Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/5gCkDLjWQ5h-NlpCYwvg1ahHMGs.roa
File: 5gCkDLjWQ5h-NlpCYwvg1ahHMGs.roa (raw, json)
Hash identifier: b+JU0MwgSkEEfkMuxB8I67SLGatzOuPY109N6rkL0wE=
Subject key identifier: E6:00:A4:0C:B8:D6:43:98:7E:36:5A:42:63:0B:E0:D5:A8:47:30:6B
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07E7
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5gCkDLjWQ5h-NlpCYwvg1ahHMGs.roa
Signing time: Tue 29 Sep 2020 10:06:36 +0000
ROA not before: Tue 29 Sep 2020 10:06:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18185
IP address blocks: 120.117.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2023 (0x7e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E600A40CB8D643987E365A42630BE0D5A847306B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f4:20:34:94:11:d4:27:79:5b:16:42:41:04:
d5:b2:50:e4:4a:b4:ce:0b:03:31:c4:bd:db:2a:ca:
7b:ee:42:13:c4:77:6a:53:ba:95:b0:72:7e:3c:19:
ce:09:79:d1:30:12:73:cf:e5:fe:35:b7:8f:aa:d5:
c3:60:d3:32:e0:f6:53:4c:d3:1a:b7:72:60:1e:39:
4d:b6:f2:c0:8f:10:1f:8e:73:03:64:8b:13:ca:d9:
56:5b:9e:73:ff:4d:0a:2f:56:a3:04:d4:67:57:15:
27:0e:fb:0b:0a:2a:2e:c5:65:15:27:d5:1c:d8:37:
98:f8:b0:fa:06:56:9d:15:76:22:90:8b:9d:c1:11:
3d:4c:e0:67:dd:53:78:06:bc:b9:43:e9:33:4c:7d:
29:cc:44:a2:e7:26:9d:9f:7d:8c:f9:5e:2d:fb:dd:
72:c5:b5:56:d6:d7:d0:e4:29:ea:b8:34:f3:de:a7:
61:a7:2a:07:08:6d:5d:72:9f:9c:54:cf:3b:2b:ce:
2f:e8:b3:7d:1a:4d:1b:88:1f:1d:58:18:db:24:6b:
5e:0f:ad:7d:dc:02:c4:05:88:32:27:83:d7:4c:a3:
db:ac:d2:5a:18:cd:d8:0f:a2:67:3f:90:db:22:30:
6a:b7:c7:76:ec:e1:6a:5d:01:80:e7:57:6a:2d:03:
5a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:00:A4:0C:B8:D6:43:98:7E:36:5A:42:63:0B:E0:D5:A8:47:30:6B
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5gCkDLjWQ5h-NlpCYwvg1ahHMGs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.4.0/24
Signature Algorithm: sha256WithRSAEncryption
46:93:65:cf:83:7a:f4:2a:3e:f7:32:d3:43:d4:f1:68:89:f1:
48:5d:dc:6f:07:e8:78:86:7e:0d:b2:bc:94:ce:e0:8f:38:cb:
22:8f:34:43:65:41:2d:a8:04:d7:8f:f6:83:7f:ae:c5:48:2f:
f1:b1:2e:81:e7:a6:cf:74:19:c6:34:98:fb:9d:a6:f5:d8:ab:
b2:33:61:ed:e7:ef:52:32:2e:e5:fe:1a:e4:42:10:49:35:d6:
ab:3a:80:e0:b1:ec:78:cf:bb:75:d6:e9:7f:e9:a9:e5:a0:47:
b0:e0:0c:49:72:fa:a2:e0:c6:0c:ee:ec:d7:45:63:42:da:e1:
51:33:e4:a7:42:6d:8e:30:59:e9:fd:cc:3d:f8:de:f8:89:e2:
25:ce:f0:45:f6:45:bb:ac:c6:dc:0c:1a:af:f6:c9:1f:d8:0a:
67:ab:4a:0f:e5:8c:55:69:b8:19:dd:9d:97:dd:14:a5:b3:a6:
e5:ff:33:37:04:1f:fe:f9:3b:34:13:7c:3e:aa:64:9d:8c:66:
75:e7:79:f2:3f:7c:fd:af:04:1c:df:3a:fc:02:e1:8d:22:41:
f6:2c:56:1d:55:94:08:ba:98:ff:46:86:72:e8:e4:a0:2e:c3:
7e:be:cf:5c:88:38:e9:3f:40:c4:12:72:ef:6c:a5:f9:17:10:
53:9a:ea:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org