Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/cT3VtnDuiUeplfra2EiP7Wk3wAE.roa
File: cT3VtnDuiUeplfra2EiP7Wk3wAE.roa (raw, json)
Hash identifier: e2wo8KxCoLhez5IAm8FushsnBLNY1qLxmbgj1f938/Y=
Subject key identifier: 71:3D:D5:B6:70:EE:89:47:A9:95:FA:DA:D8:48:8F:ED:69:37:C0:01
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 08D7
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/cT3VtnDuiUeplfra2EiP7Wk3wAE.roa
Signing time: Sun 07 Feb 2021 13:08:02 +0000
ROA not before: Sun 07 Feb 2021 13:08:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 122.255.95.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2263 (0x8d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 7 13:08:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=713DD5B670EE8947A995FADAD8488FED6937C001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:84:ab:65:13:1b:75:95:be:b7:e2:11:18:10:
85:c5:38:3f:f9:61:91:9e:9d:2b:21:02:15:ac:6c:
e4:76:c8:b4:e8:dc:45:c0:b0:aa:85:da:02:b6:89:
ba:07:6e:92:0e:93:1f:86:5c:9e:51:66:49:33:fd:
de:95:4d:9b:cb:9c:d3:36:97:16:a5:70:e3:92:f0:
ff:6c:09:39:71:b9:22:f0:b1:5e:e6:5b:01:16:e7:
67:7b:0a:37:3c:05:80:71:59:aa:69:1a:4e:e9:f7:
fa:6f:6d:b1:5f:c3:ef:f4:76:59:26:a2:23:5b:41:
ac:22:45:5e:cd:e9:ae:c1:bd:18:52:55:a2:bc:0c:
a6:ce:20:16:c3:79:82:5e:40:3d:a9:86:17:0c:66:
75:0d:45:87:ef:d9:37:84:90:f4:e9:d6:d1:35:8e:
c3:e3:c8:55:1a:68:26:3e:a4:39:19:f7:5d:0e:cc:
b6:62:1e:2b:c5:72:b8:17:b0:e9:87:21:02:5b:76:
9d:8d:35:87:14:e2:df:22:3a:28:bc:10:ab:1a:75:
20:fc:e4:e6:a8:3e:9c:f3:83:d6:5e:24:a5:1e:33:
78:e9:c3:d9:f8:71:ae:5b:65:42:2b:77:78:43:63:
35:80:f2:01:0d:b8:d2:45:0d:01:8b:79:79:c0:c2:
f0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3D:D5:B6:70:EE:89:47:A9:95:FA:DA:D8:48:8F:ED:69:37:C0:01
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/cT3VtnDuiUeplfra2EiP7Wk3wAE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.95.128/25
Signature Algorithm: sha256WithRSAEncryption
72:f4:03:f2:ea:bf:c6:00:5a:80:fe:5f:5c:27:e7:44:7d:6a:
d6:11:f1:2c:81:a8:bf:55:d3:0e:0b:e4:af:77:f3:2a:12:e0:
be:c0:29:c6:d7:5a:6d:f4:62:c5:95:8e:24:33:93:84:17:e4:
30:f8:83:05:d9:11:9f:4f:f8:74:b5:fa:38:60:37:6e:f2:04:
e2:31:63:84:20:95:3c:3a:82:fa:61:33:dd:fc:53:fd:3f:9f:
34:f3:e8:e0:50:a4:1c:95:47:2a:58:7d:3d:12:3b:26:d8:eb:
18:52:b6:a5:f0:c6:8c:71:a8:6a:0b:28:89:83:f2:1c:8c:d1:
1a:1f:7d:aa:43:96:08:02:26:ad:17:a4:f3:82:8f:db:57:e0:
aa:27:64:51:61:8b:84:52:7c:da:c5:5f:1d:17:73:70:5d:b3:
53:70:19:0f:b7:8c:a8:3f:10:ce:aa:1a:46:cd:01:95:c8:38:
56:7e:6c:29:d2:9b:06:d7:9e:b8:8f:60:32:99:61:43:25:b2:
5e:4e:06:8f:d0:82:89:59:b2:3f:21:9c:f0:1c:af:09:3c:10:
26:28:20:0a:63:c4:e7:04:d9:8f:3c:2d:fb:e1:14:5f:55:71:
cf:20:dc:8b:f4:e4:83:43:b9:3d:05:36:7e:7e:34:b2:1d:cb:
c9:b0:1a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org