Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/JabByfoEuaGJV6KpfXDdCAIaSrY.roa
File: JabByfoEuaGJV6KpfXDdCAIaSrY.roa (raw, json)
Hash identifier: 56kKHzjWw5B5SwRC3iThF308JDl4XDaNRYAYugsOnlo=
Subject key identifier: 25:A6:C1:C9:FA:04:B9:A1:89:57:A2:A9:7D:70:DD:08:02:1A:4A:B6
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JabByfoEuaGJV6KpfXDdCAIaSrY.roa
Signing time: Thu 15 Sep 2022 02:41:18 +0000
ROA not before: Thu 15 Sep 2022 02:41:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 203.68.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=25A6C1C9FA04B9A18957A2A97D70DD08021A4AB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a6:d3:0f:bf:94:ed:f8:95:bb:89:ad:2e:35:
76:3a:26:42:d9:fa:22:38:1c:31:87:47:58:2a:6a:
c8:0e:81:ad:84:b1:4d:a5:c4:e6:4e:96:26:55:91:
98:09:45:dd:7c:a2:87:0a:8f:a4:93:9c:0c:82:31:
2d:fb:68:9c:7b:d4:52:55:50:8d:5e:69:a7:b9:da:
e7:17:c0:47:df:6c:86:d7:ee:a4:2c:ad:68:57:a3:
2f:6f:9b:0f:71:bb:98:a3:79:e7:52:a7:57:9f:64:
09:2e:9b:32:e4:3a:1e:07:f7:30:39:e8:d4:af:71:
d5:3a:b4:74:8e:6a:5b:4f:0d:0f:70:89:b1:71:f8:
3b:77:b4:3a:e1:e7:3d:e9:22:fb:97:76:39:98:89:
2e:43:d6:2c:12:6d:c7:02:50:b0:98:ad:df:c8:64:
12:4d:09:2a:e0:93:d0:64:d5:2e:80:0b:5b:f5:3a:
5a:1a:bc:dc:3c:b5:ad:1c:9a:f6:c1:a8:08:31:a8:
9d:3a:79:ba:1b:f8:cd:98:78:3e:9a:9e:3f:c4:d8:
e7:21:ef:f4:75:09:5e:a4:37:0b:07:5b:e5:cb:30:
69:82:b8:b9:3a:75:5e:bc:40:e8:33:2c:3f:bd:51:
12:63:74:8c:d3:44:3e:52:21:d8:bf:f0:17:fd:71:
f3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A6:C1:C9:FA:04:B9:A1:89:57:A2:A9:7D:70:DD:08:02:1A:4A:B6
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JabByfoEuaGJV6KpfXDdCAIaSrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.203.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:c3:22:64:ad:dc:53:34:04:59:80:eb:2c:33:40:5d:38:ea:
0d:65:ae:22:52:6b:53:5f:fa:f6:07:40:cf:85:5b:53:4d:23:
5d:38:6f:41:c0:a0:4f:db:99:45:a1:d0:03:1d:33:fd:eb:d0:
15:88:8b:6b:b1:56:a0:bb:86:6a:1e:4b:40:e7:7b:f1:98:80:
42:e8:f7:be:cc:7a:fc:9b:ff:da:7f:44:bd:a9:1f:f7:8b:d5:
80:3f:d2:5b:02:fb:16:5e:55:96:1e:84:8f:5e:b0:04:d0:59:
7b:94:c5:16:34:56:90:0a:20:a3:b4:3f:42:e6:1a:bc:b9:8c:
f1:41:d9:8a:55:09:fd:2e:b6:a1:7e:85:cf:00:99:a6:ae:60:
07:d1:8e:aa:0e:4a:c1:50:36:13:62:a3:5a:ad:0d:2d:68:c7:
6c:1a:b9:70:f2:6b:1b:94:85:50:5c:cf:3e:e0:39:fa:98:6e:
0c:2b:bf:73:00:6b:83:96:be:34:e2:21:eb:f2:09:4f:a6:9c:
ed:67:52:e7:70:e7:bf:76:df:ab:de:c9:1b:2a:a8:6d:b3:d2:
60:53:6c:a5:16:9c:f6:b2:71:69:85:b1:a1:68:95:72:2b:f9:
84:57:d3:92:7a:38:df:51:c5:12:69:aa:a3:45:ca:eb:a6:ec:
dd:6a:32:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org