Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Xrhy-7XHDsgUYQ-patvi_e3cDew.roa
File: Xrhy-7XHDsgUYQ-patvi_e3cDew.roa (raw, json)
Hash identifier: 3MQYPfOsmBxueERL6tRdGytOHuHHs/J2oG5ER+d49CI=
Subject key identifier: 5E:B8:72:FB:B5:C7:0E:C8:14:61:0F:A9:6A:DB:E2:FD:ED:DC:0D:EC
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Xrhy-7XHDsgUYQ-patvi_e3cDew.roa
Signing time: Thu 15 Sep 2022 02:41:19 +0000
ROA not before: Thu 15 Sep 2022 02:41:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 163.30.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5EB872FBB5C70EC814610FA96ADBE2FDEDDC0DEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:1b:dd:cb:49:2f:7a:bc:70:52:d3:fe:b0:
6f:30:b9:3f:79:c6:31:1f:de:71:cd:a7:ef:1e:f5:
71:aa:f7:a2:b7:fd:eb:f5:79:e2:0e:62:95:95:c0:
86:fb:64:72:35:c4:6c:42:3a:c2:a6:7b:4c:2c:5d:
cc:ed:5e:aa:60:d6:24:31:7a:f3:c3:9c:66:99:41:
3a:6f:f4:d5:6c:04:e5:fe:1f:5c:31:aa:f7:6f:62:
1a:9b:98:32:d5:f7:54:79:db:67:57:26:51:31:ba:
42:57:e3:9f:2e:d4:90:b7:c5:ff:49:94:c4:a0:9b:
8c:13:5e:6e:98:9d:5c:30:4c:ba:0f:f1:a4:d1:14:
5b:81:10:ab:25:b1:ea:d8:e2:7c:ad:50:86:b8:bb:
87:fc:f0:70:9b:25:c9:9d:0b:f7:3d:7f:da:3b:6e:
47:7e:65:27:c5:72:6f:19:0b:4a:5f:04:8e:0c:ff:
36:18:7e:93:41:c5:fc:d9:9f:6b:8a:87:38:9d:0e:
1b:6e:94:6c:a9:34:22:d3:c9:76:00:ac:01:ff:32:
87:bc:c2:ee:e3:43:24:46:0a:4c:22:13:ee:be:2f:
8b:22:b4:fd:31:74:20:2a:74:06:14:80:a8:e1:d3:
95:7d:2b:99:2e:09:34:71:dc:8d:37:1e:38:38:df:
b5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B8:72:FB:B5:C7:0E:C8:14:61:0F:A9:6A:DB:E2:FD:ED:DC:0D:EC
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Xrhy-7XHDsgUYQ-patvi_e3cDew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.30.0.0/15
Signature Algorithm: sha256WithRSAEncryption
7f:e0:bf:a0:4d:aa:ea:05:bf:ea:82:06:6b:6c:46:ec:93:b3:
c5:5d:79:d3:3f:23:fc:fa:d3:36:70:17:8b:61:d6:3e:67:7a:
70:7d:82:bd:1c:d5:ec:9a:2a:db:94:34:01:09:44:94:4c:a5:
69:d5:66:4b:2e:09:9a:18:de:2c:78:23:38:35:cd:c9:ba:e1:
a6:9f:78:ff:42:cf:ac:6f:1c:31:ba:ab:22:e2:b8:05:b0:87:
b7:c5:11:8f:f9:6b:df:79:17:8c:4f:a1:01:36:c9:2b:20:37:
7a:5f:4c:f8:af:55:a9:7b:46:dc:88:2f:37:81:72:7d:a2:6d:
ef:58:89:0a:77:88:46:e6:4a:2d:0a:c8:d8:7a:67:49:87:89:
b9:b4:ff:ab:bf:bd:cb:cb:49:dc:cb:42:d3:da:a2:4e:f2:54:
e7:60:43:a1:5d:6b:70:2a:9c:6b:f8:52:a9:31:9e:8c:5e:e2:
f0:4a:08:7e:b2:8d:ac:80:96:fa:b2:3e:e5:11:2c:27:bb:82:
86:35:62:89:d9:9c:50:67:3d:66:99:6d:48:63:0e:b4:1d:c6:
75:3d:c8:45:a5:0e:7b:39:74:c0:e7:fa:1f:c8:62:8c:6e:0a:
b6:58:e9:23:0b:2b:8d:5b:12:9e:0c:18:bc:78:e5:84:16:a6:
7f:15:e1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org