Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Je-A67dJHRmQffRSw3CJEkpopCY.roa
File: Je-A67dJHRmQffRSw3CJEkpopCY.roa (raw, json)
Hash identifier: MUpKCg3dy2hzW8kNYIoA3ZAOajnYORbPR1QdXb7M9BY=
Subject key identifier: 25:EF:80:EB:B7:49:1D:19:90:7D:F4:52:C3:70:89:12:4A:68:A4:26
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Je-A67dJHRmQffRSw3CJEkpopCY.roa
Signing time: Thu 15 Sep 2022 02:41:08 +0000
ROA not before: Thu 15 Sep 2022 02:41:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 163.28.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=25EF80EBB7491D19907DF452C37089124A68A426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:42:4d:46:aa:ed:de:22:47:55:8a:30:ad:60:
a9:d3:96:c2:49:01:ae:3f:c7:ad:79:63:6e:ef:45:
7b:fd:b7:67:0d:f7:ef:92:53:83:43:e5:2b:b9:2f:
b4:fb:00:ce:32:4e:d4:1a:d5:71:72:b3:d5:5d:9d:
49:e3:cb:14:3a:f5:96:2c:bc:49:ab:56:da:23:b6:
94:d4:8f:dc:08:51:54:2f:e5:8e:8d:b4:ef:15:5f:
ea:6b:8f:a6:af:97:f3:3c:6e:85:2a:b7:5d:46:4a:
0a:b5:a1:8a:8d:90:0e:c8:3d:ae:a1:c0:d8:9e:b0:
43:72:e8:ea:d3:c3:33:74:0f:4e:8d:80:72:56:5d:
0a:90:44:89:81:f5:56:69:5f:81:8b:25:6d:75:41:
5a:4f:c7:8a:cf:06:5c:f8:55:f5:65:35:96:ba:ca:
2e:52:70:c9:9a:eb:df:de:81:ad:04:dc:6e:71:c9:
a3:ce:c8:a3:b8:1d:e4:c1:77:5b:ed:f8:07:3c:f2:
de:07:89:31:ea:b1:11:8a:30:2e:6c:8a:aa:a3:21:
e7:ee:43:aa:69:09:75:dc:90:4c:e4:b9:cb:9e:91:
6e:b8:67:b6:d5:45:83:9c:fd:e2:70:02:3b:72:42:
14:03:89:fa:27:a7:a7:91:dd:d8:a9:88:28:6e:6b:
41:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EF:80:EB:B7:49:1D:19:90:7D:F4:52:C3:70:89:12:4A:68:A4:26
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Je-A67dJHRmQffRSw3CJEkpopCY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.28.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6d:40:a4:d1:41:5a:2d:09:22:34:b1:29:45:ef:92:07:53:7f:
b6:c4:1f:78:19:29:4e:79:4b:15:b9:f8:9b:58:4c:e0:6f:9b:
9a:84:a3:58:97:eb:80:6b:a1:05:c8:ca:78:11:5c:07:52:87:
2a:70:5a:3b:a8:39:ef:90:da:aa:56:bc:00:cb:7d:36:39:e6:
23:9c:d4:6b:66:9f:3c:fc:08:42:e6:36:2b:c9:24:da:be:cf:
e7:09:92:6b:14:62:45:ec:dc:cf:10:5a:04:92:c5:dc:5d:a6:
78:6f:2e:11:20:ca:7f:6e:ba:2a:19:e8:f7:a3:c3:03:e6:5d:
69:c3:8f:39:f7:ad:b2:9d:8a:7b:e6:c1:f9:42:ee:42:1d:a2:
25:d8:70:e1:65:f8:17:8c:2b:0c:53:74:af:3e:9d:00:b9:88:
36:b2:88:27:10:38:59:7d:1f:eb:4a:64:80:ec:e6:a6:ff:dc:
5a:cc:08:63:b5:4f:47:37:96:c8:cb:3f:48:7d:a0:6d:02:83:
0b:6b:11:98:e9:9f:18:e3:75:35:bb:61:0a:ed:92:9a:02:c5:
fc:72:66:ec:13:f2:2d:b1:12:c2:c4:61:f7:5f:fb:8e:2f:82:
03:fb:17:a6:ba:51:00:a9:08:0e:f9:f7:75:52:f9:3c:65:67:
d8:e5:67:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org