Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/41TGMJt6uwGqUjd28nqkyczweWw.roa
File: 41TGMJt6uwGqUjd28nqkyczweWw.roa (raw, json)
Hash identifier: oPYnb4xQgXzBkDk5ssdqHK9k5rdgtUw4S9BmbEGzRDE=
Subject key identifier: E3:54:C6:30:9B:7A:BB:01:AA:52:37:76:F2:7A:A4:C9:CC:F0:79:6C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AE3
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/41TGMJt6uwGqUjd28nqkyczweWw.roa
Signing time: Wed 29 Sep 2021 02:41:12 +0000
ROA not before: Wed 29 Sep 2021 02:41:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38844
IP address blocks: 210.60.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2787 (0xae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E354C6309B7ABB01AA523776F27AA4C9CCF0796C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4a:59:cc:ae:97:bb:4f:b2:d3:84:a0:c3:6c:
14:91:7e:61:1c:09:59:a9:67:30:94:7b:db:70:52:
ca:d2:82:3d:be:65:0a:5b:ec:b6:97:cd:32:c8:84:
6f:d0:5b:db:d7:64:f7:0c:0d:21:4a:17:a0:c1:13:
50:5c:92:ee:50:e0:2f:66:37:22:65:ed:79:ca:f3:
a4:8a:ca:06:b2:93:5f:e9:d1:1a:90:b8:ad:11:db:
c7:ad:82:4b:f6:a6:b6:dc:a1:38:47:17:39:f4:5b:
29:97:0e:24:e9:1c:33:44:21:6d:8f:7a:77:f2:b1:
16:9f:94:37:08:4c:ff:e9:ce:9f:c1:f8:c9:e6:9d:
f1:6d:74:7b:bb:6f:65:a2:ca:da:54:00:28:33:59:
2b:50:c6:21:41:18:75:9e:c1:7c:1f:76:15:18:65:
da:b9:e9:29:15:cc:9d:54:ce:37:77:9e:55:95:c1:
11:00:c3:b8:53:9f:c0:7f:4f:d6:79:f4:e5:d2:f9:
96:a7:52:a5:3b:dd:f2:0d:57:df:a5:09:2c:7d:d8:
0c:11:54:79:73:a6:a2:49:b7:07:7f:04:35:be:d2:
cc:ab:cf:fa:12:b1:77:34:ff:0b:e6:2f:d5:6e:7f:
aa:4d:c6:5c:dd:ed:f4:79:04:16:93:a0:89:3f:09:
d8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:54:C6:30:9B:7A:BB:01:AA:52:37:76:F2:7A:A4:C9:CC:F0:79:6C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/41TGMJt6uwGqUjd28nqkyczweWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.150.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6d:eb:bc:bd:de:58:82:23:b2:c9:65:c0:f8:56:b2:d5:e6:
ce:61:2d:7d:fd:06:7c:39:66:78:ac:fc:a3:4a:a1:5c:0d:38:
42:bd:46:06:3f:28:1a:82:e3:bb:be:fa:8c:fc:b6:82:a6:26:
21:af:3e:90:9f:69:69:c0:e9:49:29:9f:54:86:85:2f:44:ac:
87:6c:32:21:9d:92:09:d4:9e:71:53:0e:3a:43:53:75:ed:15:
c6:a6:11:69:6b:62:a8:f1:1b:52:0f:0c:32:5c:6b:a5:88:b6:
9d:5a:a8:cd:93:6a:06:0a:2a:f5:96:75:73:26:3e:b7:76:b3:
5e:ea:e3:b6:70:ad:a7:fb:ff:a2:4e:9e:b6:97:2e:4d:88:70:
51:5d:56:ff:36:b8:33:2b:56:ac:57:91:5a:ee:20:a5:1a:e0:
fd:7e:f8:a6:03:25:8a:f0:d9:c0:7c:4e:0b:23:0b:b1:dd:e4:
33:f6:cb:d8:b9:e6:3b:a6:69:f0:0f:0c:3d:b9:55:1f:9b:75:
ca:d3:8d:87:65:e8:2b:eb:a3:3f:4c:b3:84:60:af:88:20:5d:
40:32:7f:2c:82:aa:d2:2c:db:65:ab:49:a9:fa:06:fb:98:81:
44:d0:72:4e:1c:4c:b4:05:bf:c9:f9:17:65:5d:3e:d8:e1:13:
86:b5:49:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org