Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/7xK4hY_8bsldazWTdu1QXX-sf1I.roa
File: 7xK4hY_8bsldazWTdu1QXX-sf1I.roa (raw, json)
Hash identifier: m6UlmLG+BemEzY+QnPsbR0RhkFZl7kyeEt0ywu2MIgU=
Subject key identifier: EF:12:B8:85:8F:FC:6E:C9:5D:6B:35:93:76:ED:50:5D:7F:AC:7F:52
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AC9
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7xK4hY_8bsldazWTdu1QXX-sf1I.roa
Signing time: Wed 29 Sep 2021 02:41:04 +0000
ROA not before: Wed 29 Sep 2021 02:41:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18185
IP address blocks: 120.117.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2761 (0xac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EF12B8858FFC6EC95D6B359376ED505D7FAC7F52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4d:3a:f0:ed:1e:75:49:48:e9:b1:bb:5a:90:
63:08:9b:08:95:0b:81:07:aa:39:e3:7c:da:b8:b7:
10:0b:5c:ef:53:b7:db:cd:33:73:2d:1b:82:21:e3:
09:17:f1:53:db:0e:4e:0d:4a:2c:ef:f4:a9:e9:24:
21:c7:7a:d0:47:1a:13:e3:c5:a0:0a:23:5b:3c:21:
81:4e:64:f8:85:31:55:67:21:ec:da:e6:bc:5c:ed:
bf:41:ce:6c:75:56:e0:7b:d1:ee:01:af:90:89:ac:
9e:a4:f0:23:ee:aa:f8:2f:9f:55:84:bf:a5:22:10:
44:02:62:9c:7c:5f:04:f4:9b:59:b7:79:17:33:e4:
9a:da:03:b5:a0:d4:a1:ab:e5:2a:60:69:e8:f4:2a:
a5:89:78:57:13:da:86:f1:8f:86:7f:7c:d2:15:ef:
ac:5a:62:cc:ea:ce:57:92:22:1a:42:80:49:8f:01:
cf:2c:93:70:1f:e5:9c:8e:c6:e2:4a:aa:85:17:8e:
44:0f:07:fd:2b:a0:98:86:41:df:e3:d3:68:99:51:
09:ab:c9:e9:bf:93:dc:6b:dc:c6:b8:9d:1d:e9:7b:
ff:11:d0:a9:e3:e0:aa:d0:03:07:d1:22:8b:13:cd:
02:b1:25:37:28:17:bf:1b:24:93:ab:37:5c:6f:24:
2f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:12:B8:85:8F:FC:6E:C9:5D:6B:35:93:76:ED:50:5D:7F:AC:7F:52
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7xK4hY_8bsldazWTdu1QXX-sf1I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.4.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9b:5b:94:29:0e:6b:cd:5d:38:39:a5:af:b2:2a:2d:85:8b:
a3:d9:ba:33:e8:55:f7:df:b9:29:0a:2f:80:48:ed:83:43:3f:
da:b5:88:9a:6a:56:30:f3:83:78:13:cd:6d:6d:5f:e9:28:db:
a4:b9:1a:08:96:60:db:8c:84:2f:2b:ee:28:6f:d5:46:06:92:
92:54:59:3d:07:ab:b3:bf:4e:ae:ab:ff:1b:e4:2c:67:08:72:
90:e2:0a:cd:d4:9b:87:37:40:5a:3c:d8:b2:0b:91:7b:fc:23:
1d:7b:ba:81:7c:ac:76:08:75:3d:5c:73:7b:83:5a:21:5a:f9:
eb:c4:36:39:22:27:b6:60:d1:20:a4:74:30:9d:6a:db:ac:40:
e1:2a:77:e5:69:90:0f:a1:fb:95:ed:03:ce:56:a2:94:9a:ab:
ea:2c:16:04:c1:e4:76:ad:76:95:42:f5:7a:8a:18:44:36:28:
82:a1:1a:bb:86:f5:23:e0:04:8d:49:8e:e0:6d:41:ce:32:41:
c2:12:cd:d0:e3:30:e0:b9:cc:95:4b:c4:2b:6d:e5:69:ad:6d:
34:e8:e3:e4:65:38:b6:c4:e7:bf:75:d7:0e:fd:96:45:af:ba:
4a:a5:c6:cd:48:d1:50:57:d8:1d:75:f1:bc:dd:3c:82:a3:4a:
07:d4:f3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org