Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/7ABX0H7COsccvsJ27T-l-PXY8l8.roa
File: 7ABX0H7COsccvsJ27T-l-PXY8l8.roa (raw, json)
Hash identifier: 9MLqAIsC+aWrgciWhg9UlclqbiGnWzDZ8b4Rl+LtVcA=
Subject key identifier: EC:00:57:D0:7E:C2:3A:C7:1C:BE:C2:76:ED:3F:A5:F8:F5:D8:F2:5F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AE8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7ABX0H7COsccvsJ27T-l-PXY8l8.roa
Signing time: Wed 29 Sep 2021 02:41:14 +0000
ROA not before: Wed 29 Sep 2021 02:41:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 210.70.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EC0057D07EC23AC71CBEC276ED3FA5F8F5D8F25F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c3:26:8e:a3:61:61:d1:fe:07:f0:da:01:c5:
ad:6f:5e:33:5d:ec:58:63:54:46:a1:c5:83:57:53:
4c:ed:b2:b1:89:3e:8e:e2:b4:b5:02:fc:c2:db:2d:
29:ba:ea:bf:39:05:23:30:68:20:59:22:22:2b:b9:
be:17:07:f5:76:8f:ba:62:1f:b9:a5:23:03:48:9c:
a6:ba:ff:b1:00:d0:f0:19:b8:02:42:5a:5f:26:2f:
74:33:95:73:09:2b:a6:42:ab:38:fb:7c:4f:b5:9c:
00:40:ec:10:67:b0:65:6f:7a:07:09:60:70:cc:d5:
84:6a:bb:ff:d0:f9:55:22:b4:ad:cd:04:e2:53:ff:
5f:5e:25:0f:4f:8e:18:60:18:3a:83:e7:bf:b6:e1:
2a:01:04:bc:66:72:88:1e:05:a1:5a:26:21:48:9b:
d7:b2:2a:65:b0:51:4f:46:3e:c1:fd:37:98:64:14:
cc:f6:98:da:a6:78:e0:cf:35:f4:71:ff:f1:79:bf:
34:52:c0:9e:1c:13:36:c0:c1:82:25:03:ad:ba:48:
d8:d7:8c:3e:d7:42:b0:a0:79:e2:c3:51:8d:83:07:
18:db:16:d6:f6:d8:ca:5e:d1:12:da:0f:a4:46:a7:
ff:af:24:8b:5a:9a:dd:eb:81:02:b6:f4:a1:b8:f6:
bd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:00:57:D0:7E:C2:3A:C7:1C:BE:C2:76:ED:3F:A5:F8:F5:D8:F2:5F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7ABX0H7COsccvsJ27T-l-PXY8l8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1b:b8:79:67:ae:ac:5f:18:08:cf:3f:d0:2a:d7:ad:74:51:9e:
e4:d7:fe:0f:d2:49:38:6a:19:d0:1c:13:4c:c1:3d:2b:81:e0:
c3:37:6d:00:1f:be:d9:7b:b2:cf:62:84:39:d6:1f:a6:63:1b:
c5:ba:0e:3f:3a:5c:dd:bc:b9:9e:c0:61:e8:f6:6c:53:b0:31:
12:bd:e2:7b:e6:67:35:91:bc:70:b2:ba:cf:8e:42:d5:89:6d:
f1:57:5e:0d:0e:ce:14:84:cf:7d:ce:83:7a:6f:28:7a:75:d1:
12:61:2f:70:c6:f7:38:af:00:49:cb:14:eb:34:81:d5:50:e5:
95:29:85:e5:60:72:5b:a9:a0:ce:50:18:94:0b:b5:95:a5:aa:
90:37:c3:ac:16:fb:e7:10:7a:83:1d:09:3a:37:a1:d0:09:e2:
45:30:98:57:ca:1f:54:d1:85:95:7d:af:7a:14:54:e3:40:c7:
b1:b8:42:5e:18:22:b2:c5:e2:7f:64:6c:89:ec:ee:89:6a:22:
70:e8:dd:69:9c:1b:8a:30:7f:74:86:83:d1:c5:47:30:a1:7d:
6f:56:c6:42:d3:43:74:20:10:74:85:66:73:b7:f2:a6:7d:d9:
cb:b2:0c:5b:8a:45:fb:db:22:85:d5:9a:e4:e9:95:f2:62:21:
63:dd:dd:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org