Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/OPUbTWincBTjsuWqV3WtlPwJ7go.roa
File: OPUbTWincBTjsuWqV3WtlPwJ7go.roa (raw, json)
Hash identifier: pHQ0PuqnO3r//KmLpWo9lKck8vSDMRLXSKkZDC+zXQw=
Subject key identifier: 38:F5:1B:4D:68:A7:70:14:E3:B2:E5:AA:57:75:AD:94:FC:09:EE:0A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07F0
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OPUbTWincBTjsuWqV3WtlPwJ7go.roa
Signing time: Tue 29 Sep 2020 10:06:38 +0000
ROA not before: Tue 29 Sep 2020 10:06:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18185
IP address blocks: 120.126.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2032 (0x7f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38F51B4D68A77014E3B2E5AA5775AD94FC09EE0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7b:8b:db:cb:ed:51:94:e7:37:cd:23:42:76:
27:a3:d7:e8:d8:c1:19:55:c1:16:01:fd:6d:b1:d0:
d9:27:83:4c:ad:3d:08:cb:f2:c2:8a:47:d4:f4:c6:
69:46:ac:47:e4:8d:2a:ab:53:87:3c:9b:dd:74:e2:
7b:73:5d:85:3b:77:92:71:63:e3:25:e4:b4:69:ab:
cc:a2:cd:77:cd:af:94:1f:52:68:a8:a0:ad:30:c7:
92:a5:bb:8e:6a:66:b8:c5:11:07:b4:3f:78:84:ba:
9c:4b:76:7a:d0:41:c9:6c:5d:d4:7c:44:bc:96:52:
d6:83:4f:57:8b:ab:0a:b3:73:4e:0c:97:d7:2b:a2:
10:1c:c8:81:64:2f:77:3d:d4:74:bf:19:10:62:67:
15:6c:d6:f1:3c:80:eb:b0:42:a5:15:20:8a:12:2b:
96:2c:00:56:70:06:07:d1:5d:0f:77:c3:75:a0:02:
85:fa:1b:82:d6:37:35:3e:93:25:ed:53:ac:a5:a8:
71:27:6a:d5:27:14:f2:16:5d:31:81:d0:22:a9:94:
41:91:98:98:9d:e2:ac:42:52:4c:0a:7f:48:7c:79:
cd:b4:d5:20:43:5f:cc:31:58:36:c3:21:35:57:27:
65:65:e3:f8:25:27:41:e6:0e:1c:1f:d1:5d:38:f9:
7a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F5:1B:4D:68:A7:70:14:E3:B2:E5:AA:57:75:AD:94:FC:09:EE:0A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OPUbTWincBTjsuWqV3WtlPwJ7go.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.96.0/20
Signature Algorithm: sha256WithRSAEncryption
96:38:34:61:ac:2e:8f:c0:15:c1:da:a1:ed:8d:c7:19:9c:5e:
b6:c4:17:6e:79:60:23:9a:72:04:00:c2:f4:75:7d:fc:70:ae:
7b:b5:6f:39:05:8b:4f:e7:d6:99:6b:ee:c0:6e:20:07:dc:a8:
f7:df:45:f1:60:b8:34:4d:fc:79:2f:f5:fb:2b:aa:8c:db:a5:
3e:99:c3:5b:83:7f:bc:96:2b:c8:e8:80:3a:9d:13:0b:b2:80:
45:5d:74:a0:a1:74:43:cd:68:93:ef:d4:c7:9a:c9:10:46:83:
6b:ef:84:e5:50:51:6c:01:e3:4c:d9:74:04:44:ae:90:15:93:
d7:a5:0f:a7:9d:51:fb:aa:c7:6f:66:27:72:44:cf:9a:c8:3b:
9f:c7:ce:c5:07:97:ff:47:8b:74:7e:79:09:89:1d:55:3b:4f:
8c:29:13:aa:7b:de:b5:8e:af:05:92:76:72:6b:29:72:59:96:
92:b8:f0:87:57:74:00:89:df:17:95:1b:d5:b2:b5:83:e8:d8:
02:86:b9:0a:56:42:dd:0e:a9:49:b3:8f:56:68:1c:ea:54:5f:
26:06:65:93:21:e5:9c:ee:a6:dd:05:c1:b7:16:54:87:c7:b9:
65:e0:a0:b3:ed:ab:45:8c:fc:bf:ba:b4:63:5b:2e:55:8e:34:
16:64:86:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org