Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/GXz8PQiCJwjS4JZmzm65J731XA0.roa
File: GXz8PQiCJwjS4JZmzm65J731XA0.roa (raw, json)
Hash identifier: bkMMw8oD62Z9R83kE1ZNf93mq52d9gBrUysPeWRNYmk=
Subject key identifier: 19:7C:FC:3D:08:82:27:08:D2:E0:96:66:CE:6E:B9:27:BD:F5:5C:0D
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AC0
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GXz8PQiCJwjS4JZmzm65J731XA0.roa
Signing time: Wed 29 Sep 2021 02:41:01 +0000
ROA not before: Wed 29 Sep 2021 02:41:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 203.68.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2752 (0xac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=197CFC3D08822708D2E09666CE6EB927BDF55C0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:9f:9d:14:da:0e:5f:45:f4:1c:39:70:ea:
5c:ac:dc:3f:2c:59:d3:65:20:69:77:25:15:dc:61:
2e:23:4f:45:20:2e:52:21:ab:ec:81:d5:ec:1a:59:
0e:8a:30:f5:14:7a:23:4b:cf:e3:0e:ed:ff:e9:55:
47:7b:9a:bd:2e:74:3c:43:43:6f:1f:71:39:9b:6c:
f6:0f:a5:23:96:d6:33:d8:10:c2:99:22:c1:07:d6:
1f:39:50:6d:55:23:a0:aa:d1:71:61:62:7c:d9:6b:
52:ab:1a:a3:bb:5e:33:47:2b:3c:c5:e2:50:d5:7a:
71:d4:82:be:76:c3:4e:c1:c5:f4:fa:ab:96:b7:35:
fe:58:1b:cc:e8:c1:17:ec:7b:65:7c:52:02:41:4f:
cb:ed:94:08:7e:34:4c:01:ef:a6:44:fe:01:89:14:
82:68:b1:c4:f6:49:5b:f5:ba:62:4e:d1:d9:ad:22:
4a:57:91:f6:a4:de:fa:94:97:ad:c6:3d:e8:fc:5f:
de:42:8c:f3:44:05:0b:57:f8:22:9d:a9:e3:53:04:
75:2c:65:c0:cd:42:9e:7f:c4:56:2e:b0:59:24:21:
e2:7a:1d:a4:02:81:4f:ac:d6:e2:75:65:d9:9f:fb:
ed:e4:9c:00:39:71:86:bc:f3:0b:48:c6:31:19:02:
d5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7C:FC:3D:08:82:27:08:D2:E0:96:66:CE:6E:B9:27:BD:F5:5C:0D
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GXz8PQiCJwjS4JZmzm65J731XA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
25:44:f7:de:c8:5a:ba:55:a9:58:55:0d:40:52:01:ea:e7:c8:
82:09:96:76:d2:96:f1:70:b6:03:17:22:52:80:a6:a1:93:b6:
94:a8:b1:66:f7:24:eb:ef:05:48:25:17:90:44:9f:02:c2:20:
c9:de:55:af:61:68:fe:a4:4e:bf:91:1f:d8:06:7c:6e:dd:df:
20:ff:cb:d7:65:0e:e6:cd:e4:0e:df:e9:3c:63:ec:0a:d3:eb:
4d:68:b6:39:4b:e8:33:8c:9b:f8:e1:9c:f8:23:7f:52:a6:1a:
fe:c0:bc:31:f7:c5:71:d1:8f:52:38:2d:26:33:cf:54:f7:18:
55:c4:f6:6c:a7:56:ae:22:a4:93:35:4c:10:33:9d:37:97:df:
63:b0:34:c4:50:27:7e:d8:88:c0:bd:7b:73:74:20:92:13:55:
65:d5:2f:b8:4f:13:41:0b:2a:a5:a1:9c:e3:b4:d5:cd:f4:ad:
c6:bc:d0:68:23:74:43:69:b6:f8:70:a3:43:73:c7:fc:5f:97:
b5:56:5c:18:21:36:a3:5d:08:8c:c1:ce:8c:15:94:e0:5d:06:
eb:49:c6:15:26:56:53:9f:e3:f2:95:6a:67:a3:06:db:f0:3a:
fb:ca:a5:e4:3f:fa:f0:ab:49:c7:6a:4b:20:81:b1:e0:36:22:
29:de:5b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org