Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UESRSQJF9_X1-HyNt8-aZbDcljE.roa
File: UESRSQJF9_X1-HyNt8-aZbDcljE.roa (raw, json)
Hash identifier: KfASmH1Uyy3dniN6UJc8kMFKgSZ8i4Daev/Za99UfT8=
Subject key identifier: 50:44:91:49:02:45:F7:F5:F5:F8:7C:8D:B7:CF:9A:65:B0:DC:96:31
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD6
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UESRSQJF9_X1-HyNt8-aZbDcljE.roa
Signing time: Wed 29 Sep 2021 02:41:09 +0000
ROA not before: Wed 29 Sep 2021 02:41:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 163.32.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2774 (0xad6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=504491490245F7F5F5F87C8DB7CF9A65B0DC9631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:ae:48:f3:7c:2a:57:1e:e3:46:bf:0c:50:9b:
e0:6d:55:c7:83:89:38:d7:ab:cb:9f:54:81:72:5d:
44:11:f0:b2:59:5c:30:09:fb:93:c9:31:5e:f0:1a:
cd:85:f6:66:8e:db:3b:f3:54:a5:50:c6:a8:28:48:
34:95:3b:c7:94:a4:20:d4:17:f8:a3:3c:b0:28:56:
f5:83:9a:22:b2:5f:b0:fe:96:4e:4f:67:65:7c:58:
d0:1c:6c:5b:0b:8a:47:03:13:94:0e:d3:61:52:a1:
31:f8:9a:38:d2:16:5d:ff:b3:c6:6b:42:07:0f:06:
b1:9b:d3:8c:6f:a7:d8:a7:c7:4c:37:a4:7a:21:cf:
03:fb:ab:d0:dc:67:89:5e:08:31:12:51:b0:cd:4f:
ae:ea:b0:83:f1:aa:6e:5f:ba:41:0e:b1:2b:fa:e5:
a2:24:51:2d:b0:21:8f:a7:3b:15:70:d4:c9:bc:84:
1d:81:89:2f:b3:c9:0e:1e:a0:99:50:09:3d:49:64:
44:86:35:fa:bd:45:09:bd:ec:02:7c:bc:d3:00:0d:
3c:85:88:d9:a4:c8:a3:c4:63:db:6e:f3:a6:af:99:
3e:f0:fe:c3:bf:c9:10:4c:23:b4:a8:42:30:e7:53:
34:26:9e:4e:d6:75:07:a9:bf:2f:6a:79:8b:4f:27:
1c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:44:91:49:02:45:F7:F5:F5:F8:7C:8D:B7:CF:9A:65:B0:DC:96:31
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UESRSQJF9_X1-HyNt8-aZbDcljE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4a:c7:d1:67:f8:32:fe:92:20:74:01:7c:85:fc:c8:76:20:de:
0e:5d:67:72:79:b7:ff:b7:d5:0f:f7:14:81:ad:89:42:da:48:
ac:06:82:42:9a:b4:c7:ac:1b:1e:33:68:0b:38:ba:e6:94:f9:
55:53:7f:48:55:8c:ac:5c:6a:fe:c2:9e:fc:bf:ce:12:02:86:
97:e9:32:c4:ba:eb:8c:79:b9:76:27:32:ce:75:43:3b:bc:86:
84:09:3b:08:e8:e4:ae:63:82:29:5b:45:40:80:e8:a7:e2:c4:
af:35:85:1d:88:ca:34:e2:c0:55:90:50:05:69:fd:10:84:ac:
28:60:2a:ac:c0:65:ac:09:47:6b:01:ab:35:a1:15:6f:3e:86:
6c:cf:61:62:b1:28:d4:8a:c2:05:03:23:3a:b6:f4:81:05:d8:
74:a4:17:67:f1:bc:90:61:19:f8:36:ad:aa:62:37:3f:c2:9e:
4f:63:cf:dc:fd:60:7e:80:81:2d:f3:16:33:5c:b4:7b:76:de:
8e:1a:84:5f:20:82:fb:db:eb:08:5d:42:70:2a:67:8a:a4:dd:
77:9a:e5:19:3f:b5:2f:e6:84:4d:19:10:a2:0c:fb:9a:0f:cc:
d1:81:99:90:b6:57:f0:26:ae:9c:b9:6f:e9:44:b1:0f:e2:23:
73:bd:bc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org