Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/La9hXL6oTcb_gbSVv9ItEAj2ZYA.roa
File: La9hXL6oTcb_gbSVv9ItEAj2ZYA.roa (raw, json)
Hash identifier: 2Z28DjqoQGixCP1cD9uHkWQzBAQzS+WJgDf1X3zOZkw=
Subject key identifier: 2D:AF:61:5C:BE:A8:4D:C6:FF:81:B4:95:BF:D2:2D:10:08:F6:65:80
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ADD
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/La9hXL6oTcb_gbSVv9ItEAj2ZYA.roa
Signing time: Wed 29 Sep 2021 02:41:11 +0000
ROA not before: Wed 29 Sep 2021 02:41:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38844
IP address blocks: 203.68.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2781 (0xadd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2DAF615CBEA84DC6FF81B495BFD22D1008F66580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:2d:fb:3f:22:66:09:88:ff:ac:55:d7:52:
87:99:58:c9:99:e3:17:9c:c0:75:af:90:3a:a6:4b:
ed:3b:ec:4e:b7:77:49:72:71:3d:21:fa:f8:77:a1:
66:ae:d1:9d:0e:52:c7:b7:b6:a6:fe:4c:51:bf:09:
6a:04:92:f6:0a:6a:47:b3:ee:80:17:bd:ea:55:b2:
56:2f:c1:f3:dd:27:db:e8:53:05:db:19:46:a4:e4:
5b:3e:29:07:c6:97:d1:df:36:9f:55:f3:96:da:01:
91:87:1b:50:b1:7c:31:23:e3:ce:c9:3f:a6:e3:7e:
47:92:e8:3f:2e:16:0e:0c:5b:4c:d6:78:4d:59:ab:
cf:d7:c6:78:c5:49:a7:dc:32:dc:c9:bb:07:30:1a:
99:e9:99:94:03:5a:31:2d:f4:92:8d:0c:49:e4:1d:
f5:eb:43:9b:cb:b5:98:3b:aa:01:93:33:e2:f0:5b:
c6:42:fc:ff:2b:3a:03:49:f7:3e:39:f9:28:98:2a:
7d:9e:78:b0:a6:61:a6:ee:c5:ea:20:95:8a:e2:9e:
68:69:67:45:f3:ac:b2:c8:ba:64:da:02:23:ae:f2:
25:97:d0:61:c1:28:f2:e3:7a:b4:32:ae:49:ac:d7:
a5:8a:e7:b1:53:91:ad:98:0a:45:38:94:f7:4b:89:
5a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AF:61:5C:BE:A8:4D:C6:FF:81:B4:95:BF:D2:2D:10:08:F6:65:80
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/La9hXL6oTcb_gbSVv9ItEAj2ZYA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.168.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:9e:ac:65:f9:f0:88:6b:18:ef:48:6b:15:cd:ca:49:bd:79:
5e:d3:5c:a6:94:2b:61:67:5e:cf:f8:1b:9a:97:27:22:ce:1d:
f3:a0:61:75:a0:51:2c:2d:b1:50:62:df:a7:5b:80:9e:16:95:
f5:09:42:d3:c9:4f:46:ef:65:48:d5:fc:bd:c9:75:43:f6:e5:
9f:22:ab:5a:80:f9:a4:ac:8b:d2:e3:63:6f:53:a0:0f:63:3a:
df:76:a1:08:ff:93:d7:b3:93:4c:59:86:1f:74:b2:bc:01:75:
4f:d0:24:44:34:1c:cd:0d:d9:8d:0c:a6:68:1f:73:be:87:2f:
46:26:dc:d2:f4:0e:92:60:f6:ae:7c:25:f2:f3:76:43:03:41:
fa:02:2c:44:9f:ea:b5:06:37:f9:29:52:ba:46:36:96:5a:52:
c2:5b:1c:eb:bb:4d:a1:ce:fa:93:6a:c6:80:11:4d:93:2d:f7:
81:03:7c:51:f4:69:af:96:e5:fb:44:90:fe:99:5c:e6:cf:ab:
d7:c0:1a:c1:aa:4e:e7:3c:68:11:0a:f8:de:fd:db:24:32:4b:
be:ee:f1:b5:0f:4a:22:bc:11:0a:d5:e0:41:93:ec:c4:bc:ca:
4a:d3:cc:be:6b:83:6e:21:86:01:69:50:be:0e:7d:e8:ff:4d:
6b:ff:f2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org