Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/qP7NyAdzr_dqsavum27haNdzduQ.roa
File: qP7NyAdzr_dqsavum27haNdzduQ.roa (raw, json)
Hash identifier: bQ5pBcMvlIGnhjQNrcdxtnCRgfoHYiih0hr7wI6iETY=
Subject key identifier: A8:FE:CD:C8:07:73:AF:F7:6A:B1:AB:EE:9B:6E:E1:68:D7:73:76:E4
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 104C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/qP7NyAdzr_dqsavum27haNdzduQ.roa
Signing time: Thu 15 Sep 2022 02:37:12 +0000
ROA not before: Thu 15 Sep 2022 02:37:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 150.242.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4172 (0x104c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 15 02:37:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8FECDC80773AFF76AB1ABEE9B6EE168D77376E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:75:d0:79:1f:02:10:a1:b1:b8:ee:92:e7:a7:
13:30:8a:6e:d2:4b:e2:58:b2:0f:9f:18:ef:0a:26:
f3:b5:b3:b1:9b:71:61:65:d6:9e:44:c3:13:29:86:
38:40:fd:55:9c:59:81:97:d3:e8:84:a7:7e:32:ec:
5f:fa:f0:95:60:4e:aa:13:eb:51:40:4c:6e:fd:e7:
44:c0:d5:53:03:d9:27:b5:fe:0b:32:91:cb:50:44:
a1:6c:68:55:3b:5a:c9:80:de:63:32:cf:1c:cb:7b:
35:c6:09:d4:21:52:ab:d7:78:eb:bf:70:1e:0c:90:
d4:20:db:48:99:21:a0:a2:43:4b:2e:77:ad:36:60:
e5:fd:37:0f:2d:ab:47:28:11:91:d8:87:60:bb:ce:
3c:5f:33:6f:41:49:89:56:20:3c:b0:6e:13:93:e8:
7a:34:04:f4:25:c5:cf:42:9c:c4:ad:ae:e9:b8:b5:
b7:30:2f:b2:3d:f2:19:8a:3a:0f:d0:aa:61:52:4f:
f1:b5:e6:2d:67:ef:89:91:f9:c6:53:93:50:dd:36:
a6:64:e2:1d:0b:f9:07:82:16:7d:1e:92:d0:cd:a0:
77:e2:51:e7:ea:78:ae:60:df:c5:af:a9:e7:7a:33:
9d:58:1d:f5:03:b1:01:b0:67:db:a3:73:b4:db:d4:
03:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FE:CD:C8:07:73:AF:F7:6A:B1:AB:EE:9B:6E:E1:68:D7:73:76:E4
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/qP7NyAdzr_dqsavum27haNdzduQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:88:f5:9c:4e:93:8e:1e:68:4a:9c:6d:1a:9d:10:a5:6c:5e:
77:64:29:dd:83:d9:1b:75:bd:30:08:10:bc:6f:a4:25:3e:d1:
34:37:b6:31:88:0c:a9:16:a8:72:1b:eb:4c:3e:b2:17:4f:e4:
e6:d9:f2:00:51:98:a0:44:b2:4a:88:cb:1f:3b:cd:d8:ba:06:
08:6c:1f:a7:76:c6:a8:3d:1c:6d:c2:3f:94:01:98:fb:54:f6:
c6:51:b7:00:3b:69:4f:e5:e0:0c:b5:e4:9f:e8:e8:10:3e:cf:
92:55:5f:6c:b8:d6:30:5f:7d:d1:39:a7:e8:03:24:7a:45:51:
59:92:2d:cd:d6:ab:ee:d3:d4:2c:32:f4:e5:b7:34:bf:8e:66:
b9:c8:1c:28:2f:d2:8d:f0:34:92:1f:a1:0a:e7:0e:70:9b:46:
ab:44:08:cc:9c:31:78:a3:ae:f6:03:3f:19:c9:85:10:02:91:
10:d1:c4:a0:ba:60:08:4b:2b:52:a8:1e:85:5b:57:fe:d0:3f:
f4:e1:88:cb:8a:ed:26:29:a1:27:59:f5:93:cc:2f:f7:b1:64:
96:a7:e8:90:e2:24:cc:11:0a:cf:a2:74:77:d0:96:42:14:1d:
09:90:f7:2a:38:76:21:a2:19:69:73:2c:21:a7:8a:1a:ea:4b:
b1:80:de:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org