Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/U89Og5WnMSnQBGI-Sgn5jzV6LsA.roa
File: U89Og5WnMSnQBGI-Sgn5jzV6LsA.roa (raw, json)
Hash identifier: qWPL5Ps6HIS30oK6+92XJew802JuUkWiH9/LegrsahY=
Subject key identifier: 53:CF:4E:83:95:A7:31:29:D0:04:62:3E:4A:09:F9:8F:35:7A:2E:C0
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/U89Og5WnMSnQBGI-Sgn5jzV6LsA.roa
Signing time: Thu 15 Sep 2022 02:41:06 +0000
ROA not before: Thu 15 Sep 2022 02:41:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 203.64.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=53CF4E8395A73129D004623E4A09F98F357A2EC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:29:0e:d1:10:2b:8e:0a:2e:92:39:03:e4:20:
8a:a3:a6:60:08:e7:6d:70:d9:fd:e5:96:17:c7:42:
81:b6:d3:c0:04:6d:63:ce:c5:5e:c5:cc:86:49:3b:
0d:9b:e1:c1:ee:40:de:78:c7:17:a4:bf:b9:e5:e6:
ff:a1:9e:6c:80:41:d5:97:87:d0:c5:43:4b:a0:13:
38:09:13:71:8d:04:8d:61:63:8d:c7:9c:d8:c6:9f:
8c:b8:0e:36:ef:e2:c2:7b:a9:c5:78:d4:4a:93:0b:
2d:4e:d5:55:b4:a3:69:d8:e6:91:d4:39:e1:29:c7:
69:13:c8:6e:f7:4b:8a:a3:1b:99:52:68:3f:a3:b2:
37:e2:40:53:3b:95:74:ad:02:16:fa:41:ff:1e:a2:
09:58:a7:15:73:73:79:bf:25:34:7e:7b:4c:45:1a:
39:0a:d5:95:ab:3a:b3:a6:dc:eb:cd:fb:ee:2f:9f:
c2:b1:ad:55:1f:4f:b9:45:58:ed:7e:39:18:d1:c7:
c4:15:5b:e0:b2:03:74:5a:aa:d2:da:8f:12:99:0d:
6d:44:38:ba:ea:e1:70:14:4d:0b:43:c1:78:2e:ae:
1d:72:9a:11:3c:69:29:11:fe:20:25:45:34:8f:9a:
66:33:bf:27:b0:10:d9:c2:8f:14:e2:6d:10:79:38:
78:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CF:4E:83:95:A7:31:29:D0:04:62:3E:4A:09:F9:8F:35:7A:2E:C0
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/U89Og5WnMSnQBGI-Sgn5jzV6LsA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
32:ed:ed:53:69:9a:ec:c5:1c:46:f2:83:64:e2:5e:d7:c9:7c:
08:c0:71:8f:92:c4:eb:59:b9:d4:da:78:4e:6a:3b:f5:94:03:
ed:7a:dc:dd:48:17:44:77:ac:0f:49:b3:ee:a6:93:0d:cd:40:
e8:2f:8b:48:15:80:86:81:f4:18:16:51:3c:42:57:8c:83:f1:
6d:49:6e:fd:19:61:8f:0a:b8:1b:d7:bd:5d:b9:ff:21:f9:a1:
6a:de:b5:c4:04:2b:ce:47:ae:97:cb:dc:a1:36:97:a9:2a:d2:
42:b4:f6:41:b8:48:b4:f2:c5:cc:7d:30:64:5d:cc:b4:bf:4c:
ce:f8:30:f0:1d:fc:10:b8:92:4d:da:47:22:24:77:6a:88:3b:
7a:3f:7f:fd:af:4e:bb:09:7e:65:15:ab:e8:66:31:d0:f9:bc:
bf:e3:2c:43:84:ae:ce:26:6f:da:98:be:7a:fd:58:97:df:6e:
41:10:5a:93:de:b6:7b:51:19:ab:b0:5e:fc:91:0e:9a:b8:3d:
cd:38:c1:b9:a9:b3:d5:94:2e:5f:26:24:bd:18:fd:8b:1b:02:
f9:47:2f:2a:25:af:de:83:1a:37:f1:83:d7:e3:af:b9:9e:ad:
11:a3:ff:75:f7:eb:da:a7:56:77:dd:6e:f1:0d:87:71:8b:5c:
ee:54:23:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org