Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/Q5tY1G0af-PMa5xoMHm96zoEITc.roa
File: Q5tY1G0af-PMa5xoMHm96zoEITc.roa (raw, json)
Hash identifier: RAnqoZo/ymXk/tUWaQeIgPH77Ya8j0oFi8jDV9kjkd0=
Subject key identifier: 43:9B:58:D4:6D:1A:7F:E3:CC:6B:9C:68:30:79:BD:EB:3A:04:21:37
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 0A5B
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/Q5tY1G0af-PMa5xoMHm96zoEITc.roa
Signing time: Thu 15 Sep 2022 02:38:53 +0000
ROA not before: Thu 15 Sep 2022 02:38:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 43.250.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2651 (0xa5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 15 02:38:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=439B58D46D1A7FE3CC6B9C683079BDEB3A042137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b2:55:73:7a:79:ae:aa:af:c1:97:a6:cf:fe:
14:ba:80:c5:3e:21:f5:71:6e:d3:4e:40:4d:23:d7:
f6:05:44:38:f7:4b:f4:08:ef:f3:90:d4:63:65:ff:
57:a0:f2:02:75:2f:01:9a:5d:3f:8f:4b:b5:67:f0:
6e:82:d4:6c:7a:92:4d:ff:e0:36:f7:fc:43:d2:1d:
60:ef:7c:38:08:bd:c7:df:a8:2b:8d:49:00:92:bc:
9d:fb:56:28:db:2a:10:70:3e:0b:40:52:4e:8e:4b:
bd:8d:24:f8:86:cf:33:19:24:dc:01:66:43:58:1f:
51:98:db:6d:7a:e4:a7:07:7a:02:c3:f8:8b:33:1a:
44:d7:eb:5e:e2:0e:11:26:78:b7:d4:24:d0:cb:12:
97:0c:92:79:6f:a1:54:a8:df:4c:09:b6:85:11:3a:
89:b7:d7:96:1b:35:50:33:eb:60:76:20:8a:0e:b9:
27:cf:c8:cf:5d:28:f4:bd:8b:04:c0:8d:67:64:81:
13:69:2c:b4:4d:c1:4f:1d:8b:2e:fa:01:8b:3e:93:
22:52:7e:64:d6:88:f2:8c:6a:1e:1f:a4:63:99:ff:
19:f7:46:d0:85:c8:82:71:af:3b:f3:5d:4b:8d:9d:
ac:66:12:34:17:0f:ff:a9:dd:53:09:5b:85:bb:6d:
28:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9B:58:D4:6D:1A:7F:E3:CC:6B:9C:68:30:79:BD:EB:3A:04:21:37
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/Q5tY1G0af-PMa5xoMHm96zoEITc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.46.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:98:70:8f:3c:4f:21:42:c5:79:97:42:ac:7d:02:71:89:1c:
ed:5b:86:ed:0e:32:04:c5:60:a0:f2:d0:4c:2a:33:62:07:74:
ff:60:a5:af:bf:97:12:ce:2f:ad:ab:d7:ee:ab:cd:01:46:30:
fa:de:3a:c1:7b:95:72:21:1f:e9:a1:50:09:57:c4:39:47:4c:
11:3a:ff:c4:51:38:7c:f1:31:de:3f:0d:57:ca:ca:6d:d6:c8:
d1:ab:03:b1:f8:dc:67:32:92:13:1e:44:4d:ef:01:52:d2:83:
06:ae:d0:ed:9e:f3:98:24:4d:cb:b4:d6:5b:05:a7:4f:b5:b1:
35:e2:15:48:8d:b5:09:06:b3:bf:29:d8:80:6b:9b:a5:ec:de:
f2:f8:4b:6b:ff:c2:8b:b3:11:af:53:9d:66:be:9f:16:09:41:
fe:0c:10:92:27:17:f2:6b:5f:61:20:8d:f5:2b:2c:07:5c:f5:
e6:62:fd:ca:54:41:6f:46:9b:07:53:5b:76:bd:4a:12:ff:ff:
e8:60:e3:34:b9:49:fe:f9:70:50:42:51:f3:87:2f:b8:a2:c7:
dc:72:f5:72:5b:b0:06:d5:47:29:0b:71:1b:df:9b:b2:2f:25:
ff:c5:47:20:a7:bf:e1:54:59:0b:3a:e2:0b:9d:a2:33:5d:70:
60:23:f5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org