Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XzhQq9tPhioDa1JJP9iApNaYLAo.roa
File: XzhQq9tPhioDa1JJP9iApNaYLAo.roa (raw, json)
Hash identifier: ZwhRclYyC6Tg/zben8RpAZC3CMpOwi3Dsf3R6wfanP8=
Subject key identifier: 5F:38:50:AB:DB:4F:86:2A:03:6B:52:49:3F:D8:80:A4:D6:98:2C:0A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09F0
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XzhQq9tPhioDa1JJP9iApNaYLAo.roa
Signing time: Sun 07 Feb 2021 12:39:36 +0000
ROA not before: Sun 07 Feb 2021 12:39:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 203.71.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2544 (0x9f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5F3850ABDB4F862A036B52493FD880A4D6982C0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:28:b4:54:0b:8a:a9:3f:5a:61:98:38:9e:16:
d9:7d:8a:f7:e3:6f:0f:d5:65:fc:f6:89:e9:09:d2:
73:e1:8e:7f:cb:92:bb:b6:e7:d1:bd:99:36:e9:9f:
9f:f0:36:e6:47:76:69:65:85:31:83:22:c9:12:b4:
b0:ff:be:5b:f3:e2:81:c9:75:ef:2b:c4:bd:8a:5f:
3e:0e:ac:7f:e1:cf:e5:ab:00:39:0c:d2:d1:9a:f3:
e5:15:04:68:48:3f:d8:ad:61:32:bb:e5:c4:86:05:
68:79:b3:83:d6:d1:68:95:62:b5:97:ae:dc:20:64:
eb:95:32:94:b8:e0:0b:eb:4f:2e:e6:dd:e7:b8:b5:
50:4e:88:0d:f2:4f:b6:38:29:72:20:2f:98:69:f0:
2c:36:8d:21:6c:f4:b9:9f:08:f3:c5:20:ed:5c:f4:
7f:69:34:b7:59:1b:c1:10:3a:1c:28:f3:ea:05:33:
1a:41:cd:6f:6e:c2:20:ee:c5:e4:47:72:58:5e:0e:
2b:49:96:2f:55:0e:d4:f3:cf:48:02:8e:61:79:1d:
dc:dd:23:57:aa:8a:c5:3a:b7:38:31:ec:65:e3:79:
ea:49:4e:01:74:44:c7:0f:43:6a:7a:0b:6a:53:64:
2a:f6:88:9a:13:b3:e2:85:16:bb:75:d9:9f:3b:e1:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:38:50:AB:DB:4F:86:2A:03:6B:52:49:3F:D8:80:A4:D6:98:2C:0A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XzhQq9tPhioDa1JJP9iApNaYLAo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.71.0.0/16
Signature Algorithm: sha256WithRSAEncryption
18:18:7b:36:4f:6b:16:36:9f:f2:ad:e4:76:35:21:b4:58:3d:
97:a1:44:dd:b9:92:e7:4f:e1:8d:f0:c0:14:2e:b5:af:7d:59:
7c:40:06:12:12:bb:8f:d8:f1:f9:4c:a2:03:51:d3:c8:30:2d:
5d:b2:49:3d:f3:1a:be:c0:92:96:3d:36:91:5e:83:07:a7:6f:
3a:5c:68:1d:7b:d6:02:b0:09:90:de:83:d6:86:46:40:19:21:
42:f3:ee:ca:39:b5:69:5b:38:e0:a8:80:82:8d:37:15:43:34:
a1:20:15:01:23:38:5c:41:f0:ef:d8:f1:c0:f5:25:75:67:a6:
bf:26:18:27:cb:36:78:77:a6:24:b3:d9:e5:59:24:b8:b6:56:
84:48:aa:18:73:fd:c5:ac:c0:02:23:55:df:57:d1:a3:7b:df:
51:0d:0b:11:03:48:5f:23:61:14:ca:d6:d4:dc:0f:17:a5:ab:
b7:f0:24:fd:32:f8:ec:ff:3a:1f:49:5a:75:13:bd:96:c6:cc:
83:a4:e1:a5:69:ce:56:89:5c:6c:39:b8:38:20:a7:19:1b:c9:
10:cc:d7:7b:05:e9:16:ab:54:d4:24:26:8e:fa:c7:b7:ea:3e:
64:b4:9b:de:56:25:8c:df:8b:fd:8a:ab:a9:b6:ff:c7:01:cb:
47:63:30:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org