Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/89ZgN9UegNGsRsybAhlZI5TcUt4.roa
File: 89ZgN9UegNGsRsybAhlZI5TcUt4.roa (raw, json)
Hash identifier: kKMUGO2F2mfvQU1MQsn8Qu7BBTYi6TzQ4IhkoQVsft8=
Subject key identifier: F3:D6:60:37:D5:1E:80:D1:AC:46:CC:9B:02:19:59:23:94:DC:52:DE
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0A00
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/89ZgN9UegNGsRsybAhlZI5TcUt4.roa
Signing time: Sun 07 Feb 2021 12:39:51 +0000
ROA not before: Sun 07 Feb 2021 12:39:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.62.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2560 (0xa00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F3D66037D51E80D1AC46CC9B0219592394DC52DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0a:eb:e2:a7:56:01:80:a1:e3:4c:69:53:59:
4d:61:4b:e3:ed:ab:8c:18:2e:4c:cc:2f:55:8a:29:
fd:43:70:ab:50:c6:46:b0:92:e9:37:64:2e:c4:06:
de:00:ae:86:53:66:8f:a1:95:1b:4a:df:e5:2e:ca:
bb:a0:b0:f4:2d:31:fc:87:1c:14:aa:5c:11:73:c9:
a6:d7:3c:59:d5:78:6d:4c:9b:09:96:22:1c:dd:6d:
1c:ff:f3:9d:1a:ab:fe:9c:c3:73:a6:26:16:4f:8e:
76:93:ea:ec:90:64:5c:74:cc:07:3a:a1:8e:0c:f1:
17:93:72:12:e8:cd:66:24:01:d4:31:a7:0a:8a:ca:
f7:0e:18:8f:35:95:40:76:b9:13:32:4a:09:db:fe:
f1:26:2e:41:6a:d5:43:93:e0:0a:cc:5d:a6:ea:e6:
15:77:f7:f6:fe:b2:36:06:ac:30:54:27:cb:7c:08:
08:5f:68:2b:f3:f5:18:2e:56:22:0d:aa:81:62:cc:
43:5e:7f:86:0a:68:d6:7d:2e:57:27:10:6e:19:5e:
11:57:a8:ff:38:ca:74:58:90:ed:66:3c:2e:bd:8f:
d4:37:b0:d2:5d:07:8a:b5:62:82:2e:78:2e:50:51:
ff:62:2e:ca:89:00:a0:91:b7:c0:50:45:4e:b9:26:
47:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D6:60:37:D5:1E:80:D1:AC:46:CC:9B:02:19:59:23:94:DC:52:DE
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/89ZgN9UegNGsRsybAhlZI5TcUt4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.240.0/21
Signature Algorithm: sha256WithRSAEncryption
82:77:19:07:33:68:8e:26:6e:ab:51:50:c6:1b:1c:d6:2c:bc:
76:72:67:32:90:31:f4:7d:ed:d0:21:de:c7:e0:e7:b7:0e:76:
e2:42:56:d4:7d:53:33:c7:02:05:6b:81:43:ed:cd:3b:a5:74:
49:54:35:c8:f3:db:ae:95:e4:d6:10:a0:01:97:54:db:84:80:
95:1b:18:1a:1d:6a:f1:52:24:d7:ef:08:46:ec:20:14:1a:5e:
07:d4:b0:61:fd:4f:8b:8b:03:f0:7f:1f:a7:09:3c:e0:52:05:
5d:d1:df:bf:34:78:e3:15:00:12:02:fd:b6:61:e1:80:15:76:
02:6f:16:73:4f:2a:42:bd:9b:90:6f:1a:1f:6e:e3:fe:d2:a1:
9b:b5:7a:05:82:7c:f3:5f:7d:45:73:bd:bf:57:98:a5:42:2d:
af:7e:9a:42:64:0d:9d:2c:1f:1d:2a:02:d1:21:52:6f:d2:84:
0e:15:11:fb:2c:2f:d1:ae:df:01:d5:7d:0e:0e:81:8d:55:81:
e9:df:1c:5c:5a:40:70:2d:ce:c4:36:33:a5:c3:8a:4c:e3:e0:
4f:53:ea:3a:2f:cd:f4:dc:35:03:0d:4e:ef:5a:57:12:1a:1b:
cf:87:ee:0f:9d:d8:2e:26:d3:80:f9:3d:46:0f:99:29:78:87:
24:17:0b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org