Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/yswRe5hOI_5y8IfPyTaXIdulrQQ.roa
File: yswRe5hOI_5y8IfPyTaXIdulrQQ.roa (raw, json)
Hash identifier: uJFpfFp+jkTCj8hRuy5Cq48zSOwU6gLW5zPOgREmrAM=
Subject key identifier: CA:CC:11:7B:98:4E:23:FE:72:F0:87:CF:C9:36:97:21:DB:A5:AD:04
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0A51
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/yswRe5hOI_5y8IfPyTaXIdulrQQ.roa
Signing time: Thu 15 Sep 2022 02:42:20 +0000
ROA not before: Thu 15 Sep 2022 02:42:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 202.12.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2641 (0xa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 15 02:42:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CACC117B984E23FE72F087CFC9369721DBA5AD04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:f8:b3:88:2a:4d:f7:cf:da:38:83:ba:86:
fa:15:d2:52:23:58:31:8e:48:93:e5:05:d9:5e:b2:
b6:0b:04:85:cd:ef:b1:55:6a:55:54:b1:d3:00:a9:
72:22:23:70:02:a7:5f:be:c9:f7:02:51:0d:93:a4:
ab:88:c7:64:39:0c:f9:11:ee:94:90:d4:20:55:40:
f5:b6:26:cc:5b:cb:aa:24:44:9a:29:8f:56:98:30:
e9:1f:55:62:bb:f1:ae:79:85:54:e6:24:4d:ed:0d:
ca:67:6f:65:e5:a3:ff:9a:2c:e9:af:eb:f5:4a:91:
ca:e0:19:9a:f3:43:8b:f9:cd:4b:d0:9d:e8:0d:6c:
7f:03:4d:5f:13:80:de:e6:38:36:03:4a:e0:be:e6:
6c:df:f6:b1:e4:04:09:96:9b:9d:1d:77:93:1e:ad:
e6:d4:84:c1:27:08:a8:f3:e4:1a:79:63:9e:e9:60:
94:b6:a5:13:b7:37:a0:79:e9:5f:dd:99:86:bc:1f:
6f:91:35:2d:62:c0:e5:ca:20:0b:38:f3:0f:d6:2d:
4e:bc:4d:b8:2b:a0:e6:a1:ef:3e:ed:7a:de:ec:bf:
44:03:7f:2d:00:32:e3:31:8f:20:64:93:41:13:aa:
5c:04:12:60:9a:a2:4c:2a:51:92:eb:f0:3f:cd:bc:
9e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:CC:11:7B:98:4E:23:FE:72:F0:87:CF:C9:36:97:21:DB:A5:AD:04
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/yswRe5hOI_5y8IfPyTaXIdulrQQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.76.0/22
Signature Algorithm: sha256WithRSAEncryption
69:d6:5c:97:6c:e4:d1:ff:82:16:69:b1:f7:b4:71:50:9f:5b:
7c:cf:dd:a9:13:98:f5:cc:9d:f3:99:4b:40:d3:90:b5:ad:79:
2d:e6:60:0b:ec:b1:71:9a:d8:c4:65:5c:7b:e5:09:15:6d:b8:
2c:66:2c:59:91:5f:a4:1f:33:ab:6f:a8:c4:49:65:49:3a:55:
d7:fa:85:a7:68:90:9b:df:11:e0:a5:8d:bb:3f:93:d9:b1:1b:
a3:41:61:35:1d:1f:4d:02:9a:70:ab:60:70:16:05:3c:80:a8:
f9:15:f8:82:7c:4a:f7:cd:1b:87:da:71:94:1a:cd:98:45:98:
c1:28:2e:00:04:ca:01:79:73:f5:41:57:f3:9f:ad:ee:5a:4e:
52:2c:db:cc:b8:d3:26:a3:b3:a7:28:fb:07:61:9b:10:78:b9:
71:b1:80:8e:cd:e0:08:8f:77:7a:ff:12:b4:7f:b8:fb:a3:ff:
38:e0:b5:50:ca:14:ac:59:24:e1:12:fd:f4:cc:10:0f:b5:db:
84:62:22:cf:21:1d:9f:c3:a7:27:ce:79:e9:38:0c:fe:a5:c8:
cd:23:fc:e1:e9:4b:cc:d8:96:36:8e:d4:e9:0d:8c:bb:57:19:
0d:be:79:68:f9:71:40:c5:93:87:8c:e0:a0:d3:42:a2:1e:b8:
df:b6:32:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org