Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa
File: c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa (raw, json)
Hash identifier: Sw176vDO6J04xq2Gu603pAewIgn+d3dcseF6nilIrQA=
Subject key identifier: 73:7F:E1:DA:6E:1C:BB:6E:8F:D5:83:1A:AB:22:07:EE:7F:FB:2A:4C
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0965
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa
Signing time: Wed 29 Sep 2021 02:42:52 +0000
ROA not before: Wed 29 Sep 2021 02:42:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 43.254.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2405 (0x965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 29 02:42:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=737FE1DA6E1CBB6E8FD5831AAB2207EE7FFB2A4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:59:62:4f:12:d0:3d:8a:f7:72:7f:78:51:21:
11:23:06:7b:ba:34:8d:f3:5f:fe:56:90:09:7b:03:
91:f8:76:91:1b:d2:a3:7b:5a:79:42:66:47:05:59:
d0:1a:5c:db:32:cf:c5:66:bd:e1:72:46:77:4e:f7:
f8:68:b4:e5:d2:cf:67:78:cb:8a:16:20:ed:62:25:
2d:7b:9e:f7:36:dd:4a:b2:cc:3f:12:0a:dd:11:9e:
99:25:fc:6b:0e:1e:98:03:51:09:10:bd:4f:0a:99:
60:c7:43:83:5a:83:e0:91:41:a7:b7:8e:57:0a:63:
69:28:e8:f8:f6:73:35:1d:e2:d8:68:fa:e3:2b:7f:
e6:4b:9f:c8:43:46:42:ff:55:a2:a5:26:12:09:b2:
13:e4:35:20:65:92:0a:60:3d:a3:6d:5f:f9:eb:0b:
be:d0:fc:91:3a:9a:79:07:89:35:fd:43:e7:c4:b5:
88:77:a2:3e:01:6e:f1:e2:25:db:4f:27:a2:5c:59:
85:5e:1a:8d:1a:98:36:52:63:0d:7d:ab:e6:a4:a8:
2c:86:95:9b:ca:59:51:7c:69:1f:e6:79:43:23:0d:
a0:28:f2:75:cb:38:7e:d4:1e:a0:ba:e3:a4:82:a3:
aa:c8:8f:c5:30:f8:13:12:91:9d:bc:57:a5:72:ec:
f2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7F:E1:DA:6E:1C:BB:6E:8F:D5:83:1A:AB:22:07:EE:7F:FB:2A:4C
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:9f:90:35:58:c8:bc:d1:a5:97:d8:69:00:0f:79:44:cc:1a:
4b:3e:dc:27:d5:a1:0b:07:d6:8e:47:72:75:5b:fa:8a:f4:92:
c8:da:db:ed:12:76:b0:69:9c:06:c4:2c:84:b0:8f:46:f8:15:
91:d2:66:33:32:85:40:6a:22:6e:bb:f6:e0:44:1a:2d:31:91:
7d:37:d9:3a:c6:99:68:97:0d:53:36:ed:3b:6e:78:bb:1f:84:
61:3d:25:a3:6c:48:fd:53:af:94:48:31:bb:8d:49:b5:5b:31:
91:a3:17:95:ec:36:6e:86:37:ab:21:0a:60:71:c2:0b:fe:dc:
86:f4:1a:f4:5b:5d:d4:f6:22:f6:b7:be:c9:1c:d0:7f:97:6d:
3e:a3:00:a8:67:4f:23:9f:e2:12:b2:64:3c:54:32:b1:59:4c:
12:b2:34:66:a9:d6:97:d0:ae:82:6f:9d:d9:11:5d:cd:c9:03:
e8:63:e3:8e:93:aa:d6:4e:03:4e:d7:71:1c:7a:ec:0b:ff:08:
c6:3a:7f:3e:08:7e:33:e5:c2:f4:72:f1:71:89:c1:f3:2e:68:
ea:38:cf:7d:9a:fb:a8:77:68:89:00:f4:cb:ae:ff:3f:7a:eb:
b7:ba:23:38:61:22:fe:aa:c6:43:c9:c5:c8:6f:87:af:92:3b:
69:a8:2f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org