Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/c9HRzcQxVgJe4nmqYCteDHtb664.roa
File: c9HRzcQxVgJe4nmqYCteDHtb664.roa (raw, json)
Hash identifier: ZdHnJ8Akc/e69pkGUjm170F8siE/qJTwJW/nWdmvivE=
Subject key identifier: 73:D1:D1:CD:C4:31:56:02:5E:E2:79:AA:60:2B:5E:0C:7B:5B:EB:AE
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0A3B
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/c9HRzcQxVgJe4nmqYCteDHtb664.roa
Signing time: Thu 15 Sep 2022 02:47:56 +0000
ROA not before: Thu 15 Sep 2022 02:47:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9264
IP address blocks: 202.169.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 15 02:47:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=73D1D1CDC43156025EE279AA602B5E0C7B5BEBAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:34:9e:26:6b:be:7b:a7:25:cd:a7:e7:e8:f7:
3f:df:82:bc:11:b3:ba:29:8d:14:d2:6f:cf:17:1b:
02:fe:e8:7a:bc:34:c6:41:ee:a8:ad:b0:bb:b7:57:
7c:e6:9b:4f:53:34:60:c1:34:f4:c3:6c:ae:c0:bc:
34:fe:a1:aa:ab:91:2b:e0:f2:f4:a7:9b:7d:e2:6d:
16:e5:77:0d:34:90:08:64:cd:80:6c:60:d4:9c:97:
9c:84:38:c9:df:89:83:d1:d9:2d:42:6d:39:b1:f4:
33:b8:89:85:95:9b:1b:34:ad:5d:a8:74:e1:2c:27:
87:99:68:e4:4d:cc:37:90:aa:e9:f6:72:93:86:b5:
c8:86:85:88:82:82:b6:55:7a:62:94:ad:af:9d:42:
1a:18:74:15:19:c6:67:5b:ca:c7:41:e8:e6:53:d0:
eb:a1:98:ba:f8:dd:a6:55:d3:0d:51:52:27:da:db:
de:c9:dc:df:80:b2:30:b2:63:35:94:62:be:21:f0:
62:cd:36:eb:dd:6f:e9:15:18:27:47:e2:da:04:c7:
6b:78:25:ea:13:f9:c9:96:5e:96:fe:95:53:89:da:
87:17:97:ca:7c:8c:c0:2f:a3:e6:9a:10:6a:41:6f:
32:35:db:79:eb:8d:e6:a1:48:02:3d:6a:17:57:35:
64:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D1:D1:CD:C4:31:56:02:5E:E2:79:AA:60:2B:5E:0C:7B:5B:EB:AE
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/c9HRzcQxVgJe4nmqYCteDHtb664.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.169.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:ac:a6:71:ab:a4:fa:cf:fa:7e:70:69:a9:e5:7d:a3:23:08:
07:d3:87:00:93:36:83:8a:78:26:d4:e8:0b:57:73:16:e9:9c:
6f:ae:87:e8:30:d5:58:22:85:06:16:cd:41:87:f5:42:8c:90:
b1:89:fa:47:6c:41:7d:df:8a:d2:44:89:05:a7:a7:6c:e0:79:
88:3d:6e:65:64:fb:9d:bb:be:68:94:12:5c:4a:3a:f8:56:13:
eb:95:f8:c2:9b:91:cb:03:41:e6:ae:73:fc:50:ba:4f:3a:86:
3c:c2:03:24:d9:8d:fc:22:f9:de:55:b2:1a:c1:d7:2c:76:02:
4c:cf:bf:0d:55:ac:0b:3a:8b:85:6c:6b:5f:ca:7c:42:f0:01:
90:be:58:2f:8d:8b:98:ba:9a:d4:a9:ab:f7:d4:f1:be:1a:37:
7b:54:b1:49:06:ee:f4:70:c0:57:a5:36:96:87:6a:f9:a4:2b:
92:8e:bb:a7:c1:a5:77:84:ea:6d:c0:3d:6d:4c:e7:26:c6:7c:
f0:d8:8e:25:23:ed:dc:c2:9e:9c:41:0b:1f:ed:35:33:86:74:
8b:e4:b3:7d:90:70:c2:ca:03:79:8c:84:9e:03:c7:f9:3d:fc:
db:b4:60:58:1c:04:77:b0:4f:f8:1d:fb:cc:c7:9f:9d:a6:5c:
66:b7:27:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org