Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/AYLnG-kVaAinx7UDwYZ3sQYl80E.roa
File: AYLnG-kVaAinx7UDwYZ3sQYl80E.roa (raw, json)
Hash identifier: /0Ya6jOPQxsbkXEuat2RtmSujA2x8aDx0O/5GIVRNcc=
Subject key identifier: 01:82:E7:1B:E9:15:68:08:A7:C7:B5:03:C1:86:77:B1:06:25:F3:41
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0808
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/AYLnG-kVaAinx7UDwYZ3sQYl80E.roa
Signing time: Tue 29 Sep 2020 10:06:45 +0000
ROA not before: Tue 29 Sep 2020 10:06:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 163.32.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2056 (0x808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0182E71BE9156808A7C7B503C18677B10625F341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:00:6d:77:22:d3:7d:7c:ff:33:9b:6e:7a:41:
29:df:92:53:35:59:7b:ac:ac:e7:ff:ab:6a:3b:cd:
f8:90:3e:19:b5:57:ed:16:6a:b5:87:85:81:e7:a9:
66:e9:be:e8:60:91:4a:1a:bc:d4:a4:73:86:43:d0:
82:43:81:1d:cb:11:23:49:20:ee:58:12:2e:5a:63:
36:c9:11:8d:18:21:ea:c3:17:0a:51:2a:25:a0:f6:
47:b8:97:06:36:c8:e1:a6:c5:e4:45:84:73:03:5d:
ed:ed:73:cf:35:0d:b4:1a:47:c8:1d:42:8e:b3:12:
f8:38:e1:a9:73:0b:61:78:a6:30:80:2f:27:e2:62:
d9:08:29:66:4f:f1:f6:a8:22:f7:28:2d:77:74:8b:
7a:a5:77:8d:c3:31:b7:ef:00:30:33:41:30:fd:b4:
0a:95:59:4d:b6:29:ba:46:14:f5:8a:c8:cc:65:04:
f5:32:68:c0:be:93:23:33:a3:e6:6a:72:a5:50:d6:
f5:58:9f:19:a5:12:23:e5:22:f2:81:d6:19:c1:83:
eb:56:41:d9:cb:b2:22:33:9c:7a:99:f3:bd:b4:87:
76:3e:4b:9f:92:7c:70:83:43:70:49:19:53:2f:77:
46:a6:87:c2:79:43:17:17:66:3e:34:4c:0a:c6:0f:
93:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:82:E7:1B:E9:15:68:08:A7:C7:B5:03:C1:86:77:B1:06:25:F3:41
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/AYLnG-kVaAinx7UDwYZ3sQYl80E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.136.0/22
Signature Algorithm: sha256WithRSAEncryption
90:2f:5b:5b:1b:85:0c:a0:47:e9:4b:81:f1:74:fe:90:51:56:
95:bb:a1:2e:21:60:01:73:b2:9b:b0:60:df:6c:da:8e:c5:0e:
b6:83:d2:51:ba:91:23:64:b9:3b:c9:93:11:8e:1e:94:b3:80:
f6:c0:fa:91:6e:0b:6b:bd:9d:a4:26:9f:77:9e:ca:ab:7b:d2:
50:d7:9f:95:90:85:9d:c1:1b:69:e1:5b:84:2d:3b:3e:55:d5:
65:ed:d0:95:15:bb:dc:8f:2e:7f:c0:a9:0d:ff:ea:b1:c6:33:
f2:13:f3:85:72:ae:1e:4d:a6:e9:30:24:fb:b8:b3:f6:5f:e6:
84:ac:1f:33:01:12:77:b9:57:18:53:61:ed:05:64:c0:82:c9:
a5:52:ac:18:c8:22:8f:2a:67:d0:95:11:35:9a:dc:e3:3e:f6:
d0:5e:6a:b3:66:9a:33:7a:49:9a:76:b1:fb:1b:bc:d1:31:65:
cd:4f:85:e5:36:3c:92:4d:5c:80:53:dd:f5:26:e7:dd:e2:9d:
e6:5d:9e:43:83:e4:4a:7f:2e:32:80:1f:73:20:fa:56:dc:1b:
f0:9c:cc:3e:8a:e2:84:bc:f2:7f:7d:11:25:f7:96:3b:6d:60:
6d:92:fa:83:78:99:f2:24:4c:a2:16:d9:6d:cf:df:60:04:c6:
b7:f8:85:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org