Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/DhsenrUSvOaHBGc8Qiv3keVRuYc.roa
File: DhsenrUSvOaHBGc8Qiv3keVRuYc.roa (raw, json)
Hash identifier: 3GHqQDGguq/ojSjhAVKa+rWa3bW/YgOtUEjJ5uP259o=
Subject key identifier: 0E:1B:1E:9E:B5:12:BC:E6:87:04:67:3C:42:2B:F7:91:E5:51:B9:87
Certificate issuer: /CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8
Certificate serial: 0856
Authority key identifier: 33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/DhsenrUSvOaHBGc8Qiv3keVRuYc.roa
Signing time: Sun 07 Feb 2021 13:15:10 +0000
ROA not before: Sun 07 Feb 2021 13:15:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 45.113.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2134 (0x856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8
Validity
Not Before: Feb 7 13:15:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0E1B1E9EB512BCE68704673C422BF791E551B987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4c:12:b4:cc:88:7c:f4:77:e1:bd:ba:7a:23:
95:06:36:03:dc:5b:2f:1b:24:1f:ed:c3:65:50:c4:
83:31:57:8f:79:9a:4a:4a:b8:01:8b:11:fb:3d:63:
be:db:61:1a:04:d7:ae:2a:80:e4:de:29:76:92:48:
e1:48:cc:d2:f9:0a:3a:88:25:4f:4f:a8:1f:ed:7c:
a4:c3:84:3a:3f:31:e6:1b:a4:eb:cf:88:5d:44:17:
96:98:f9:15:37:7d:24:df:15:c4:12:41:8d:df:de:
af:d0:c3:b1:5c:5c:96:1f:aa:43:80:c3:7b:9f:77:
05:82:ed:d7:af:dd:e8:3d:dc:43:06:9c:7f:5c:1e:
b5:e9:20:1c:4f:57:de:5a:af:9e:5e:0f:f1:43:81:
1f:6b:cd:5a:55:0d:e5:02:16:10:2e:90:0b:3b:12:
73:47:66:8e:9c:38:ab:88:ac:4f:21:ab:7d:19:44:
5e:55:f9:e7:53:b4:90:92:61:da:39:39:a1:93:46:
1f:fa:24:bc:f8:8b:9f:ae:e9:9c:a5:38:aa:2c:d6:
24:6f:92:c2:bd:ae:c4:7d:11:4e:62:2a:df:14:b9:
3d:3e:6f:ed:11:bb:2b:eb:32:f1:5f:a5:d8:03:5e:
64:43:6e:84:52:7c:fa:f3:f2:30:81:16:49:c7:34:
e0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1B:1E:9E:B5:12:BC:E6:87:04:67:3C:42:2B:F7:91:E5:51:B9:87
X509v3 Authority Key Identifier:
keyid:33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/M6gOdbovKw_UMSGJp-Q-Q1Po06g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/DhsenrUSvOaHBGc8Qiv3keVRuYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.113.156.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:78:c4:4a:53:7f:0b:15:78:24:54:3e:01:40:c9:15:6e:dc:
89:bc:b2:ef:07:ce:a4:96:73:d7:47:0d:16:65:06:0a:7a:d2:
0e:09:55:c5:36:af:5e:72:5f:59:7c:42:bc:fa:6f:51:6f:2a:
db:af:11:00:a5:da:d7:ff:67:86:09:5f:74:de:85:d2:dd:7f:
fa:aa:36:f0:22:0c:5d:04:bf:c6:bd:f5:c4:0d:d7:2d:2e:62:
ea:80:03:9b:dd:ff:71:3d:e6:f4:32:9b:93:3c:9f:58:ea:85:
0e:8d:42:6b:43:45:a0:ae:00:11:ee:e5:1b:b7:73:7c:26:f7:
5a:d0:e0:7a:0a:92:d6:e4:81:96:27:d0:62:5b:c3:de:64:ca:
3d:ae:44:93:e7:0c:6d:8e:70:41:0e:c6:2c:52:77:7e:e9:2c:
03:5c:12:9c:0c:a0:22:b5:88:24:73:69:de:3e:43:0a:1d:fe:
b4:f2:10:18:40:23:c3:d0:29:68:54:3f:ee:d1:9c:0f:dc:18:
bf:38:0a:cc:f5:b4:23:58:72:a9:50:63:72:9b:88:74:bf:50:
9c:0d:6e:04:9c:97:ea:a1:50:18:07:eb:39:4d:89:83:1e:00:
84:73:8d:13:be:1b:e7:77:04:f1:d0:80:e8:c4:7a:44:3c:7a:
6f:19:dd:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org