Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/U-ledxULYE1Gm6f8120KsyZyeDY.roa
File: U-ledxULYE1Gm6f8120KsyZyeDY.roa (raw, json)
Hash identifier: RYUAc5SwKxNLt+ps80qoj9LMD/FAHh63FHJD3duPWzo=
Subject key identifier: 53:E9:5E:77:15:0B:60:4D:46:9B:A7:FC:D7:6D:0A:B3:26:72:78:36
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C8
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/U-ledxULYE1Gm6f8120KsyZyeDY.roa
Signing time: Tue 29 Sep 2020 10:06:52 +0000
ROA not before: Tue 29 Sep 2020 10:06:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 192.83.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1992 (0x7c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=53E95E77150B604D469BA7FCD76D0AB326727836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0e:f5:a1:fd:38:ab:a4:2e:73:d1:19:2f:fd:
cc:6b:65:fb:53:a9:d6:69:72:b3:79:77:4c:46:ff:
2b:ab:fb:21:80:36:60:78:32:41:a1:c3:90:36:6f:
6f:1d:34:3f:bf:01:f1:77:3f:1f:19:99:45:b6:3e:
36:de:05:84:7d:9c:b7:a0:55:71:51:95:2c:35:7d:
88:a1:fe:e1:6d:25:8f:38:2a:c8:ff:7f:aa:a2:d4:
f5:7c:fb:a1:0b:d4:19:34:cf:c9:53:82:43:78:e9:
43:41:07:9c:c8:07:22:a0:cc:9a:e8:77:0c:b5:fc:
d9:59:06:91:a7:ea:96:ea:83:37:ea:0c:fb:82:e8:
aa:9b:55:e0:c6:67:5c:dc:97:70:57:aa:da:18:bc:
36:77:9f:4d:eb:ff:d6:7a:96:2e:01:b4:31:b4:47:
b0:19:48:88:da:2d:51:1b:25:ce:ec:b9:cb:b4:55:
f4:c9:e6:a5:03:d2:f3:6b:71:6a:b3:23:a5:ea:cb:
23:d7:22:9f:2f:65:d8:42:7a:ae:7b:d5:02:4c:43:
8e:2f:54:c9:0f:8d:a0:30:8c:2a:4a:f7:c1:4a:61:
f2:c7:88:3a:54:a5:4e:02:15:05:0f:7c:a9:a1:46:
0c:54:a3:6f:f5:f8:34:75:f0:db:9f:77:30:32:59:
23:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E9:5E:77:15:0B:60:4D:46:9B:A7:FC:D7:6D:0A:B3:26:72:78:36
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/U-ledxULYE1Gm6f8120KsyZyeDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.176.0/20
Signature Algorithm: sha256WithRSAEncryption
1a:65:db:64:fa:53:44:f1:7b:df:32:da:fd:ca:57:5a:a6:a2:
b5:0f:b8:60:2e:51:a6:18:de:c8:c1:91:8b:f3:32:15:3d:0b:
2b:06:09:7b:78:16:54:21:1f:0e:93:69:08:0d:47:28:4d:e1:
00:d4:e6:16:bc:3d:b6:94:5d:4d:7e:c7:e5:cc:3f:df:ed:c6:
9a:b8:1e:f3:ed:dc:b6:f2:76:b0:3b:7a:bd:4d:9e:13:26:5e:
0c:b0:17:25:94:84:11:68:49:c4:4c:fa:24:f1:cf:44:30:ff:
0a:a6:ea:83:de:ef:7b:89:c1:a7:26:d3:66:3f:6d:0a:73:af:
69:7d:3a:ac:8d:ee:4d:e0:98:5a:8c:27:ee:ed:71:ab:a2:e2:
65:b7:61:ad:59:6b:6f:69:76:cd:c8:f8:fe:30:7b:94:2f:37:
d7:be:28:33:d3:dd:f8:61:cc:cd:34:9d:7f:4c:48:3c:af:9b:
9f:96:91:e5:f1:80:6f:34:8c:a5:5d:a0:5b:8a:a4:9b:ba:9a:
21:db:06:c7:53:13:a0:53:2b:bb:e0:1a:35:c2:35:51:5b:25:
50:2c:05:3b:56:9f:79:a4:bf:27:f5:97:ec:32:4e:40:80:55:
95:99:30:43:b7:b5:86:e8:80:37:4a:61:04:cb:6b:29:2a:1f:
fa:b5:a3:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org