:bc:1d:6f:66:c0:b0:c8:a3:c8:
0f:14:1d:ba:7c:08:6d:48:4f:4a:d8:2e:e8:c7:40:
54:8b:b4:33:ad:69:9a:38:96:b5:85:17:ab:9b:37:
a4:fe:28:6d:a4:f2:4c:16:90:c5:78:f5:81:6f:53:
ad:82:b9:db:35:86:a2:19:0b:68:c6:4d:5d:16:35:
47:6b:95:10:c3:78:48:4d:44:68:69:f4:ab:03:74:
c9:38:8f:a4:79:9f:55:e0:ca:9e:74:ae:1c:b8:50:
03:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:46:7C:3B:9A:EC:DE:F1:05:34:08:C4:C0:45:C5:BB:AA:D1:68:A0
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/p0Z8O5rs3vEFNAjEwEXFu6rRaKA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
84:59:e0:06:65:c8:7f:f4:d8:cc:db:52:b5:fe:55:5d:33:e0:
c8:6b:0e:32:c8:3e:7d:27:9e:4b:a1:13:4c:9a:4c:24:ad:af:
c4:cc:2a:ee:3f:2b:4e:bd:69:e7:9f:c2:39:02:94:cc:81:7d:
0d:3e:95:da:48:a5:62:d9:d9:41:8f:08:53:78:73:08:14:e2:
14:88:c2:4b:91:ad:a7:7f:36:a6:b7:4d:7b:27:4f:7c:32:8a:
76:d8:f7:19:32:a2:2e:ab:18:6b:0f:19:d4:d9:1a:28:6f:18:
c9:9f:5c:df:ff:c6:fc:0e:23:75:2d:ee:42:3b:58:ca:6d:b7:
63:25:e5:8f:7e:d7:c7:1e:ff:74:b1:f9:02:2d:8c:78:5b:d1:
6a:0a:40:c7:31:6b:32:ee:a9:9b:52:c4:96:bb:7f:a7:80:d7:
01:bf:3f:d6:19:89:29:a2:ce:7e:07:2b:31:fa:d8:08:fe:5e:
f8:6c:91:7f:c5:28:b2:0d:2b:55:e9:cb:47:c6:6a:99:d2:7c:
77:86:53:72:ac:8a:ac:f4:5e:b8:c0:ee:e1:0b:c1:c7:42:c3:
53:f5:02:04:25:fb:6c:ba:b5:40:d7:f5:6f:46:29:18:da:18:
e3:87:80:e8:39:ae:a6:72:0c:13:d0:b7:83:73:2d:40:62:3e:
c3:2a:88:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org