Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/OD9l3y9jpoUkjnJCqFK36GkxuGU.roa
File: OD9l3y9jpoUkjnJCqFK36GkxuGU.roa (raw, json)
Hash identifier: Z4bpQudfKeQxHp5g3Nx+PAVI85uVAdz0aDvSh0JuTgk=
Subject key identifier: 38:3F:65:DF:2F:63:A6:85:24:8E:72:42:A8:52:B7:E8:69:31:B8:65
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AC2
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OD9l3y9jpoUkjnJCqFK36GkxuGU.roa
Signing time: Wed 29 Sep 2021 02:41:01 +0000
ROA not before: Wed 29 Sep 2021 02:41:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 120.96.0.0/11 maxlen: 11
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2754 (0xac2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=383F65DF2F63A685248E7242A852B7E86931B865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:41:ee:b0:57:b1:bf:77:f4:a2:1a:22:d4:97:
fc:11:10:20:a5:46:25:34:28:42:b5:3b:67:da:f1:
6f:29:23:cc:13:c3:3c:86:9a:81:a7:71:da:e6:aa:
d0:f4:9a:70:f3:42:d4:ef:ad:fa:77:17:aa:da:ee:
08:0b:4a:70:70:fd:fe:ad:08:dd:8f:a5:fd:80:a9:
c7:53:15:9c:07:b4:f3:2b:ad:f7:5c:7c:e1:6d:50:
4e:83:81:ae:41:83:f6:65:ae:64:93:aa:cd:db:a2:
80:ee:1f:ad:fa:96:35:8e:0a:5e:87:88:df:6e:88:
5c:4d:37:43:64:02:2b:52:dd:cb:02:60:14:d9:d2:
09:e3:61:83:cd:fe:f6:35:c8:8d:d1:b9:d2:67:f6:
c3:05:51:91:89:c9:f5:90:a6:fe:8e:40:7a:71:d3:
fd:b9:56:58:85:8d:8b:94:46:c1:e4:b7:50:8b:8b:
cf:aa:2e:c7:54:c9:4f:b0:69:c3:d6:5a:69:f6:56:
ba:55:e6:79:6f:e7:76:30:bc:0f:5d:44:72:70:32:
d8:00:8d:43:d1:62:69:7c:31:96:f9:b4:e3:4a:ae:
65:21:a2:b9:0d:06:61:c9:cb:76:d8:a4:42:fb:a2:
18:67:b3:61:bc:49:b2:31:43:35:62:2d:bb:c5:8f:
0d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3F:65:DF:2F:63:A6:85:24:8E:72:42:A8:52:B7:E8:69:31:B8:65
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OD9l3y9jpoUkjnJCqFK36GkxuGU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/11
Signature Algorithm: sha256WithRSAEncryption
5d:5e:0e:27:43:73:35:d7:03:33:3f:99:84:64:6a:ed:d1:05:
3b:9a:6d:38:47:ae:a3:e3:4b:6d:5d:b2:b2:c6:70:f3:fe:21:
bd:d2:94:0b:0d:0c:bc:41:19:3a:44:8e:f1:97:b8:fc:11:45:
86:69:77:35:2c:da:2c:17:ec:37:4f:da:19:bb:fe:45:fe:45:
fd:f5:41:ae:62:14:13:1c:c1:22:7a:ff:d0:6a:60:1b:f0:d3:
f8:d2:3a:1d:c7:4e:ee:38:b9:6e:38:57:19:20:86:8f:29:c5:
55:8f:54:bd:e3:ff:b0:4a:aa:f9:c5:03:93:39:d2:dc:ad:6e:
02:27:51:4f:be:f6:9c:4e:41:42:38:8c:cd:ab:0e:c1:d6:78:
01:47:d5:ee:85:7d:f5:32:17:45:54:4c:a7:83:70:b5:d2:42:
ab:e9:0b:70:b2:47:2b:89:2e:2a:2b:c9:4a:ce:ad:3b:2c:a7:
3a:63:c2:89:05:95:dc:1f:19:85:ca:e8:32:06:24:38:3b:c7:
25:54:17:75:1e:8a:35:7c:2b:56:8c:45:f4:c3:37:37:63:73:
29:30:5a:26:69:57:5d:25:58:0f:3c:a3:91:cf:3d:49:62:f3:
d5:f4:e2:a5:62:2f:6f:2c:00:18:70:55:38:b6:df:7d:e9:71:
ef:ac:ff:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org