Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XTinUHvu3xCVBOWIQvFEft5REtI.roa
File: XTinUHvu3xCVBOWIQvFEft5REtI.roa (raw, json)
Hash identifier: t1XGR4T7ChC5+nGt+lA1v1J4s22XbitofzTBH0mT6Xs=
Subject key identifier: 5D:38:A7:50:7B:EE:DF:10:95:04:E5:88:42:F1:44:7E:DE:51:12:D2
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09F8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XTinUHvu3xCVBOWIQvFEft5REtI.roa
Signing time: Sun 07 Feb 2021 12:39:43 +0000
ROA not before: Sun 07 Feb 2021 12:39:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38844
IP address blocks: 210.60.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2552 (0x9f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D38A7507BEEDF109504E58842F1447EDE5112D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b3:ec:eb:b9:1e:18:68:7d:ef:2f:87:b1:dd:
0f:3d:21:06:77:cc:84:5a:f4:d1:e1:f1:1f:57:8b:
f2:33:94:08:c5:a8:5c:70:96:23:6a:5c:cd:9d:9a:
8b:64:d1:e6:87:f7:dd:6c:a3:a1:cb:a4:01:4e:cb:
78:99:ed:27:9b:0a:7a:0e:9b:dd:0c:4e:ae:fb:7b:
18:c3:29:bf:38:3d:5f:b4:c3:02:09:33:d8:44:81:
64:d9:46:16:a0:ba:a8:f6:1b:82:d4:0b:11:d1:ce:
12:ff:d8:c3:85:cc:ad:f9:2b:a4:70:d9:5d:1d:8e:
64:20:2d:f7:e5:03:7c:b5:ce:9b:0c:86:81:31:49:
38:75:ad:e2:97:31:38:d9:74:d2:ce:f4:7c:6e:56:
33:69:6a:29:40:a2:f2:88:4c:2a:a8:f0:3b:7c:a7:
5f:17:dc:95:a0:46:7a:e9:da:51:17:94:f1:8d:99:
cf:f7:f7:ba:b7:ce:4b:1d:ed:11:c1:1d:26:18:02:
b4:d9:77:30:6f:bd:4f:2d:25:a7:61:3a:87:ff:7d:
c4:d7:7e:a3:8e:80:aa:aa:5e:0f:1c:db:70:8d:23:
6c:f8:61:b7:ed:f7:da:df:76:9d:7a:f7:22:17:41:
c7:12:d7:8a:23:39:05:73:79:ab:eb:63:91:5a:e8:
2b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:38:A7:50:7B:EE:DF:10:95:04:E5:88:42:F1:44:7E:DE:51:12:D2
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XTinUHvu3xCVBOWIQvFEft5REtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:00:82:bb:b9:16:12:6d:5a:de:39:ef:17:9f:c9:cb:b6:6e:
8e:19:01:06:70:b1:b8:bf:e3:50:c6:71:83:5e:3b:c1:22:bf:
59:67:3f:d7:bd:01:bd:14:ef:d8:2e:a3:27:dd:1c:9a:17:9e:
70:5b:e4:bb:85:01:b0:d7:77:03:de:9f:9d:3f:01:23:bf:91:
5f:23:35:a8:46:6a:fe:bc:c1:0d:6f:26:54:98:5f:17:96:28:
d0:47:27:21:89:c4:26:af:13:a8:5a:8f:47:2d:66:32:94:19:
66:c5:38:80:20:3f:5c:23:9d:80:d6:5c:d9:bc:9e:56:65:de:
9b:92:05:13:38:7f:48:f4:e3:b6:16:75:8a:57:ab:29:94:37:
93:31:97:7b:71:55:e9:64:d8:12:5e:7a:ce:c3:a4:95:21:3e:
e7:1d:e9:10:28:d9:8f:44:a9:96:ff:ed:5f:ab:16:8c:b6:ab:
17:6b:4e:bb:c8:52:f1:8a:78:bd:0e:1b:e8:64:a3:56:fe:80:
da:5b:11:0d:d1:b2:c6:0e:08:33:90:bc:e7:15:b8:59:34:c0:
ee:a4:29:fa:ce:e6:b2:ba:6f:47:fc:0f:86:6c:0f:6a:67:f2:
a4:21:a4:49:43:d1:9c:97:de:e4:fa:1e:74:88:79:d0:a3:c2:
2a:97:0f:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org