Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/0cIjG9AkRhcGOGG7yK6zqhai5WQ.roa
File: 0cIjG9AkRhcGOGG7yK6zqhai5WQ.roa (raw, json)
Hash identifier: 5Yw95sjBkfZz7sdIsTLmOWRwtjauEFxHh1zSMJHnhOk=
Subject key identifier: D1:C2:23:1B:D0:24:46:17:06:38:61:BB:C8:AE:B3:AA:16:A2:E5:64
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ACC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/0cIjG9AkRhcGOGG7yK6zqhai5WQ.roa
Signing time: Wed 29 Sep 2021 02:41:05 +0000
ROA not before: Wed 29 Sep 2021 02:41:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9916
IP address blocks: 120.126.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2764 (0xacc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D1C2231BD0244617063861BBC8AEB3AA16A2E564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:94:ae:9c:92:e7:e6:54:c3:01:84:f4:ad:ab:
19:f8:82:8a:cd:d1:e1:4d:c5:1e:5c:73:a5:8b:d3:
e4:e3:5f:83:83:28:f3:7e:3a:4b:5a:15:34:e8:d1:
92:e2:cf:3e:c6:9d:5d:7c:3a:60:c6:62:fb:05:2e:
6a:cb:be:b0:e4:f7:45:2d:5a:90:b1:c8:ca:1d:6f:
08:ec:58:08:82:b8:db:93:61:79:98:4d:a2:1b:8b:
16:4e:d1:92:78:7a:5b:26:85:3c:ff:0b:e8:00:54:
bc:f0:cd:08:1a:d5:d7:ca:44:22:fe:83:25:00:05:
5b:52:00:1c:5d:6d:a9:d0:72:c7:ae:c5:39:7d:50:
bd:a9:9a:ad:61:6e:29:fe:f1:0e:c2:2f:1e:29:73:
8c:cf:50:29:74:e9:c0:4c:01:00:48:f4:62:43:f1:
2b:9d:92:61:7d:27:73:e4:65:2d:54:d3:22:36:5a:
94:be:4f:f2:d9:95:17:7f:2e:9c:ba:4c:dc:45:03:
7d:bd:d1:0f:d6:73:d0:49:ca:8d:2f:76:ee:cf:61:
5e:b1:e0:91:4f:55:4b:ad:28:b0:ce:49:16:69:77:
a3:9b:c2:28:c5:04:9f:95:05:68:34:ba:9a:88:5d:
6a:df:42:25:37:fa:30:a8:26:24:df:74:22:25:cd:
d5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C2:23:1B:D0:24:46:17:06:38:61:BB:C8:AE:B3:AA:16:A2:E5:64
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/0cIjG9AkRhcGOGG7yK6zqhai5WQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.64.0/19
Signature Algorithm: sha256WithRSAEncryption
44:7f:fb:a4:1b:3d:49:d6:e8:9e:ca:de:b3:51:3b:15:d4:38:
58:e1:f6:e6:0a:31:36:46:b2:a1:81:8a:fa:f8:29:26:35:76:
37:1b:73:94:7c:95:80:eb:95:ac:f7:37:d1:37:fa:4a:02:13:
48:31:81:e2:47:01:ec:b7:78:70:61:e0:de:37:33:49:01:db:
6d:cf:4b:ea:b7:73:e6:84:70:fe:f1:b0:c7:54:2a:17:b5:68:
66:9c:66:93:c3:95:7e:5b:11:cc:10:23:6d:be:ff:8a:57:89:
56:9b:ea:92:00:2c:0f:4c:0f:c0:f0:cb:72:b3:be:fa:43:b6:
a7:cb:9f:ba:0a:b7:5a:55:78:2f:3a:55:ba:b1:b8:94:49:0e:
f0:75:cb:ff:b6:78:9a:8c:99:15:45:48:7c:e2:11:18:13:9d:
2d:c2:e2:63:8c:ff:fe:e7:12:73:1b:3d:02:56:e7:86:39:94:
77:9f:8f:71:19:74:36:1b:af:80:0c:ed:44:d3:ff:d2:2f:c5:
a6:6a:b7:f4:5f:ef:0c:66:73:b5:37:a1:13:70:88:63:9b:0b:
08:a6:7f:c1:04:86:92:26:70:c3:fc:4e:bb:ff:e0:67:cb:5c:
a8:df:74:76:d1:96:9d:d3:ef:d7:a1:b5:95:ea:66:f6:3c:47:
85:16:d6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org