Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/85XsyAvjoCvqi532CNFCj8xrKuk.roa
File: 85XsyAvjoCvqi532CNFCj8xrKuk.roa (raw, json)
Hash identifier: qVsEin4IFzuQwrmq7tsQvHQBFfQN5SfmEydEsMji5sU=
Subject key identifier: F3:95:EC:C8:0B:E3:A0:2B:EA:8B:9D:F6:08:D1:42:8F:CC:6B:2A:E9
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07EC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/85XsyAvjoCvqi532CNFCj8xrKuk.roa
Signing time: Tue 29 Sep 2020 10:06:37 +0000
ROA not before: Tue 29 Sep 2020 10:06:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 120.119.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2028 (0x7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F395ECC80BE3A02BEA8B9DF608D1428FCC6B2AE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f7:47:f5:a8:8d:42:61:d5:2e:c7:6b:d5:47:
42:04:ae:4e:44:63:a4:70:e7:e2:0e:b0:46:e9:12:
39:a9:9a:e9:4c:4d:97:98:6f:63:79:0b:2d:0f:3f:
4f:13:6c:f2:47:da:2d:b7:20:bb:76:0b:6d:4e:85:
f9:d6:10:83:3b:44:ea:fc:15:81:3e:ba:f9:b8:5a:
2c:05:86:be:c2:80:87:b1:f9:28:1b:f0:e0:97:d3:
ae:cc:b8:3f:66:6d:4a:cb:22:a0:fa:9f:0a:62:6d:
b9:17:aa:46:08:87:29:2f:37:fb:50:6e:6b:9c:08:
98:0b:a4:18:a7:03:39:51:22:cf:41:f0:fe:d8:eb:
09:36:4d:6a:88:58:0f:c4:18:eb:ea:da:3e:ad:95:
89:c2:e7:12:9a:be:51:61:23:ae:e1:2e:cb:27:05:
48:1a:55:a9:d3:63:5b:a9:48:9f:e6:7a:19:60:73:
be:ae:d3:1c:67:59:90:a3:29:66:c5:3e:09:64:b2:
88:15:0e:4b:0b:bd:e9:54:7c:32:25:7f:a0:8c:25:
10:55:9c:c4:6d:7c:c1:91:2c:a0:fe:d8:bc:4a:dd:
5a:5e:7b:1e:f8:ee:eb:fe:47:a7:97:cc:1f:b1:49:
b6:d2:9c:c0:2e:d4:52:20:d7:be:a5:9b:34:56:26:
b4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:95:EC:C8:0B:E3:A0:2B:EA:8B:9D:F6:08:D1:42:8F:CC:6B:2A:E9
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/85XsyAvjoCvqi532CNFCj8xrKuk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.119.254.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:d2:3d:2f:6b:97:b2:c4:a5:8d:af:95:64:ab:f7:f4:ff:1d:
72:85:22:53:6a:f4:76:e7:92:6f:45:06:61:d2:7e:99:52:3c:
38:28:4b:1d:65:49:17:c0:e2:cf:4e:7e:a7:6f:ef:75:08:d0:
ff:15:82:64:c5:bc:8f:28:b2:b8:45:5d:e6:93:a5:57:21:97:
d3:5b:15:ef:a3:07:62:16:f5:cf:2a:71:32:fe:33:c1:96:db:
de:98:06:9f:0a:db:07:f0:c2:b2:2d:f9:63:2a:ec:72:7c:bf:
e0:62:97:0e:dc:f3:dc:35:dd:e5:c2:db:6d:13:d8:b3:f2:6b:
87:de:e8:cd:7b:9f:51:f3:9f:94:be:66:ff:cb:59:2a:8b:53:
24:20:30:da:cd:fe:8b:b6:16:cd:d9:56:fe:3f:c2:d6:d8:36:
55:17:d9:97:84:12:b6:63:96:f1:f8:f5:79:26:2e:94:1b:98:
c2:ce:93:31:75:6f:ac:06:77:bf:b7:67:46:b5:c5:af:7d:ac:
4b:6b:1f:f3:7b:ed:0d:f4:ea:51:be:0a:58:1d:f6:13:41:72:
ee:ea:1d:fd:75:b7:de:82:21:5e:a6:dd:26:f1:1c:a2:5d:7c:
82:81:48:cb:e9:26:78:f2:87:73:57:05:26:d9:a9:67:a3:82:
a1:86:95:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org