Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/8bKltXecrZhAKVHhrZBYeKBlRfs.roa
File: 8bKltXecrZhAKVHhrZBYeKBlRfs.roa (raw, json)
Hash identifier: W5GupDllbBOQA6Ejyky4a/5NXH6vNcjvYInl55D/0DA=
Subject key identifier: F1:B2:A5:B5:77:9C:AD:98:40:29:51:E1:AD:90:58:78:A0:65:45:FB
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07F5
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8bKltXecrZhAKVHhrZBYeKBlRfs.roa
Signing time: Tue 29 Sep 2020 10:06:40 +0000
ROA not before: Tue 29 Sep 2020 10:06:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.243.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2037 (0x7f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F1B2A5B5779CAD98402951E1AD905878A06545FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8d:ea:c3:41:45:d4:75:06:3f:83:f4:28:5b:
67:43:e1:4c:32:ba:45:78:f7:41:30:e2:e5:88:8e:
79:cf:40:71:0a:b6:35:ef:78:a6:b1:c6:f1:bb:b0:
51:f1:06:f8:98:28:0e:60:ce:55:78:30:b4:ca:db:
70:87:85:59:be:71:4d:c1:95:8d:26:d5:fb:26:26:
be:b5:d6:5b:92:93:d1:79:f4:22:7c:3b:1d:c8:dd:
00:42:7e:69:7d:2c:30:cc:0e:81:64:20:a8:5a:a3:
6b:a4:04:2c:0b:6d:0a:28:0a:82:af:a1:32:a0:4f:
1b:6a:d2:e7:70:5a:45:0f:07:57:f1:c9:41:60:8e:
9c:78:32:88:13:5b:a0:cb:4b:94:f2:3f:65:63:df:
45:f7:1b:c6:f6:4d:03:a6:f3:24:0d:1a:ff:44:2f:
c4:f3:50:ed:cf:86:3d:5b:e6:be:ff:59:7d:84:5b:
ec:f5:0f:c2:c9:ce:1e:ec:22:6b:22:08:c8:96:73:
1f:2c:ac:a3:5b:bb:f1:cc:e0:d8:da:b9:94:93:df:
74:1e:84:cd:7d:d2:ee:0a:b6:a2:5a:45:78:0f:d1:
40:99:74:7e:4a:10:c3:b7:30:08:d9:c0:15:2c:b0:
d7:50:54:6a:d4:5f:f5:87:d9:48:bd:bc:20:4f:2e:
70:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B2:A5:B5:77:9C:AD:98:40:29:51:E1:AD:90:58:78:A0:65:45:FB
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8bKltXecrZhAKVHhrZBYeKBlRfs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.0.0/18
Signature Algorithm: sha256WithRSAEncryption
42:9b:f7:b5:67:50:41:d9:53:67:6a:5d:36:8e:c6:e4:6d:df:
30:eb:29:4f:9d:64:7d:27:8b:8c:04:79:43:51:64:39:f5:26:
4f:3a:0b:0a:7f:bc:a4:e9:18:74:06:b9:e6:be:88:a8:2f:97:
e9:91:cc:64:e6:af:33:bf:02:be:88:3a:0a:d9:94:b6:51:7b:
43:5e:5a:d4:a9:be:55:cb:ad:8c:08:38:e5:97:28:35:6d:4c:
98:68:60:23:27:99:46:84:68:c9:b6:77:66:30:29:91:be:91:
71:2f:62:e4:34:c9:f7:9c:3d:ba:87:87:a8:ce:de:66:f9:9d:
9f:e7:f3:48:cc:35:c4:ba:28:e9:23:92:ce:73:fd:b9:79:4e:
01:e8:77:48:b5:a6:5b:30:f4:e2:4d:7f:32:70:0c:36:47:b8:
a2:0a:86:50:32:29:9c:bf:bf:f3:80:73:84:08:73:3d:76:91:
b5:ed:5d:6c:8e:03:d2:40:2f:aa:60:e5:ab:6e:f5:95:88:97:
50:ab:f2:43:18:e4:09:08:fd:69:72:ed:96:26:32:ec:bd:45:
f3:d1:cc:64:f0:bc:8f:fb:89:f6:e3:71:0c:ab:ce:80:ae:d8:
26:ef:15:67:4c:fb:df:42:98:6a:55:68:2e:d6:ba:29:10:66:
ac:80:fb:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org