Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Yt3uZheAnWjwItKj1qNBWxE2_s8.roa
File: Yt3uZheAnWjwItKj1qNBWxE2_s8.roa (raw, json)
Hash identifier: z2QsQt60Sgr+z10ro2p3YLpaKx6SSYDyrVEzh0/EHFM=
Subject key identifier: 62:DD:EE:66:17:80:9D:68:F0:22:D2:A3:D6:A3:41:5B:11:36:FE:CF
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ACD
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Yt3uZheAnWjwItKj1qNBWxE2_s8.roa
Signing time: Wed 29 Sep 2021 02:41:05 +0000
ROA not before: Wed 29 Sep 2021 02:41:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9916
IP address blocks: 120.126.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2765 (0xacd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=62DDEE6617809D68F022D2A3D6A3415B1136FECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1a:ab:7d:45:0f:c5:26:55:34:93:71:d2:9b:
12:3e:a1:48:6a:2b:eb:7f:d4:c7:fb:0a:c4:02:49:
72:c0:44:6f:74:66:47:95:ba:94:c0:1b:b7:d0:5e:
d4:05:6e:90:54:a2:8d:35:bf:7e:c0:9e:04:e8:4b:
77:d1:e9:ec:c4:37:8f:29:32:14:ae:8c:8f:8b:40:
2d:a2:91:b8:39:6d:8a:17:75:d5:cd:49:42:71:4f:
43:6c:f5:7d:6a:14:ce:75:28:0a:ce:49:2b:0b:7e:
57:48:91:50:b7:a1:1d:05:c3:16:cc:d7:f2:81:e1:
59:9b:71:ed:3a:db:b2:1e:1f:5a:73:17:3d:7f:35:
42:c0:f3:13:43:2b:65:0f:71:e9:d8:21:2b:18:21:
d8:bd:9e:90:3e:4d:ac:67:a9:16:a2:7e:27:b9:dd:
f5:51:24:e4:ff:7a:0d:95:db:90:c7:49:6c:d4:a3:
02:d9:98:7e:ac:6f:a1:86:f6:41:4f:3e:a6:b6:70:
0d:8a:9f:30:62:13:ac:f2:93:7c:6e:e1:a5:bd:eb:
30:54:38:5a:b0:bd:b1:18:a0:41:d7:81:5c:67:81:
a7:8d:d0:de:a6:e4:f6:ed:d5:55:d7:d6:12:e1:ae:
b1:5f:a4:e7:ad:95:c6:3a:1f:04:d2:72:7d:e5:06:
31:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DD:EE:66:17:80:9D:68:F0:22:D2:A3:D6:A3:41:5B:11:36:FE:CF
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Yt3uZheAnWjwItKj1qNBWxE2_s8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.96.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:31:62:c2:5e:db:0e:24:ad:b5:fa:09:ea:17:c5:a8:66:89:
f7:88:c9:e1:40:45:a5:2e:2c:c0:b1:6b:60:ee:b0:aa:d4:7b:
0c:76:73:aa:10:cb:f5:46:72:bc:77:9b:ea:99:c3:82:4f:de:
ca:8f:10:0f:8b:68:4c:06:15:92:1d:3e:a9:7b:d2:f2:3c:22:
fc:0b:10:d6:55:bc:2b:59:3b:ed:ba:d7:1f:66:00:64:5a:33:
84:67:1f:88:b4:35:da:bb:b6:f7:d1:9c:17:2d:20:04:ef:d2:
a8:62:04:78:e4:fa:b9:15:b8:69:66:2f:9f:7f:f0:5e:68:93:
d3:8c:d6:58:ac:d5:a9:e7:d1:c9:2c:a2:5b:2b:84:1c:fa:b8:
b3:82:80:b4:d3:af:7f:3d:90:79:68:91:18:a3:32:dc:19:64:
63:9f:75:d4:89:f7:6c:0e:48:2d:98:b9:ef:2a:3b:db:2f:02:
fd:9d:af:54:3f:3b:0b:e2:5d:1b:b7:a9:a1:c0:6b:b6:23:ca:
ca:00:34:a7:34:de:29:f4:c5:85:5d:dd:f9:d2:fc:e5:c1:d6:
fb:f8:1e:60:fb:85:5a:a3:69:03:aa:e3:84:e1:7d:b6:af:60:
fa:66:4c:4a:c9:b5:0b:82:a9:fc:c2:89:0d:f8:14:38:46:67:
0f:49:d2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org