Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/4fNsDosZpcKBwZHZmlwIdkkQrkY.roa
File: 4fNsDosZpcKBwZHZmlwIdkkQrkY.roa (raw, json)
Hash identifier: 90v7xZlDJ0gxD8CbxHQ7BJPDnK6VInmgQhCZe4eZKR4=
Subject key identifier: E1:F3:6C:0E:8B:19:A5:C2:81:C1:91:D9:9A:5C:08:76:49:10:AE:46
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 08B9
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/4fNsDosZpcKBwZHZmlwIdkkQrkY.roa
Signing time: Sun 07 Feb 2021 11:33:05 +0000
ROA not before: Sun 07 Feb 2021 11:33:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 43.254.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2233 (0x8b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 7 11:33:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E1F36C0E8B19A5C281C191D99A5C08764910AE46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:20:d1:39:95:19:e0:9e:c6:89:4f:8b:9c:
68:39:e8:59:50:85:27:a1:f9:79:7b:b8:32:76:5b:
8e:d6:3b:71:e0:a3:5d:9c:38:19:0b:db:0e:b5:d3:
82:5a:ed:ea:3c:68:8f:02:4f:ec:4b:fe:c6:b8:86:
bd:bc:4c:fb:2c:bd:41:d8:92:96:f5:35:69:61:14:
80:2c:36:2a:fc:81:55:7a:44:14:4a:2d:01:26:b7:
df:36:c6:ad:e4:36:71:e4:aa:b9:88:33:43:7b:01:
b9:c8:b6:17:c7:46:b5:84:8b:e0:2f:dc:9f:94:8e:
bb:a6:e3:fa:09:95:e2:9e:3b:a1:21:83:5e:3b:c4:
5c:46:08:ff:b7:16:b1:bf:45:70:26:8b:ad:9b:64:
e5:fe:b4:6a:30:2c:89:72:6d:2d:1d:e2:f8:65:14:
e0:67:6a:e0:17:eb:e1:84:90:49:db:5c:96:a2:6a:
e5:48:cc:ee:7e:e3:22:0a:fc:7f:e1:20:d2:44:06:
e2:c1:21:20:57:4c:0d:58:23:48:62:a8:db:61:2c:
ea:8f:0c:b1:35:92:ef:a8:80:ed:f4:73:40:ed:3a:
a3:58:ee:1a:22:a2:be:86:40:4b:ae:b0:d8:21:93:
c3:c4:e3:f2:fa:c2:58:11:41:a1:dc:be:9d:ad:69:
e0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F3:6C:0E:8B:19:A5:C2:81:C1:91:D9:9A:5C:08:76:49:10:AE:46
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/4fNsDosZpcKBwZHZmlwIdkkQrkY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.16.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:6f:48:e6:b1:5b:b5:37:e4:49:e7:9c:3e:a6:47:1f:cd:a9:
11:39:85:b6:0d:1a:4f:76:93:5e:b7:98:13:c0:4d:1b:f6:83:
2c:7f:b0:4e:2b:40:f0:0c:be:d7:a6:68:31:07:83:1a:82:86:
91:7e:72:8e:ec:f6:db:b5:48:a3:c1:3b:d8:e5:9d:37:df:76:
a4:35:83:de:e7:33:33:62:c1:04:1b:b3:df:83:73:71:76:19:
9c:b9:62:e3:3b:4d:5a:a8:1b:40:d2:9c:34:d0:bd:0e:e7:76:
d2:72:91:94:83:bd:8b:9f:3c:93:4d:59:8d:d5:04:bb:3b:47:
8d:e9:22:04:03:c2:36:5b:4d:bb:95:67:0f:a2:aa:b8:6c:a2:
da:6d:4e:e3:1c:03:1c:97:e6:98:61:6e:c1:b9:79:4d:9c:bd:
6b:ea:03:4d:d6:f7:84:b2:32:34:ac:c6:d3:00:b1:2a:3d:09:
71:22:2d:bd:a2:34:34:c1:d3:9c:fa:ca:8e:0d:08:bf:63:da:
1d:79:00:25:76:f6:ff:d2:e6:45:f1:be:46:cc:36:2a:f4:f2:
34:eb:c1:23:9f:94:9d:fc:af:16:b5:21:16:a8:a5:9b:c8:84:
1e:81:13:62:4f:37:9a:ce:b6:65:15:4c:ee:76:b7:d3:10:bd:
8e:63:2d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org