Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Uq6k5mM8_QzRK0O2x9pgkV7mgd0.roa
File: Uq6k5mM8_QzRK0O2x9pgkV7mgd0.roa (raw, json)
Hash identifier: +i9D8wg0pSOHO8g1AaigCweYJBlWGmdYl689b/uwubc=
Subject key identifier: 52:AE:A4:E6:63:3C:FD:0C:D1:2B:43:B6:C7:DA:60:91:5E:E6:81:DD
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD9
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Uq6k5mM8_QzRK0O2x9pgkV7mgd0.roa
Signing time: Wed 29 Sep 2021 02:41:10 +0000
ROA not before: Wed 29 Sep 2021 02:41:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131150
IP address blocks: 163.32.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2777 (0xad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=52AEA4E6633CFD0CD12B43B6C7DA60915EE681DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ce:60:e5:a8:05:0e:8e:d4:74:c7:03:05:24:
2b:06:80:90:2c:ff:fb:1a:a4:ba:5a:a7:e6:c3:d3:
d3:4c:b4:7b:d8:b6:c4:36:61:b0:e0:6a:12:f7:b9:
25:57:a4:f9:3e:e2:eb:ca:ff:f0:51:59:c6:37:2c:
90:5a:bf:05:26:b4:26:65:0d:05:c6:ec:b8:ff:3a:
67:e9:67:b0:5c:90:19:5b:bd:41:85:29:91:f1:09:
86:a1:06:91:eb:16:6f:dc:07:d1:c0:e9:65:07:a8:
2f:1a:10:b8:41:5e:f0:5f:fe:70:be:07:75:25:9d:
6a:64:aa:14:23:78:27:2a:c2:b0:10:d4:9b:55:45:
a0:11:7c:53:ed:ff:89:30:49:45:ff:a5:da:0c:44:
c0:75:66:c6:de:1d:c3:69:c0:c5:e3:2c:55:3b:02:
c0:fa:9c:ce:43:46:84:4b:18:50:89:85:3e:be:c2:
e2:a9:85:d7:b6:53:e5:82:63:a3:6d:5a:97:45:e4:
28:69:1d:f1:47:e0:57:16:30:2b:81:1b:7c:5d:4f:
a3:a7:61:b0:52:e1:2f:64:ff:63:cc:1a:d0:81:fd:
0c:57:00:65:76:7d:4f:fe:e4:74:11:9b:59:33:a9:
cc:02:2e:17:a4:87:f2:d6:95:77:aa:29:2f:6f:14:
ab:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AE:A4:E6:63:3C:FD:0C:D1:2B:43:B6:C7:DA:60:91:5E:E6:81:DD
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Uq6k5mM8_QzRK0O2x9pgkV7mgd0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.188.0/22
Signature Algorithm: sha256WithRSAEncryption
51:e3:f4:c6:d2:91:69:e6:55:5f:41:05:b7:34:d7:89:cf:09:
8c:f7:a5:7a:16:66:71:dd:d8:86:88:d6:16:c2:bf:ab:35:72:
43:f8:d1:56:1f:cf:ac:39:82:c2:ff:77:e2:3a:d5:a1:8f:3e:
5a:ac:30:60:8d:e5:32:31:83:2b:22:74:8f:53:82:d3:aa:65:
0a:c4:57:79:70:d2:eb:3c:2e:3d:5c:0e:82:3a:ef:33:d8:c9:
35:a7:fb:3c:80:aa:27:07:f5:0b:73:ed:a4:58:78:42:b2:2e:
68:f9:78:f5:ae:d2:b0:86:68:53:f1:a9:c6:b3:11:12:a9:36:
88:d3:f0:d8:48:dc:47:c5:74:5b:31:06:1e:47:93:f1:6e:98:
92:6a:83:71:c0:9d:00:d9:0d:c3:12:3e:13:04:4b:69:2c:23:
fc:9c:45:13:61:9b:2a:d1:a9:83:01:98:fc:c9:7a:46:d8:a7:
97:ba:2d:01:1d:cb:3b:d5:c1:9f:5d:d6:2f:7f:81:89:d7:d1:
c2:b7:5a:7d:a0:60:b9:4c:d6:8b:81:84:b1:5c:4b:b8:a9:2d:
b3:48:4f:c3:92:d1:bb:af:25:c6:af:75:17:69:d3:bc:0c:8b:
bb:1d:f5:a4:66:05:ef:bf:be:ca:75:a9:d3:5d:74:ff:cb:42:
56:7d:0e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org