Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/INaKfogkL4-qZtHNtZYK8Es21Rk.roa
File: INaKfogkL4-qZtHNtZYK8Es21Rk.roa (raw, json)
Hash identifier: bzeMpumtkUEEtUpvJ2pEiJAEG7PHCD+iydSj/9Rl0tE=
Subject key identifier: 20:D6:8A:7E:88:24:2F:8F:AA:66:D1:CD:B5:96:0A:F0:4B:36:D5:19
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ACB
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/INaKfogkL4-qZtHNtZYK8Es21Rk.roa
Signing time: Wed 29 Sep 2021 02:41:04 +0000
ROA not before: Wed 29 Sep 2021 02:41:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9916
IP address blocks: 120.126.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2763 (0xacb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=20D68A7E88242F8FAA66D1CDB5960AF04B36D519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:56:71:ef:48:49:e6:94:23:98:b2:41:26:42:
48:2d:69:da:45:76:f5:59:f0:4d:3b:e8:33:48:0f:
12:49:59:2d:7e:26:f2:31:0b:06:77:2a:e4:b6:a0:
95:c8:b7:d3:8d:65:85:20:8d:27:a1:6c:e7:f6:48:
3c:f1:31:1d:06:3b:86:1e:bb:ff:c5:8a:84:14:a4:
17:87:83:fe:bc:9c:c7:0c:b6:36:2a:14:84:a3:ec:
fb:26:49:a3:6e:f0:4d:46:6c:f2:ce:b2:f4:1f:87:
b2:ac:72:8e:a3:6f:b1:f3:a1:3a:5d:be:a4:91:5b:
5f:82:2b:73:be:53:ec:cf:25:8d:5b:2a:7e:65:88:
f7:35:65:9e:e9:42:d5:ea:80:81:47:02:64:98:9d:
a9:36:c4:19:d4:38:8e:f0:48:ee:a0:5e:55:05:2d:
f1:8b:bc:4c:3a:46:e3:ec:00:b7:78:f2:83:52:42:
2d:d3:82:04:06:7f:5b:6a:c6:8e:06:21:f6:e8:ec:
cc:dc:73:0b:30:f2:45:86:98:79:13:7f:52:2e:07:
f0:e3:78:e7:64:40:e7:08:59:3e:c5:d9:54:01:33:
6b:bd:e9:3e:30:ed:95:5b:72:66:77:b3:22:a4:f2:
e7:35:20:e0:e2:34:cb:29:d2:19:37:da:ac:37:b3:
77:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D6:8A:7E:88:24:2F:8F:AA:66:D1:CD:B5:96:0A:F0:4B:36:D5:19
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/INaKfogkL4-qZtHNtZYK8Es21Rk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.32.0/19
Signature Algorithm: sha256WithRSAEncryption
17:48:63:ea:81:98:0c:2d:9b:c0:17:18:e1:f1:1f:f7:ed:11:
b7:8e:72:c9:b4:d3:19:9b:e4:17:39:36:ed:b1:7e:a4:99:61:
f5:8c:3d:cf:d5:1f:13:dd:22:6c:15:6c:74:c9:16:4b:fb:72:
40:1f:c3:5f:9d:0d:db:d0:1c:5c:b0:73:ce:ad:d6:09:ad:69:
6d:d7:62:ef:91:da:05:3b:a7:13:bf:64:63:c0:e8:8a:f9:8b:
56:8f:ee:83:f8:20:ff:6a:8b:de:b1:18:1c:21:ec:87:82:cd:
04:75:b1:57:2e:08:a0:d7:14:24:41:bb:97:73:f6:cb:c7:91:
25:81:00:39:39:fa:30:8e:46:10:5b:a1:42:fa:33:9d:0c:3a:
b6:b1:17:eb:56:c3:e2:b2:e1:14:76:38:de:ee:fa:39:8a:f3:
8f:64:45:98:51:4f:17:e6:d0:83:4f:c5:95:d9:61:b3:be:2a:
8e:2e:62:87:19:ba:e5:91:b1:d3:8a:40:dc:c7:24:2d:f0:f8:
f7:e7:58:40:e2:ac:cd:e8:62:63:97:6d:fb:a0:92:6b:6b:0a:
7d:84:5d:b4:cf:26:77:0f:bc:3a:b0:0c:43:d8:b6:29:33:c3:
75:85:7d:87:ff:4f:af:d3:24:96:1e:32:56:c2:81:93:75:0f:
17:46:36:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org