Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/PzzWz1tEUflNAwblCdKvWXE1obY.roa
File: PzzWz1tEUflNAwblCdKvWXE1obY.roa (raw, json)
Hash identifier: DPg0YYYcJgddyRDQGlDzGhHm7PFAu3ViUu4W9AQi6DI=
Subject key identifier: 3F:3C:D6:CF:5B:44:51:F9:4D:03:06:E5:09:D2:AF:59:71:35:A1:B6
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/PzzWz1tEUflNAwblCdKvWXE1obY.roa
Signing time: Thu 15 Sep 2022 02:41:10 +0000
ROA not before: Thu 15 Sep 2022 02:41:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131150
IP address blocks: 163.32.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3F3CD6CF5B4451F94D0306E509D2AF597135A1B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e4:3e:bd:8d:c7:15:ce:b8:0d:6a:5f:e1:ae:
06:ad:39:8d:d9:45:a5:80:8f:7e:4d:ff:2b:86:b1:
3e:d3:fb:35:48:b2:14:5a:f2:a5:fa:4c:da:40:e7:
b7:3f:0f:b3:cf:d0:f3:63:2a:70:36:9e:e3:71:5d:
a3:e5:9c:61:09:3e:48:8a:f7:26:55:a5:09:08:95:
19:48:c9:ae:da:71:1f:54:46:32:36:69:3b:be:6c:
96:19:32:ba:b3:9f:ae:82:88:00:7c:50:c2:dc:fd:
39:5a:7c:1d:49:1a:88:e4:b8:8c:ca:25:c7:b0:14:
80:bf:c1:0a:9d:4e:86:16:98:4d:f1:d8:49:93:d6:
63:8d:b2:37:a6:d0:54:d5:dd:c0:5f:51:c8:30:9e:
52:37:45:69:36:c5:e3:62:9a:cd:61:54:9b:fb:e2:
0d:18:7f:99:94:49:32:f3:e5:09:e7:e8:c1:a6:5e:
e2:6d:2f:96:8e:0b:5f:45:63:51:4f:6f:31:94:fa:
e5:44:a5:f7:85:58:15:8c:8a:bd:fd:b6:75:90:58:
a5:b6:84:7e:32:9f:44:99:da:33:c2:b2:1e:76:f8:
42:eb:28:74:22:47:63:5c:d0:77:e1:5e:01:e1:87:
ed:e0:41:e7:bb:06:01:41:83:60:22:22:60:85:eb:
46:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3C:D6:CF:5B:44:51:F9:4D:03:06:E5:09:D2:AF:59:71:35:A1:B6
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/PzzWz1tEUflNAwblCdKvWXE1obY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.188.0/22
Signature Algorithm: sha256WithRSAEncryption
53:5d:37:6e:cd:fb:97:5d:b5:f1:84:25:f8:8f:cb:e9:77:eb:
53:87:a6:7b:67:41:42:d3:4a:30:5a:53:26:9d:ac:45:11:46:
01:a4:84:e5:ee:ab:93:9e:7e:3e:b1:94:73:e8:7e:8c:7c:a3:
65:52:30:e9:fe:9c:56:7b:63:50:ed:15:16:07:fe:06:71:60:
5c:16:4d:db:55:a6:a2:1d:05:44:38:06:2f:92:5a:0d:8a:d2:
42:db:01:ed:4b:06:ce:9c:13:72:6d:15:ea:49:51:7f:af:bb:
17:4a:0a:03:19:4c:40:de:31:e3:6f:0f:dd:45:08:76:e3:7c:
bb:1a:ed:b4:49:44:7e:32:2c:01:3c:60:d9:c9:6d:7c:27:f1:
cf:43:60:80:5d:e7:28:e1:63:ca:9a:6c:70:fe:90:3c:a0:74:
7f:39:18:d7:71:89:67:15:b5:b6:46:9c:00:45:94:14:f8:53:
10:d6:c9:cb:a5:c7:d0:87:0a:3d:3e:c5:32:e2:90:ab:22:7a:
05:f9:1c:b4:d5:4a:43:74:06:6e:04:fc:4b:4f:78:72:2c:fb:
0e:89:6d:39:9f:e6:7a:00:9f:d0:f7:07:94:61:00:d1:78:f7:
9c:9d:66:0a:b7:d5:1c:57:dd:e0:da:65:f2:23:25:e6:af:5f:
bd:37:4e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org