Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/S0BesOjmA6rqIbz4VsDbqnnzt2o.roa
File: S0BesOjmA6rqIbz4VsDbqnnzt2o.roa (raw, json)
Hash identifier: 7d2oG9ohbK2b0tLbsaKR+561HUkLbtEQkvPxkU6NOeQ=
Subject key identifier: 4B:40:5E:B0:E8:E6:03:AA:EA:21:BC:F8:56:C0:DB:AA:79:F3:B7:6A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD2
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/S0BesOjmA6rqIbz4VsDbqnnzt2o.roa
Signing time: Wed 29 Sep 2021 02:41:07 +0000
ROA not before: Wed 29 Sep 2021 02:41:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 163.24.0.0/14 maxlen: 14
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2770 (0xad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4B405EB0E8E603AAEA21BCF856C0DBAA79F3B76A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:53:e8:3f:c6:63:71:61:28:c8:d0:78:30:8d:
a8:0f:10:88:d9:06:74:3b:cd:e1:d9:28:e9:8a:db:
7c:06:8b:9f:39:bd:b5:c7:b3:82:04:76:69:1a:ac:
de:9e:8f:4f:2d:76:95:e5:c9:19:4a:f0:28:6f:7b:
5b:d0:07:83:f7:c3:c5:77:41:66:0c:3d:7c:e3:55:
8b:10:36:9f:48:99:43:2c:f9:bf:aa:cf:c7:46:60:
c6:3e:24:3a:4a:84:ec:34:c2:04:f5:57:02:55:dd:
d9:7a:1e:f3:5a:ac:93:3a:66:dc:da:a5:41:a6:ba:
84:0c:02:6e:7b:4e:41:79:a8:c6:67:da:ec:03:2e:
e9:d2:c7:7d:0b:42:24:25:97:d5:7e:6b:96:a4:cf:
89:4d:88:06:45:c3:59:00:b6:6e:90:8e:d4:6a:4a:
dd:91:63:cf:2b:13:e7:bb:9c:86:92:8e:34:00:ee:
18:35:cf:75:65:3a:d4:ef:c6:a9:8f:13:fd:76:14:
1c:8d:5b:79:f1:54:59:03:fc:8c:dc:de:dc:1a:57:
b5:74:5a:3f:0c:b6:1e:b0:78:f7:7a:00:c0:35:cd:
4d:f3:17:36:0d:6e:0a:e2:8c:b5:b1:70:4c:a7:23:
b7:30:19:a4:80:4c:1e:e1:e7:db:a0:9b:e9:be:bb:
91:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:40:5E:B0:E8:E6:03:AA:EA:21:BC:F8:56:C0:DB:AA:79:F3:B7:6A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/S0BesOjmA6rqIbz4VsDbqnnzt2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.24.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a0:b2:51:49:7d:1d:22:d1:04:37:93:bb:15:51:09:b5:ea:a2:
85:30:c5:ff:66:83:78:43:88:47:6c:bb:4c:49:71:3c:b3:61:
02:22:12:c5:e5:42:5b:f9:cb:39:00:9e:03:31:0b:45:7c:30:
be:27:eb:b0:35:04:d1:7d:ef:6c:5c:f0:58:9a:35:6b:e8:41:
6f:34:ca:24:13:e5:65:dd:00:62:07:eb:62:2f:da:05:f1:0c:
4b:48:d9:42:dc:c1:02:09:e0:cf:8a:5c:0f:38:a0:57:fd:6f:
b8:ff:6e:38:b9:8d:f4:cf:f3:4a:83:6c:2c:de:bf:94:75:e9:
31:a9:f6:4c:69:ca:7d:8d:6d:d5:77:49:c4:8a:c3:78:4c:0a:
e7:47:c9:ba:a9:b9:0b:bc:4c:9b:1a:48:0b:09:6a:bd:99:88:
34:75:0a:1a:7b:4a:76:e4:9d:68:87:76:67:1b:cf:54:34:04:
02:33:ca:c1:79:24:88:9a:7d:4f:ce:43:31:1f:82:2f:cc:f1:
d4:08:1a:2a:5e:ee:af:75:55:76:d8:f4:1b:a2:a3:5f:b4:db:
03:ed:f3:bb:1f:b7:14:df:9a:93:0b:af:7c:e7:98:35:a7:8d:
00:ab:f5:e3:90:40:d0:c8:7e:08:6d:43:f2:bb:01:77:35:4c:
0d:2e:23:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org