Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/3DxPHhMUW2BsXw5ZpyjetKk66Os.roa
File: 3DxPHhMUW2BsXw5ZpyjetKk66Os.roa (raw, json)
Hash identifier: Tl61YrQWFrGnTJ1VbeHiKYSwbMkupv3x6v1QOXmqbBA=
Subject key identifier: DC:3C:4F:1E:13:14:5B:60:6C:5F:0E:59:A7:28:DE:B4:A9:3A:E8:EB
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0A13
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3DxPHhMUW2BsXw5ZpyjetKk66Os.roa
Signing time: Sun 07 Feb 2021 13:03:49 +0000
ROA not before: Sun 07 Feb 2021 13:03:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 120.107.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2579 (0xa13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 13:03:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC3C4F1E13145B606C5F0E59A728DEB4A93AE8EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3d:d3:2e:cc:b3:7b:a1:f9:b9:32:04:00:13:
64:37:2a:e3:fe:3a:3c:cc:93:fe:21:ff:94:5b:ee:
79:b2:56:1a:ff:89:13:09:88:2c:ff:86:08:00:5c:
ed:fc:fa:2a:a8:fe:3c:81:dd:b9:85:e1:83:f9:7e:
17:22:cc:68:4f:ee:95:ab:df:be:a1:0a:24:6d:23:
3c:20:b5:00:7b:a8:bd:26:e8:3c:35:df:e0:90:8c:
8a:9f:81:27:b4:03:68:12:6e:d2:3b:6e:f7:9a:22:
2c:b8:45:b2:e3:71:77:01:67:9c:e3:e0:c0:e7:fe:
97:f3:8f:d0:43:84:a5:5b:8f:4c:5f:c6:2f:3c:b4:
54:87:69:b3:32:e5:50:db:28:f5:d2:80:cf:84:8f:
82:e3:7f:af:c9:a1:ab:d7:19:59:01:4a:60:7c:8f:
6d:0b:c3:eb:ef:ab:29:53:3e:55:5a:ba:8d:98:6e:
3b:fe:6e:bf:62:35:27:11:6c:57:85:dc:dd:7a:f0:
0e:2d:40:09:38:cb:e8:05:76:0a:1b:91:eb:32:ef:
0a:28:f3:b6:e0:d6:d0:91:cf:5b:52:0b:27:96:b7:
e3:e9:d7:03:5a:69:fb:85:09:f1:8f:64:ef:65:64:
fe:34:60:ae:f5:1f:1b:40:21:5b:0a:fe:eb:d3:a7:
af:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:3C:4F:1E:13:14:5B:60:6C:5F:0E:59:A7:28:DE:B4:A9:3A:E8:EB
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3DxPHhMUW2BsXw5ZpyjetKk66Os.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.107.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:3b:94:56:a1:7a:28:ae:55:da:ac:68:41:5d:3d:7a:2c:dd:
f9:5c:9d:b4:97:30:e5:95:4e:3e:f9:14:9c:98:db:1c:e4:7b:
2a:1b:05:5b:45:f8:2e:3d:e3:53:d9:0c:73:76:c6:8e:8e:26:
8f:50:68:79:67:0e:38:cc:d1:85:62:5e:29:a0:25:3a:13:02:
1a:57:70:af:0b:21:51:cf:c7:a3:f9:1a:09:a2:19:75:2f:b1:
e2:16:3d:f2:01:18:2c:49:2b:ab:7f:69:04:4d:e2:7e:af:0b:
be:53:5f:9f:ef:09:85:9c:b9:ad:58:aa:59:9b:ef:30:4d:0c:
d8:99:7f:72:21:65:85:c7:f6:d8:86:f5:e5:60:2b:5a:98:56:
bd:73:ef:ec:4d:af:a3:78:e9:e7:11:74:bf:1a:8c:18:bd:67:
9f:a6:a0:59:ba:91:d8:d6:da:2c:01:18:7f:ff:e9:e3:02:a5:
db:6e:a2:b4:cc:6e:7f:09:49:04:51:29:47:c7:dc:0a:f5:b0:
65:04:97:01:e7:4b:1f:fa:06:86:f8:bd:7c:33:d3:b8:54:73:
69:a3:e7:1e:3e:9a:b1:ff:6a:45:ee:29:f6:b1:db:3c:47:f5:
9f:6f:53:63:49:c0:3e:77:df:4c:0c:a8:30:63:d4:12:9d:71:
d0:87:ad:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org