Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/HXHTzUJru0W6e2g1JMwFFfFBNoE.roa
File: HXHTzUJru0W6e2g1JMwFFfFBNoE.roa (raw, json)
Hash identifier: XUNHz31KDbsqn1Bho1K3b6Qp6RwyEPlCZpC5paEjiaE=
Subject key identifier: 1D:71:D3:CD:42:6B:BB:45:BA:7B:68:35:24:CC:05:15:F1:41:36:81
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07FA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/HXHTzUJru0W6e2g1JMwFFfFBNoE.roa
Signing time: Tue 29 Sep 2020 10:06:41 +0000
ROA not before: Tue 29 Sep 2020 10:06:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17716
IP address blocks: 120.96.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2042 (0x7fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1D71D3CD426BBB45BA7B683524CC0515F1413681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f2:0b:69:8e:94:0d:aa:fd:6d:ab:12:b1:aa:
5b:12:06:a7:14:5c:0a:75:55:7d:01:11:f5:3a:a2:
f8:b2:b3:e9:c8:91:2a:86:df:e3:b2:7e:fa:cb:ff:
29:d9:7d:f2:6d:10:6a:5f:33:e6:f9:a0:a9:ed:bd:
68:58:54:14:db:eb:21:eb:15:05:79:7a:0b:91:94:
35:17:a6:d2:6b:98:80:f1:13:87:8b:1e:a3:75:96:
11:83:42:26:65:c9:a5:7b:c0:ce:92:b4:89:f0:3a:
57:76:22:40:e2:82:94:24:f3:ef:ff:1a:05:40:3e:
e4:fe:af:39:73:5b:23:f3:9b:f8:ad:b5:d7:67:06:
0d:f1:a7:a4:1e:b7:01:a9:e5:9e:95:a1:f3:a3:6b:
d8:06:d8:e9:46:c8:da:1a:3d:a0:d3:4e:fc:03:50:
01:a1:d5:95:19:61:18:41:3c:47:96:20:90:87:46:
25:6e:dc:0d:fc:54:0e:e0:17:e4:96:c2:98:2a:76:
26:8c:b2:25:9f:b8:2b:93:37:92:07:3d:fa:68:03:
df:d5:39:86:7d:9d:4e:99:16:ee:9b:d1:13:5d:9c:
1d:68:c1:77:6d:3c:94:df:e2:2f:4a:42:2f:70:5b:
5e:43:53:b1:82:a8:af:5f:b9:c6:cc:e9:34:07:64:
4c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:71:D3:CD:42:6B:BB:45:BA:7B:68:35:24:CC:05:15:F1:41:36:81
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/HXHTzUJru0W6e2g1JMwFFfFBNoE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4e:de:36:d1:ac:95:d2:dc:4c:e3:7a:bf:f7:59:95:06:21:23:
b0:d5:e1:f2:a8:0d:c0:9c:55:7e:6e:2d:0b:c1:dd:05:a2:ae:
dc:b1:69:9a:fb:81:c4:0f:fb:15:7b:2e:84:b6:9d:f3:e2:ad:
c0:d6:a3:62:39:07:38:3c:2d:87:3e:db:fa:ee:d2:e4:66:32:
82:d5:82:6a:50:0f:bd:eb:1d:96:58:34:cf:4b:07:b2:32:55:
81:37:57:ab:ea:99:e8:70:38:0c:77:5c:c6:6d:42:68:12:39:
49:9b:9c:ad:b7:dc:a6:a3:5c:8c:c3:99:93:3b:5e:81:57:1b:
c2:48:43:2b:61:0c:19:f3:77:63:7c:b4:ee:cf:a8:d3:93:df:
82:f1:bf:36:d6:59:44:a5:05:19:42:a4:5a:99:ab:c1:dd:a0:
cd:51:bb:3c:ad:ce:62:1b:06:c5:98:08:47:12:0a:47:dc:82:
fc:3b:d9:53:88:8c:47:bf:c2:56:14:3f:23:b4:84:37:e2:07:
b9:c6:2b:be:3b:ac:ac:74:36:7f:24:03:35:03:05:89:29:de:
e7:ff:26:fb:e5:8a:55:0b:ef:b2:69:fc:78:93:c5:fc:cc:d0:
40:88:50:36:02:48:e3:ea:31:f4:a1:b5:39:a2:d0:c3:5e:91:
b4:d3:cf:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org