Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/7CwaEr2IjMmpRb7aEYkLXjvvk10.roa
File: 7CwaEr2IjMmpRb7aEYkLXjvvk10.roa (raw, json)
Hash identifier: OHSIWT45kH2RmPR9CSFBngZzzSbBXUtO1lrQD90nJDU=
Subject key identifier: EC:2C:1A:12:BD:88:8C:C9:A9:45:BE:DA:11:89:0B:5E:3B:EF:93:5D
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09AA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7CwaEr2IjMmpRb7aEYkLXjvvk10.roa
Signing time: Sun 07 Feb 2021 12:38:22 +0000
ROA not before: Sun 07 Feb 2021 12:38:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17716
IP address blocks: 120.96.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2474 (0x9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:38:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EC2C1A12BD888CC9A945BEDA11890B5E3BEF935D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:36:7f:08:8a:60:54:d9:12:a7:d4:a4:44:29:
76:06:d6:7e:39:ca:1c:35:c7:6e:5c:e0:96:30:33:
89:e8:45:f6:19:a0:b0:d7:bd:06:df:0f:88:ab:ca:
83:d9:9d:29:6c:19:75:b7:cd:78:8e:66:b7:5b:f8:
c1:53:b7:41:bc:0d:51:0c:35:c2:03:d1:fd:2e:cf:
e6:6c:d3:b9:23:f0:91:99:0b:39:44:3c:7c:39:05:
ec:68:57:6a:d2:a6:b3:e7:29:35:6b:aa:06:52:64:
e5:4a:a0:97:cf:db:ab:b9:32:2b:81:48:5c:ad:82:
b5:1b:70:06:28:1e:df:21:d2:3d:39:8a:db:97:8d:
88:0d:03:96:a7:58:58:19:5d:40:86:c7:60:d0:1d:
8e:9d:b1:58:e4:86:92:a0:d6:b9:13:53:ff:45:85:
3f:20:83:1f:fb:e5:48:32:b0:7b:0a:13:05:49:8d:
cd:0b:d0:37:16:a2:6d:d6:36:9d:c8:40:40:72:8e:
20:ff:36:d1:1d:e1:8f:c0:40:36:20:da:9e:9d:3e:
ee:d6:34:75:c5:d5:af:5f:30:64:5d:6d:37:71:4e:
9f:46:ab:e0:dc:99:de:7e:1a:9e:b1:ba:2d:69:32:
f9:7c:53:df:b7:91:92:d4:e2:b8:6b:a5:5a:21:4c:
a0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2C:1A:12:BD:88:8C:C9:A9:45:BE:DA:11:89:0B:5E:3B:EF:93:5D
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7CwaEr2IjMmpRb7aEYkLXjvvk10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/19
Signature Algorithm: sha256WithRSAEncryption
02:a6:cb:91:0a:af:fa:51:23:95:24:af:f2:b8:6c:4b:58:33:
67:38:09:03:d2:59:86:a0:df:8d:04:c3:ee:05:a3:32:c1:ee:
f6:de:db:ea:de:96:6a:6a:c7:34:d6:23:98:da:a4:c1:56:d5:
7f:05:6a:48:c9:b0:17:06:37:bc:d8:98:3b:68:4b:1f:d4:00:
77:83:cf:a8:0e:c7:d3:d4:30:cc:1d:a0:a6:cb:c3:1e:db:92:
fc:2c:2a:4e:d1:21:bc:79:0e:4a:fa:36:1c:b2:98:a2:ae:66:
ae:61:a2:e1:fe:39:d8:08:e5:47:8f:f5:51:15:a8:60:27:de:
3d:a4:e7:82:da:14:6e:cc:67:a8:a9:e1:70:54:93:86:2f:8c:
62:01:63:e3:12:35:00:84:d1:86:ba:24:f3:39:f7:47:17:07:
e4:5c:bf:5c:53:7f:cc:9b:f4:67:d9:90:b2:73:39:db:d7:60:
79:12:d5:d8:f6:5a:34:72:29:cd:0d:c7:fb:fd:45:ab:9d:40:
37:22:6e:93:6d:cc:a5:cd:e4:2c:a8:9a:cc:d9:af:08:32:5f:
ef:10:ed:0d:53:31:86:39:b5:41:85:cd:98:d8:b1:bd:af:cd:
d7:74:98:e5:92:6e:ed:d8:d5:b1:fc:4d:8d:08:a0:c8:e3:fd:
25:c3:40:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org