Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/A1jZtxHrnZ7YLUhT6-cxk0sqCC8.roa
File: A1jZtxHrnZ7YLUhT6-cxk0sqCC8.roa (raw, json)
Hash identifier: JmYIpfVRSlHGDyr5DjvoEBuB3RccMYc91lV2D+S1n8c=
Subject key identifier: 03:58:D9:B7:11:EB:9D:9E:D8:2D:48:53:EB:E7:31:93:4B:2A:08:2F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0946
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/A1jZtxHrnZ7YLUhT6-cxk0sqCC8.roa
Signing time: Thu 07 Jan 2021 06:49:14 +0000
ROA not before: Thu 07 Jan 2021 06:49:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.60.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Jan 7 06:49:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0358D9B711EB9D9ED82D4853EBE731934B2A082F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e3:16:ab:ea:3e:b5:08:3a:1c:2d:cc:0b:d4:
0b:ca:2a:63:7f:b7:5d:09:1a:b6:6b:b7:9c:2b:51:
5d:34:0d:11:9e:ff:d3:ac:78:d4:53:e7:a0:3d:9c:
cf:f0:c3:77:9b:85:c6:f0:ae:0d:ff:b7:2d:ec:f9:
b8:bc:d9:f6:0e:0c:f3:ad:cf:50:5b:f8:fb:51:a1:
c8:92:2e:95:4f:1d:26:7f:f8:6a:11:6f:f0:e0:9b:
7c:ef:fc:1e:72:59:60:66:02:c0:1c:44:fe:ab:48:
97:a2:09:dc:a5:4e:f4:9c:88:b1:3e:1e:db:cd:39:
f8:35:de:c2:f0:77:33:91:47:30:80:21:f0:c4:44:
0d:01:2f:a9:e5:8e:ee:d7:44:fc:91:4a:cf:f1:5b:
ef:a6:3a:2c:14:93:f0:7f:77:32:16:9f:db:3d:32:
9d:55:fe:4e:92:5e:c4:8a:8d:54:e0:42:10:b3:a6:
3d:42:4f:1a:a5:96:1a:bf:a6:f2:9c:cd:e9:41:e7:
e1:71:b5:99:0c:39:79:d6:df:1d:83:42:08:4a:f0:
86:eb:1d:69:dc:02:b2:f1:85:64:46:2a:96:0f:d7:
de:02:57:a5:07:aa:c6:48:89:45:16:24:1e:65:a6:
d6:1e:35:ce:3d:a4:67:c2:d6:7f:f9:1d:0c:32:05:
ec:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:58:D9:B7:11:EB:9D:9E:D8:2D:48:53:EB:E7:31:93:4B:2A:08:2F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/A1jZtxHrnZ7YLUhT6-cxk0sqCC8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b2:b0:d1:f7:97:73:ef:83:3d:d3:f0:ec:79:f7:b0:c3:37:28:
92:e8:9c:c8:1d:79:36:27:0e:b0:16:34:6e:59:f5:dd:20:b5:
0d:d9:59:ec:7d:c9:bc:54:f0:22:3f:0e:a5:a5:df:ad:b0:10:
75:1f:9d:bc:d5:6d:6f:b3:c3:02:b8:68:fe:46:5e:ef:66:0d:
8c:db:57:1a:bd:75:a3:65:49:e3:52:72:99:8b:59:38:6e:87:
a4:36:67:ec:81:02:0e:72:17:02:9e:18:74:79:c0:c8:54:0e:
6f:3e:a0:e0:69:ce:bf:3b:9e:f1:77:83:2a:e9:a1:43:4a:11:
72:b7:b4:50:46:32:5f:5e:bb:d4:e8:38:1d:90:52:bb:42:7e:
90:d1:a4:23:5d:aa:14:97:31:e1:6e:15:1b:a6:78:bc:e3:95:
56:9b:79:20:94:34:c4:10:0f:a7:96:51:f4:42:8f:d0:da:50:
fa:be:31:ca:ef:1c:55:ab:8e:5a:d6:e7:51:21:5d:f3:79:b9:
b0:6a:23:8a:27:00:3e:ad:10:23:6d:4e:93:be:09:e5:2e:ab:
63:4a:1d:2a:c1:5d:58:c7:89:82:bc:8a:fc:4f:37:cc:b6:44:
48:e9:e2:d0:31:17:3f:41:4c:63:1c:4d:4c:b4:49:7e:47:0b:
16:8f:21:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org