Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/-oPoy4mAw4kNRICa2r3XSMSHW_o.roa
File: -oPoy4mAw4kNRICa2r3XSMSHW_o.roa (raw, json)
Hash identifier: m4TZzB9Q/RwHY502HQL7YXgBYZd8QtSXasEMxSysXTo=
Subject key identifier: FA:83:E8:CB:89:80:C3:89:0D:44:80:9A:DA:BD:D7:48:C4:87:5B:FA
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09D2
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-oPoy4mAw4kNRICa2r3XSMSHW_o.roa
Signing time: Sun 07 Feb 2021 12:39:08 +0000
ROA not before: Sun 07 Feb 2021 12:39:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 163.13.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2514 (0x9d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FA83E8CB8980C3890D44809ADABDD748C4875BFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8b:46:e3:dc:4b:6e:03:27:b7:71:91:3d:1c:
15:de:c1:96:49:b3:7f:82:0a:55:58:d9:40:67:43:
c6:05:d4:f1:86:32:27:5f:7a:4a:e8:d5:32:85:1a:
43:0c:6f:91:94:3c:df:63:93:39:7f:a8:29:dc:0e:
49:e7:9f:e2:e1:7a:eb:58:43:15:e8:77:f7:9b:7d:
b1:7a:69:4a:49:82:92:18:d9:13:ea:4e:c9:d8:75:
ff:5f:72:b1:16:06:a5:67:6c:dc:1e:c6:77:31:85:
3e:6a:46:86:9c:50:b0:07:b1:c7:31:c1:bb:d6:64:
b5:2f:cb:fa:d7:a9:9f:fc:fe:0d:4c:6c:ea:21:09:
1e:34:d7:fa:36:61:66:7a:77:3c:3a:8a:10:f8:75:
b5:a4:3b:46:cc:5d:42:d4:91:71:e4:b1:1c:cd:ce:
be:6d:27:42:1e:bf:6a:2b:d6:46:4c:a3:9f:ca:c2:
d2:26:46:a6:5f:c5:d7:27:46:c9:a8:f2:1e:72:b3:
fe:59:98:48:e4:a4:21:51:d0:c9:ca:2a:40:78:33:
40:74:ef:05:c3:d4:cc:0b:55:f2:b8:b6:79:d0:6a:
74:15:82:dc:ba:c1:e7:d0:55:7f:13:3c:8a:25:3c:
24:4b:6a:89:93:a7:50:dc:02:8b:27:1d:63:3a:bc:
31:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:83:E8:CB:89:80:C3:89:0D:44:80:9A:DA:BD:D7:48:C4:87:5B:FA
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-oPoy4mAw4kNRICa2r3XSMSHW_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.13.0.0/16
Signature Algorithm: sha256WithRSAEncryption
98:ef:dd:62:c7:92:2d:ec:95:b1:bd:ec:c0:25:5c:90:8a:0b:
05:d6:4d:11:be:95:0a:ac:19:1c:27:87:97:16:eb:b8:34:c5:
d1:6c:8e:97:48:f0:8a:fc:ba:32:f5:ef:e8:42:7a:e5:32:90:
b4:68:e9:cc:a9:ec:ca:90:ba:84:31:1c:e6:e2:5e:43:35:f4:
21:4a:f5:b6:54:81:54:fb:16:ec:30:8d:f3:df:c5:b3:8a:bf:
2f:db:6b:af:1f:3b:93:84:8c:35:01:6c:b9:ea:23:61:f1:a6:
36:6b:54:d0:51:19:87:9b:4b:52:70:5b:61:5f:de:a7:b9:2d:
52:63:e0:91:22:07:af:ea:f0:d3:cc:a7:89:49:16:8a:80:03:
2b:08:79:b0:2d:1f:31:bb:3b:30:03:52:11:2b:91:86:b7:b8:
22:f0:28:b2:ec:49:1c:4e:05:61:1f:5a:d9:6d:eb:82:d0:0a:
ac:c5:5e:ae:4a:c6:1f:d6:d0:ab:18:09:9c:bc:52:18:9f:1c:
1a:ea:8b:7e:a0:f7:7a:f6:ea:4e:b7:88:29:c1:41:4c:e0:84:
ad:18:06:bc:55:80:7c:fe:02:4e:fd:d1:36:42:31:c2:62:d7:
de:c0:f0:ce:39:8f:43:94:f5:47:a9:56:8d:ab:c8:de:6b:2d:
98:e9:64:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org