Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/uKPVPJDji2P4Q4BixAp1rfmk8cA.roa
File: uKPVPJDji2P4Q4BixAp1rfmk8cA.roa (raw, json)
Hash identifier: UvJJJ5/TXuAGNmX/s1hB0Fb2klIjZY+MryqgiaMZWGQ=
Subject key identifier: B8:A3:D5:3C:90:E3:8B:63:F8:43:80:62:C4:0A:75:AD:F9:A4:F1:C0
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EE1
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/uKPVPJDji2P4Q4BixAp1rfmk8cA.roa
Signing time: Wed 29 Sep 2021 02:56:15 +0000
ROA not before: Wed 29 Sep 2021 02:56:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131621
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3809 (0xee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B8A3D53C90E38B63F8438062C40A75ADF9A4F1C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e3:36:b7:18:6b:e1:b2:5c:ba:32:e0:18:bc:
d9:13:01:fb:c4:68:fc:01:8f:6d:83:c7:37:98:8e:
03:ba:4d:0e:24:06:bf:b9:72:bd:41:a8:eb:39:72:
96:7f:8a:7a:db:ce:05:be:71:01:f0:8f:a1:bc:ca:
9f:94:e4:f7:00:d3:6f:24:30:f8:69:2e:ff:76:33:
8b:d2:84:64:e6:bf:89:8a:67:51:06:a3:10:81:74:
fb:85:78:21:36:16:1a:d8:83:3e:d9:0d:4e:a5:56:
6c:f3:9c:36:7a:6f:01:54:eb:45:f1:75:ba:16:3b:
2f:d4:1c:3f:23:74:f1:18:eb:67:c5:5c:c2:b1:2e:
4d:10:af:9f:1d:05:39:d2:15:5b:b7:62:06:b4:31:
e9:f4:1c:c0:58:2a:04:31:d9:b1:75:7d:03:03:58:
bb:80:c9:c3:81:bb:e4:87:95:7b:79:78:37:2d:ac:
15:f4:60:29:74:43:09:d0:5b:3b:b7:c8:a3:8f:eb:
11:9c:5d:11:ca:f4:c7:c9:d0:aa:e9:97:93:26:b1:
e9:54:c0:31:21:80:ee:b7:56:07:66:cd:87:e6:71:
d5:4b:91:af:9b:77:3e:83:95:56:2c:04:14:f5:8e:
ba:8d:87:e5:e9:22:05:6c:85:51:93:f1:19:0b:ef:
68:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A3:D5:3C:90:E3:8B:63:F8:43:80:62:C4:0A:75:AD:F9:A4:F1:C0
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/uKPVPJDji2P4Q4BixAp1rfmk8cA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
79:3c:6d:74:48:a1:c7:1d:d7:8b:0b:40:91:93:01:02:57:5d:
10:33:16:43:24:3c:7a:ce:2f:c5:62:4d:81:f8:54:aa:d4:94:
c3:4c:bf:93:c4:17:3c:26:cb:99:cb:b7:3b:77:c1:94:ab:53:
92:20:10:b2:0e:fa:93:ff:b9:e7:41:ce:b0:13:6d:b2:b1:8a:
e9:78:48:8b:e0:26:63:96:c3:90:79:05:37:0b:b9:fa:38:f2:
64:ef:eb:9c:de:84:a0:be:db:31:6d:9d:68:c0:16:49:ca:74:
b3:5a:cc:92:4b:5c:5a:ac:c5:a5:4e:31:bb:05:54:22:07:e2:
df:6a:ca:e5:bd:f2:4b:6f:6b:1b:af:1f:1e:06:ea:c4:2d:7d:
9f:12:6c:57:c0:1d:40:2e:9c:ed:72:11:f9:01:3f:7b:5d:59:
59:85:ae:0a:a2:27:38:51:37:70:3f:29:83:9c:30:e3:71:f1:
ed:61:66:bc:7d:31:de:37:8d:bf:00:3f:7d:13:ac:34:e9:16:
94:40:40:72:b9:9f:71:e2:d3:7f:57:24:cd:cd:bb:d7:38:fc:
15:69:70:1e:9b:99:a4:54:e8:89:46:1a:3b:2c:8e:7a:3a:f2:
5f:7f:5c:eb:3f:5f:18:09:58:40:93:f0:af:b8:a5:f2:12:14:
95:15:f0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org