Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/wkofcAKtkmDj3NFBYBEg2P1jOD4.roa
File: wkofcAKtkmDj3NFBYBEg2P1jOD4.roa (raw, json)
Hash identifier: WynV6AzoZbqAoXzPAZ0+NLjW2Ox5rW9+/Yx1z0rw7zU=
Subject key identifier: C2:4A:1F:70:02:AD:92:60:E3:DC:D1:41:60:11:20:D8:FD:63:38:3E
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0A89
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/wkofcAKtkmDj3NFBYBEg2P1jOD4.roa
Signing time: Mon 14 Nov 2022 02:36:15 +0000
ROA not before: Mon 14 Nov 2022 02:36:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 43.254.16.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Nov 14 02:36:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C24A1F7002AD9260E3DCD141601120D8FD63383E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8d:dc:b9:ba:dc:f9:f1:3e:bb:7f:9f:57:cd:
3f:33:e9:25:82:c8:6e:23:be:10:c9:8f:af:08:f8:
1d:9b:eb:e1:d1:88:47:c7:16:f6:bb:e1:11:77:2c:
af:7b:ee:d8:5e:cf:0f:7c:09:57:30:51:11:de:5d:
af:da:56:26:37:2e:88:69:f2:f2:84:8d:7e:91:3b:
af:27:e4:de:3d:ed:b9:2d:4e:08:39:60:e2:4e:9c:
1f:fb:fb:75:39:3a:81:e5:bb:eb:56:dd:ce:8e:4c:
99:f4:33:7a:c1:94:b2:06:59:de:4b:08:7a:4a:0b:
cb:d4:11:21:10:68:4e:18:52:d7:c1:98:11:00:04:
ce:af:2f:fb:92:b4:92:ba:95:c1:8f:cb:e2:e4:84:
45:ef:35:ec:a6:85:3b:2f:b6:d1:43:03:f8:64:3a:
d1:74:31:81:04:84:fe:31:ec:a1:71:37:ff:47:30:
c5:8a:a2:61:86:5a:87:52:fb:9f:f9:b4:1f:5d:3f:
23:25:6b:26:c5:37:a5:f4:19:87:2b:d9:6e:5e:e9:
d1:71:c1:26:83:d7:0b:10:fe:eb:1e:1d:ce:84:d6:
2d:50:e9:bc:63:46:74:41:c4:d5:5a:ae:bd:fb:9d:
7d:af:fb:f7:8a:e5:f7:f3:d7:f3:af:70:6c:d2:fb:
6b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:4A:1F:70:02:AD:92:60:E3:DC:D1:41:60:11:20:D8:FD:63:38:3E
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/wkofcAKtkmDj3NFBYBEg2P1jOD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.16.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:97:ce:e4:bc:c5:e2:fa:40:4f:3e:46:3c:33:5f:c3:84:5f:
77:b7:c9:04:e5:8b:d2:6c:e9:d2:8f:03:3b:38:7a:0e:44:cd:
d1:1e:0b:35:d4:48:cd:6a:25:a9:63:06:d9:70:70:7e:49:f3:
90:44:41:80:cb:5b:15:2d:3c:d0:52:6f:b2:a5:c2:4b:a7:80:
cc:cd:55:4c:87:17:45:15:2d:7c:8a:84:16:7d:3f:af:72:8d:
26:46:80:c4:c3:41:68:90:73:11:36:c9:af:f1:8b:ff:c2:fb:
5a:88:ed:9e:76:2f:74:e2:17:a5:7c:a2:92:76:cb:b9:10:c7:
1b:49:be:9f:b1:eb:e1:94:36:dc:46:8e:9e:6c:c3:24:ba:5f:
37:a6:2d:88:73:ed:06:bd:8f:5d:51:4b:80:9a:d1:7a:b1:77:
d1:50:9f:2d:39:5a:a7:74:07:93:61:75:9e:92:79:9e:bd:7e:
a5:9c:60:8e:a8:4b:9c:80:17:62:1c:d2:ae:7d:54:88:7d:71:
9d:58:32:82:49:0c:66:ea:5a:b9:34:4b:6f:b7:5f:b0:e1:34:
93:e1:ac:b3:67:6c:03:79:a0:79:cf:16:78:b7:11:d5:22:8b:
47:ad:15:51:6e:3f:a3:26:9a:1e:87:79:f5:31:6f:e1:3a:96:
fd:1b:33:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org