Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/SYRYH6dlPzxFQVTXq1PTWdUeDfo.roa
File: SYRYH6dlPzxFQVTXq1PTWdUeDfo.roa (raw, json)
Hash identifier: 1Z4r9ZJI6Lv6v6kgKasEXcZURl+hzhCHvKJOnXpO/k8=
Subject key identifier: 49:84:58:1F:A7:65:3F:3C:45:41:54:D7:AB:53:D3:59:D5:1E:0D:FA
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09B6
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/SYRYH6dlPzxFQVTXq1PTWdUeDfo.roa
Signing time: Sun 07 Feb 2021 12:38:31 +0000
ROA not before: Sun 07 Feb 2021 12:38:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18185
IP address blocks: 120.117.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:38:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4984581FA7653F3C454154D7AB53D359D51E0DFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3d:1c:c3:2f:4b:de:db:a8:01:36:a1:66:d8:
fb:81:b9:24:cb:b9:f8:12:83:75:2b:e0:78:91:2f:
be:0f:6e:54:83:fe:c9:69:f7:52:52:e7:b4:ed:e3:
cb:39:1c:8c:3f:1a:7a:97:7b:3f:79:cb:43:8b:2c:
53:0d:44:93:5f:28:48:5c:97:0e:04:a9:6a:8c:1a:
5c:e9:88:31:59:1e:86:93:62:bb:e0:bc:fd:6a:a6:
06:4c:69:94:45:98:d8:02:a7:e2:9c:db:1a:5f:05:
bb:00:2d:5a:c4:4d:7d:61:62:55:64:fd:e6:6d:fe:
26:5d:a1:6c:7b:2c:09:0c:47:a1:10:4e:d3:b2:a1:
62:cd:6c:55:15:d1:ca:92:f1:71:97:23:8e:1e:37:
5d:db:5b:be:a2:6d:03:bb:aa:0d:a0:2d:59:3f:c4:
97:d6:9c:55:93:84:73:22:8b:89:8e:60:8b:19:90:
3d:fc:7a:49:ef:92:c0:b7:a1:4e:2d:3e:cc:78:43:
56:ee:85:37:82:ae:a2:a9:64:78:1b:d8:4a:97:b3:
83:cc:65:25:27:8d:bc:4b:38:aa:d9:03:e8:4b:9d:
b1:d1:ea:2b:00:78:71:6d:fa:30:81:d8:db:7c:c6:
13:5e:9e:1a:9b:7e:92:c5:39:21:d0:61:95:b6:f5:
e2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:84:58:1F:A7:65:3F:3C:45:41:54:D7:AB:53:D3:59:D5:1E:0D:FA
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/SYRYH6dlPzxFQVTXq1PTWdUeDfo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.4.0/24
Signature Algorithm: sha256WithRSAEncryption
10:c8:e2:2e:ab:0f:3f:44:4d:2d:17:3a:33:b8:d9:4d:f2:3e:
04:71:21:a6:fe:b1:4d:d0:60:f8:68:d2:41:d8:bf:1f:24:de:
bf:ac:86:aa:76:dc:f8:9d:d5:e2:09:93:cb:f7:0a:89:e9:ba:
c2:33:e1:4f:c3:b1:a9:77:4a:ed:40:70:74:ff:a4:0d:3c:e6:
7a:41:4a:37:09:d5:04:42:ef:3d:a7:21:59:83:f4:67:b8:c3:
82:4c:4f:39:cd:65:35:2a:86:2e:78:22:97:cf:12:5a:40:d5:
59:ea:3c:e4:78:81:13:9d:22:4f:0b:ba:68:9a:33:f3:d6:36:
33:37:14:32:09:f4:94:f3:82:cc:3b:8b:dd:b8:80:d8:a4:0b:
42:ad:7e:7c:6f:ae:a9:1e:2b:52:01:3c:e5:04:9f:97:af:b7:
a3:c3:7b:2e:2c:59:52:cd:e7:aa:91:aa:81:2d:b3:51:4a:4b:
c4:f8:9d:80:f7:93:cb:98:e0:fc:8a:51:13:e2:8f:e6:e9:e5:
29:52:85:51:3d:55:8c:e1:fd:0a:53:c4:0d:0b:e1:be:d1:9f:
ef:15:63:1b:57:1b:59:e5:34:bb:28:63:98:d1:52:b5:85:3b:
31:7e:50:45:1f:53:65:06:0f:11:e4:cd:5d:b7:3c:3d:30:83:
e3:ee:78:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org