Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/4eYN7GLiuBbfcwOSFEaUqbpVg74.roa
File: 4eYN7GLiuBbfcwOSFEaUqbpVg74.roa (raw, json)
Hash identifier: bqfcdkLcUaBEjmYxE2epEP4gRRoocRHNIxVCkPIl61U=
Subject key identifier: E1:E6:0D:EC:62:E2:B8:16:DF:73:03:92:14:46:94:A9:BA:55:83:BE
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4eYN7GLiuBbfcwOSFEaUqbpVg74.roa
Signing time: Thu 15 Sep 2022 02:41:19 +0000
ROA not before: Thu 15 Sep 2022 02:41:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 192.83.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E1E60DEC62E2B816DF730392144694A9BA5583BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:a8:f5:02:54:d3:22:de:97:08:fd:d8:b2:
ca:d5:06:a4:29:a1:e8:7c:34:30:15:f6:b9:22:1f:
8d:1f:86:26:8c:6f:28:10:1c:79:3b:e2:7c:ba:37:
c2:e5:e8:32:44:b7:f1:c3:b8:a1:72:71:44:8c:eb:
ef:36:ab:01:dc:e0:78:01:a1:ed:e2:b2:9a:ac:08:
e5:54:cf:09:c3:73:53:08:69:14:8b:15:1b:47:7a:
7d:43:8b:45:5d:7f:1f:39:3d:c1:e3:ba:86:0e:a5:
30:b7:98:c7:dd:6e:27:49:3c:04:17:16:8b:43:8f:
c7:b5:a8:55:53:77:b0:de:8e:86:82:43:8e:4e:c7:
56:96:0d:5a:47:69:d6:30:f5:b2:42:cb:96:ea:3e:
1c:0b:7e:4e:d8:a8:5f:2c:79:09:59:73:c1:9d:a4:
43:1e:a2:da:46:e5:90:c9:9d:31:0d:87:f9:f3:2e:
8e:de:0a:c8:36:7b:59:8b:a0:7f:47:4d:44:4a:be:
2e:5e:da:5d:d1:db:05:40:36:81:a3:17:db:9a:43:
a9:bb:0a:4f:89:51:66:c9:45:71:9f:ed:e3:17:19:
a1:11:e1:47:04:44:82:01:2b:9e:66:2d:79:e9:96:
5a:a8:1c:6d:57:f9:3e:13:1a:9e:0e:be:ea:a5:08:
0e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E6:0D:EC:62:E2:B8:16:DF:73:03:92:14:46:94:A9:BA:55:83:BE
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4eYN7GLiuBbfcwOSFEaUqbpVg74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.166.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:39:d0:13:8d:1c:a0:d6:87:dc:9f:48:c0:f5:0c:3c:54:a9:
85:ba:f8:5f:44:55:20:d4:85:3c:4f:0c:79:c0:13:b6:f0:61:
bb:ec:80:6f:3c:1c:98:28:96:42:cb:e3:31:c7:20:0f:78:d7:
a8:19:6d:3f:03:79:0a:f0:a5:57:70:f3:cb:f2:5d:64:f4:cc:
ee:ed:70:bb:76:da:eb:f9:94:e0:34:e1:e0:5b:09:78:3b:c8:
ac:00:94:48:e3:1d:2f:79:64:5f:0f:54:cc:d7:67:43:00:be:
61:5b:ea:c4:ce:7a:69:19:88:4f:d8:54:8f:d2:51:29:aa:41:
50:04:93:4f:e9:3c:3f:3a:a7:3a:4d:4d:9c:97:f8:04:bf:a6:
08:73:b1:c4:2a:90:4e:36:1b:13:8d:8c:35:8c:58:96:8d:9e:
01:f9:21:8b:a8:3e:21:70:70:b8:50:4f:47:48:10:23:1d:b2:
fb:e6:43:16:22:88:18:fe:bc:13:07:36:47:77:87:0e:c9:ed:
bd:be:d7:6a:d4:5c:ba:b7:b1:d6:57:90:0a:f8:b2:39:b4:cf:
31:bc:1d:8d:31:4a:10:72:e8:37:b6:d4:8b:89:02:8e:9b:68:
34:92:ab:24:18:ee:80:14:c4:1d:c3:78:cb:12:8d:66:aa:78:
d0:b4:52:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org