Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/m3IfJP1ruwUMV1u3j7GxwTLIK-A.roa
File: m3IfJP1ruwUMV1u3j7GxwTLIK-A.roa (raw, json)
Hash identifier: Y8vwH/meRbueZG6FjcdpTxcHJtRTrcBZEwoa0B6RxZ4=
Subject key identifier: 9B:72:1F:24:FD:6B:BB:05:0C:57:5B:B7:8F:B1:B1:C1:32:C8:2B:E0
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 08C0
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/m3IfJP1ruwUMV1u3j7GxwTLIK-A.roa
Signing time: Sun 07 Feb 2021 14:10:43 +0000
ROA not before: Sun 07 Feb 2021 14:10:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 43.254.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2240 (0x8c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 7 14:10:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B721F24FD6BBB050C575BB78FB1B1C132C82BE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3f:d7:e1:f6:02:04:dd:f3:76:41:9c:e6:7e:
b8:59:b3:6a:c3:11:56:11:07:f5:b3:ab:4d:94:eb:
81:d8:a0:b1:04:bb:ad:d4:71:c3:3a:d8:91:50:eb:
d7:f1:cb:1b:62:4f:34:5d:b4:e1:1a:f2:d6:9c:0c:
a7:83:85:e0:e0:d7:92:8f:34:05:64:aa:17:0b:04:
39:ab:cb:24:fa:1a:3c:65:85:33:a3:90:94:a1:95:
f1:66:f2:47:68:7e:92:4e:79:4d:47:e2:3e:ff:43:
7f:92:93:d3:5e:1a:41:c8:d6:d8:d9:54:7d:82:70:
5e:71:af:f8:c6:e8:0a:24:1e:b5:83:80:e1:d4:c8:
5a:46:68:79:c6:70:cd:4c:f3:81:1a:b4:7a:cf:90:
18:be:2a:f5:4d:53:c6:ae:a0:5e:22:23:23:e2:5c:
90:36:1f:58:df:8f:30:f6:f3:9b:7b:16:3b:08:ca:
b0:9a:85:bd:2c:b2:93:d8:80:9d:b2:35:54:6c:15:
86:df:74:18:f4:32:11:e1:a3:b8:9e:d0:b5:b3:1b:
a4:cd:9f:d4:fb:46:ed:76:2c:5b:e2:77:c6:bc:db:
41:ca:53:19:b9:62:75:f9:b3:46:9f:41:05:41:18:
49:0e:66:cc:68:a4:4b:fe:b7:b2:e7:38:44:c9:91:
17:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:72:1F:24:FD:6B:BB:05:0C:57:5B:B7:8F:B1:B1:C1:32:C8:2B:E0
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/m3IfJP1ruwUMV1u3j7GxwTLIK-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:21:50:97:c6:19:07:c0:c9:52:7e:aa:45:c9:c9:1f:72:d3:
20:54:75:41:e9:a8:ab:9b:8f:c3:63:ac:74:2e:49:04:c4:5b:
7c:72:47:ea:a6:3d:27:16:73:78:12:b0:38:e1:3d:d2:c3:3f:
aa:91:60:e8:07:c1:42:c9:57:81:3f:c5:1c:87:72:33:c9:83:
25:07:9d:d8:89:d3:a6:d3:d1:36:2b:88:7e:c0:d8:e0:b4:02:
81:b6:24:cb:bf:61:32:35:d1:89:b4:76:70:4b:f5:ee:31:67:
2d:2e:b0:fc:e2:21:95:fa:8a:df:09:e4:51:63:1d:a0:3e:28:
3e:ea:ed:c1:61:64:2d:b5:e6:bb:be:38:f5:26:28:c7:36:22:
e8:0d:bd:c2:02:2a:9f:dd:95:f1:3b:3c:5f:6c:78:29:94:fe:
91:c8:da:8f:e1:cd:a9:06:bd:a1:ae:19:b5:36:b0:0f:72:2f:
f4:c5:4e:f7:5a:d2:1f:2e:76:a3:5e:a5:90:13:9b:8c:fc:57:
f0:67:6e:9a:fe:2d:0a:b2:de:4f:68:c1:24:b8:ab:1b:19:6f:
5b:d7:6c:e7:0c:3c:26:bc:ea:f7:c2:36:c8:41:06:d2:3f:fd:
70:96:cf:38:37:17:db:2d:85:d7:10:2a:e6:f8:1f:8c:b5:f7:
37:ad:8b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org