Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/OBXNr4IcsmkjRebImZiX5qk3PbY.roa
File: OBXNr4IcsmkjRebImZiX5qk3PbY.roa (raw, json)
Hash identifier: C087lKBkzpmYj4B6+sXPp6WnTUKoM5u8nIe7dT4SNxg=
Subject key identifier: 38:15:CD:AF:82:1C:B2:69:23:45:E6:C8:99:98:97:E6:A9:37:3D:B6
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07E2
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OBXNr4IcsmkjRebImZiX5qk3PbY.roa
Signing time: Tue 29 Sep 2020 10:06:35 +0000
ROA not before: Tue 29 Sep 2020 10:06:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.71.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2018 (0x7e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3815CDAF821CB2692345E6C8999897E6A9373DB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:97:8d:08:48:83:24:14:07:d2:13:4e:f5:
c4:6f:92:cb:52:4b:d5:1c:2f:0c:e2:ec:ef:9e:76:
65:6d:10:04:74:92:2e:f5:37:67:4b:83:ef:a7:db:
33:2b:19:1f:29:04:6d:85:b6:fe:58:cd:b4:6b:fc:
b2:65:e8:7d:54:7e:79:0a:db:7f:ce:95:7c:51:65:
03:e9:65:42:ee:c9:8b:b3:80:da:d4:e8:76:1f:3c:
ed:61:e2:2d:f2:2d:00:d3:bf:7c:19:8e:df:c5:1b:
93:62:28:75:77:05:bf:b5:9f:09:ab:c6:59:42:14:
cb:a9:33:3a:9a:b4:73:6d:97:3d:a7:26:50:c6:7a:
c6:6a:45:3c:0d:6b:4b:d3:74:f8:bd:d1:6d:c2:91:
88:c9:48:e1:91:47:a0:4f:8c:23:22:83:f3:d8:9e:
7b:ab:10:6a:05:5b:1b:6e:c8:c6:bd:56:7c:b1:e7:
5e:1c:dc:ef:de:74:aa:2b:2a:f7:ca:b2:e9:0c:28:
39:db:da:c9:56:1a:13:e6:b1:54:e3:23:3a:c4:a9:
b9:7b:73:f8:8c:0a:7c:a2:6f:de:66:0d:eb:78:29:
1f:7f:bb:9a:97:2e:68:2e:ca:a6:0b:22:c8:4f:a8:
ba:55:8d:f0:61:99:d6:56:b2:93:f2:fa:a6:46:6f:
45:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:15:CD:AF:82:1C:B2:69:23:45:E6:C8:99:98:97:E6:A9:37:3D:B6
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OBXNr4IcsmkjRebImZiX5qk3PbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.71.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9d:47:2a:e4:73:8c:5a:e6:25:bc:f4:2d:59:6c:b0:7a:e1:3f:
12:40:e7:52:e4:20:68:24:ae:55:ea:bb:60:61:08:ff:0b:3c:
42:6b:fd:92:77:c0:65:5c:5d:73:f1:ef:72:c6:09:2e:e7:4c:
5e:60:69:58:b8:c7:f7:4b:ce:f4:be:e5:cb:15:59:d0:8a:cf:
3e:c5:7e:c7:74:56:9f:23:f2:bd:d9:b2:e7:6e:66:fd:17:95:
70:b6:24:a2:45:98:89:80:2c:ab:5d:cb:ea:13:45:76:af:24:
e6:36:b8:55:e7:40:4b:a2:1f:dd:51:7a:d6:40:32:a3:8b:3f:
55:89:d1:90:66:1c:05:f9:f3:70:e0:36:b0:80:9b:89:d0:6d:
95:2a:ba:74:8f:db:7f:ba:43:d3:73:03:94:66:16:84:87:0c:
d6:ac:c1:6a:5d:95:c1:38:e0:20:41:15:3b:ed:16:c4:b7:85:
43:01:a7:62:42:ab:3a:2b:9a:6d:c6:8a:4c:dd:c4:e2:dc:9f:
dd:df:00:56:f6:16:a8:93:96:9b:4f:5f:47:f9:b8:e6:b2:b8:
bf:7d:99:6f:f8:b5:55:3b:d1:a6:56:7a:4e:60:b1:28:42:fe:
d2:d6:11:cd:bb:2a:ae:b9:6c:bd:22:8c:7a:86:9d:7f:57:57:
f2:e0:16:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org