Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UKKALIFtXrnkan3XvGp1F5373aA.roa
File: UKKALIFtXrnkan3XvGp1F5373aA.roa (raw, json)
Hash identifier: 3mPcOv/P8NDfyJ64zIZl97nLqG/0CMV9wK/4pjUVjoE=
Subject key identifier: 50:A2:80:2C:81:6D:5E:B9:E4:6A:7D:D7:BC:6A:75:17:9D:FB:DD:A0
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07EA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UKKALIFtXrnkan3XvGp1F5373aA.roa
Signing time: Tue 29 Sep 2020 10:06:37 +0000
ROA not before: Tue 29 Sep 2020 10:06:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17716
IP address blocks: 120.96.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2026 (0x7ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=50A2802C816D5EB9E46A7DD7BC6A75179DFBDDA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5d:be:2f:7b:5c:e3:c8:1f:4b:da:ca:44:ae:
f0:48:46:5f:ec:59:f8:e9:1a:3c:c6:57:3d:a2:46:
28:c8:25:b7:33:2e:1a:93:ae:ea:41:b5:4c:d5:86:
41:84:b2:15:45:3f:13:9f:a4:ae:58:90:f1:70:64:
fc:a7:d5:7b:36:a1:82:7d:54:23:c1:06:81:62:e9:
33:c3:44:0e:d0:f8:b5:d3:56:2b:29:ad:7d:62:92:
68:ef:ea:8e:e5:7b:13:2f:97:b6:30:f8:a4:42:32:
6b:9e:56:8e:9b:b0:f5:82:ea:88:3f:fc:c7:05:f5:
8f:50:57:fc:f4:fd:2b:f5:d5:66:bc:0b:c7:68:b5:
b7:db:74:a6:7a:21:47:f3:65:77:37:f0:4f:e4:03:
b0:ff:5b:36:5d:98:90:34:21:a1:5d:ea:59:54:52:
46:ca:39:a2:7d:30:e7:97:f8:8e:c5:6f:dd:80:ba:
99:95:f0:47:bb:1a:15:27:e9:eb:b6:80:7a:8d:c5:
65:71:62:c5:d2:f6:c2:93:21:fc:43:8d:e1:88:30:
4a:63:d0:38:2f:18:26:13:47:40:47:ce:b6:fd:b2:
e2:d8:9b:b7:54:3b:d9:74:6d:2d:44:c7:c3:34:03:
2b:ac:b0:98:be:1d:e5:aa:03:af:19:ad:fb:8e:fe:
6b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A2:80:2C:81:6D:5E:B9:E4:6A:7D:D7:BC:6A:75:17:9D:FB:DD:A0
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UKKALIFtXrnkan3XvGp1F5373aA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.240.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:08:91:32:ff:57:eb:b4:73:86:e6:46:d7:90:52:76:56:51:
2f:c5:2c:b0:89:bf:ad:fe:91:44:e3:83:07:92:d6:27:ca:7c:
58:12:55:3d:d4:97:77:b4:c6:48:c3:65:5a:b4:6d:bc:9e:2c:
3b:66:a3:fe:1e:73:02:88:b4:71:4c:a0:37:50:eb:bc:97:59:
a8:99:0a:05:ea:74:19:e5:b6:80:ee:6d:40:98:3f:14:ec:b4:
fa:00:b7:45:ba:83:41:47:9d:9c:a5:b0:89:22:9b:9b:1b:23:
5d:2c:ec:ba:9b:6a:3c:4e:23:cc:12:88:ea:91:89:b2:a8:69:
76:22:50:bf:df:37:d5:26:62:c6:47:c1:41:00:0b:45:73:6f:
bd:f6:0a:d3:92:98:fa:3c:6f:57:25:d8:a5:2c:56:aa:0b:04:
20:9c:64:47:66:4f:b5:2b:e8:8d:86:6a:66:52:3b:2c:f1:eb:
e6:d3:5b:a9:7d:e7:0d:f6:5b:ea:7e:6d:73:20:3c:5a:8d:21:
32:c1:22:2a:65:43:7e:de:51:7c:f1:61:d8:68:9f:b2:f1:da:
73:ba:16:54:41:54:95:a4:1d:69:90:58:d0:d4:a5:91:cc:66:
ec:43:90:57:34:65:95:43:a7:4d:68:d9:86:2a:be:c9:10:99:
2b:41:02:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org