Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/taCz8AlBMllMCPFb1gCbtt4L-yU.roa
File: taCz8AlBMllMCPFb1gCbtt4L-yU.roa (raw, json)
Hash identifier: nWbCyaBQDHKFE8zv6QVwL/+7O1S7DxMw2Eh9oKw4rpg=
Subject key identifier: B5:A0:B3:F0:09:41:32:59:4C:08:F1:5B:D6:00:9B:B6:DE:0B:FB:25
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 079E
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/taCz8AlBMllMCPFb1gCbtt4L-yU.roa
Signing time: Tue 29 Sep 2020 10:07:16 +0000
ROA not before: Tue 29 Sep 2020 10:07:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 203.119.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1950 (0x79e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B5A0B3F0094132594C08F15BD6009BB6DE0BFB25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:87:3f:3e:7b:78:b2:7a:c9:b5:99:8f:98:2f:
45:2c:da:be:19:b5:7f:18:17:d2:17:e8:e8:d5:09:
e4:99:4c:85:b3:5f:e8:0a:f0:43:a1:23:7c:94:2b:
ed:69:53:e0:20:bd:19:c4:e7:cb:ed:a4:1b:26:18:
e3:23:5e:da:a9:82:52:68:c6:57:04:e8:65:c4:7c:
d1:37:5c:94:18:da:8c:30:f1:ef:ad:c1:cf:eb:07:
d1:7f:92:80:cb:47:3a:ac:4a:79:1f:60:fc:47:d0:
83:80:20:92:01:4d:61:6a:bf:4a:6a:2a:88:6a:a6:
c8:65:19:1c:27:81:d2:58:a0:c8:64:cd:2b:d0:73:
a1:fc:e8:e4:f9:16:c1:fb:89:2d:dd:2e:d7:83:f8:
a6:88:52:74:ae:0f:4c:be:ae:28:b8:e7:2a:e5:18:
cd:a3:1f:bc:7c:17:07:64:a0:11:d0:be:43:ed:28:
5c:70:8a:d8:a0:ac:e5:d7:18:7c:bb:69:26:ca:5e:
54:46:0d:48:0b:c9:2b:05:ba:ec:7d:94:d6:13:ba:
dd:66:9b:d8:2d:a1:dc:2e:95:26:09:2e:5c:af:4c:
9a:82:ac:29:1c:49:89:20:fb:6b:97:c6:6e:18:43:
a4:bb:b0:07:24:bc:fa:b4:69:68:0c:8e:37:da:ee:
02:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A0:B3:F0:09:41:32:59:4C:08:F1:5B:D6:00:9B:B6:DE:0B:FB:25
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/taCz8AlBMllMCPFb1gCbtt4L-yU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.3.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:49:90:2b:49:97:4f:d0:63:5b:6d:bf:70:09:46:01:46:35:
4b:e8:33:ac:c6:fa:95:8e:2c:72:fc:86:ce:95:bd:05:78:7c:
8f:36:e4:2a:39:5b:d1:5a:e9:29:3c:96:46:da:37:95:67:5d:
94:1a:32:68:a3:fd:96:a2:94:9b:09:cf:94:7b:3e:59:67:72:
af:52:7d:37:3c:81:47:e9:e2:85:4b:e9:f1:3d:7d:18:67:b9:
05:31:0b:19:2d:5a:83:5c:8f:b9:03:90:c3:98:e7:e2:6e:3c:
ff:f2:46:12:cb:fc:7e:1e:e0:2e:15:c1:81:fa:6a:bf:d5:c1:
bd:54:40:70:e0:fe:52:dd:c1:ef:8a:87:56:7e:6d:82:9f:a5:
a1:6c:55:58:4d:3c:f9:90:c6:60:56:4c:08:13:d1:ae:d5:c9:
dd:4a:0a:81:44:43:b6:f0:34:ec:58:8f:80:6b:b2:27:5f:4c:
76:0a:c7:a9:98:f9:19:12:0b:99:5b:f2:4c:01:d5:e3:19:a0:
62:fe:82:19:3a:6b:aa:cd:a6:82:d8:0a:50:a6:6e:be:58:39:
19:37:18:61:4f:ae:21:3b:9b:e3:4a:45:d5:6a:5b:7b:40:1a:
c3:91:ab:85:1d:93:a7:fc:90:8c:f8:60:9d:b7:78:6b:8b:8a:
cc:98:43:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org