Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/4toZFQTGcV3OzUilo-lGY4Auk-o.roa
File: 4toZFQTGcV3OzUilo-lGY4Auk-o.roa (raw, json)
Hash identifier: i16mxZejo2vgEMAunLgskJJ9m6zVjxMnHa1Lf5Qn130=
Subject key identifier: E2:DA:19:15:04:C6:71:5D:CE:CD:48:A5:A3:E9:46:63:80:2E:93:EA
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07FC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4toZFQTGcV3OzUilo-lGY4Auk-o.roa
Signing time: Tue 29 Sep 2020 10:06:42 +0000
ROA not before: Tue 29 Sep 2020 10:06:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18185
IP address blocks: 120.117.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2044 (0x7fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E2DA191504C6715DCECD48A5A3E94663802E93EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:04:ea:9e:79:a8:84:a9:9c:cc:59:7a:bd:32:
e6:66:c4:a6:f2:14:f3:88:49:b9:cf:2e:26:df:37:
cd:71:b3:a9:58:cb:00:9a:ea:3a:37:47:db:ba:4d:
51:12:a8:5a:10:c5:e3:20:f3:da:19:ec:78:a2:a0:
a6:84:4b:67:a6:b7:50:79:f6:ae:ce:05:0a:d0:14:
79:35:2b:e6:26:5f:52:e5:1f:5b:b2:e1:26:4e:71:
6c:03:7d:81:71:36:34:b3:ac:61:b1:18:a8:42:93:
b4:65:96:a2:f6:f5:ef:3e:23:06:b0:b2:9b:06:6c:
5c:d7:14:7e:98:f3:48:2f:31:e3:9f:65:bc:3a:bc:
89:04:0b:49:2c:be:2c:2f:36:28:8f:d7:84:32:5c:
f8:4d:1d:30:c9:60:e8:0e:16:38:a9:02:02:24:8d:
0e:4b:a6:99:51:50:24:7a:2f:65:d9:34:12:d1:dc:
41:18:72:45:82:b6:20:eb:4b:ac:ef:95:f9:c4:93:
ef:dc:92:7c:79:cf:5b:65:ee:2f:94:de:14:13:79:
9a:a0:a7:34:f7:b1:42:3b:7a:13:3a:b0:8f:97:c7:
3c:70:12:26:ca:30:77:d6:6e:40:cb:19:74:fd:69:
6d:6f:67:c6:c0:bf:9a:1d:cd:bb:94:6d:d2:82:8e:
5e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DA:19:15:04:C6:71:5D:CE:CD:48:A5:A3:E9:46:63:80:2E:93:EA
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4toZFQTGcV3OzUilo-lGY4Auk-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:9e:2e:72:c0:2c:65:f3:ef:48:9f:25:fa:98:c1:d0:bd:93:
67:51:08:39:67:cd:00:d4:bb:e7:00:e3:2e:ac:0e:90:55:f6:
19:89:e5:43:6a:90:93:49:7a:cf:31:8a:ac:b2:a3:01:84:35:
74:4d:5c:2f:54:f1:8a:eb:99:8b:80:22:42:ff:f3:96:96:24:
87:1f:e4:c3:96:6f:c6:5c:e4:5a:fe:10:9d:1d:0f:60:0b:38:
37:bc:eb:48:6a:c7:9b:97:e9:0a:41:96:bc:79:55:3d:72:56:
b4:67:04:0f:24:29:de:77:89:58:11:e4:12:e0:01:6e:13:ed:
27:5e:ba:84:98:cc:09:14:82:19:a8:67:97:5d:51:db:87:c7:
f0:3d:a1:7f:97:11:b0:93:54:36:ab:ef:86:9e:f7:3d:0e:f1:
e0:d7:ef:8d:fb:0c:88:b4:8d:7b:97:4e:c8:df:a9:c1:ea:c1:
e3:0d:0b:a7:20:1c:20:64:a2:c0:ed:8e:1c:dc:51:f1:d0:e4:
23:c8:53:0e:43:cb:8d:1c:1d:ce:5c:47:36:4f:5d:3d:d3:62:
b0:75:7b:39:e9:bc:71:e4:8a:00:43:8e:c4:02:48:e2:2f:1a:
c6:89:5c:7a:4d:cf:1e:e4:3b:05:98:46:d9:78:ea:85:4e:33:
84:5a:88:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org