Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UDVDxgsiXd8ujDymPb2pTQUcfe8.roa
File: UDVDxgsiXd8ujDymPb2pTQUcfe8.roa (raw, json)
Hash identifier: rEWvhNjy0F8Mdc23jLapG56psh0zFM8KMeFnjWGo48o=
Subject key identifier: 50:35:43:C6:0B:22:5D:DF:2E:8C:3C:A6:3D:BD:A9:4D:05:1C:7D:EF
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07B8
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UDVDxgsiXd8ujDymPb2pTQUcfe8.roa
Signing time: Tue 29 Sep 2020 10:06:47 +0000
ROA not before: Tue 29 Sep 2020 10:06:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 192.83.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1976 (0x7b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=503543C60B225DDF2E8C3CA63DBDA94D051C7DEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:d4:3b:f5:16:ca:28:66:b9:8e:77:46:ed:3b:
83:e2:da:4c:17:4d:74:fa:aa:c3:3e:8f:0e:79:24:
d3:b4:1f:98:3d:a3:b1:41:62:17:08:f6:e4:2b:16:
78:25:3d:0d:71:73:44:e3:0c:91:ea:bb:5d:4a:0f:
3c:23:c3:12:c1:c8:8c:c6:08:b1:8a:65:83:9d:f3:
9c:ae:da:71:5e:b2:bd:d2:d9:f9:96:3f:a6:69:57:
79:6f:b9:44:21:5b:b5:0b:83:49:7b:15:28:43:62:
a4:50:58:1c:37:85:cf:ef:1a:f5:e7:65:ff:94:c1:
6c:b0:a0:19:41:90:44:df:bc:c6:37:ff:d5:46:f5:
33:26:fe:43:32:52:d3:09:2a:42:f4:41:06:18:57:
6e:7a:1a:ec:4c:d4:da:b5:9d:74:93:87:74:b4:48:
d0:75:71:b8:ed:25:5e:e1:e5:aa:06:10:8a:70:37:
4a:c6:2d:8f:16:a7:e3:26:22:46:20:90:fd:38:75:
a6:b2:f9:a0:46:c7:87:38:1c:9b:1b:83:ff:60:a7:
b6:cd:38:de:4e:09:83:1c:85:47:a7:9b:1a:b6:a9:
63:cc:c2:f8:21:09:5e:5c:c7:74:42:0b:cd:ac:89:
4f:3f:34:c1:5e:50:bf:96:8f:6f:7b:91:32:ef:59:
40:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:35:43:C6:0B:22:5D:DF:2E:8C:3C:A6:3D:BD:A9:4D:05:1C:7D:EF
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UDVDxgsiXd8ujDymPb2pTQUcfe8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.196.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:31:d9:34:84:7e:ac:98:1b:ab:c1:0e:76:5a:6b:f1:16:a1:
9f:cc:99:ab:a1:58:9e:c2:04:60:f0:6f:d3:ba:74:1d:5b:25:
a0:58:b2:c7:11:2e:84:4e:d7:d2:3d:e4:91:b9:88:40:33:40:
05:a4:cb:c3:7c:91:4c:3b:27:1c:a6:46:c4:6e:58:d1:a4:56:
5f:ea:64:2c:f1:62:51:62:f0:41:8c:e5:80:05:c3:69:99:36:
b0:22:03:ff:ec:a3:9f:af:3e:22:c2:96:8e:72:be:bd:55:55:
77:a4:1e:b0:bc:5a:76:94:2b:8d:fa:32:4e:86:a0:cc:1e:ed:
c8:70:0c:40:c9:bb:18:c0:f7:e7:db:1d:52:04:6f:e8:2a:e4:
e4:d1:b9:04:0b:81:f2:1f:50:d9:9e:76:f9:68:e0:ed:f8:0b:
8b:a1:a9:de:b6:b9:d0:26:ac:fc:1f:c0:61:5a:7f:90:23:46:
43:84:fa:ad:e1:91:c0:9d:e6:09:64:56:ba:c9:8a:c7:84:b5:
42:29:82:f7:ae:23:e4:a9:ba:ce:c5:d1:b9:03:64:6b:fa:41:
82:76:86:75:72:05:64:bd:bb:26:ed:6b:a5:25:b2:04:7d:d8:
4d:4f:5d:d0:12:01:da:4b:bb:f6:08:76:25:cf:ba:a3:cb:a8:
24:4e:29:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org