Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_-Gx1pEwqltBspKQVjnkihZFjpc.roa
File: _-Gx1pEwqltBspKQVjnkihZFjpc.roa (raw, json)
Hash identifier: ZKqwaIMwBkm694qdaHTiNwJY8Vwd+qMLL96UsrlQJm0=
Subject key identifier: FF:E1:B1:D6:91:30:AA:5B:41:B2:92:90:56:39:E4:8A:16:45:8E:97
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_-Gx1pEwqltBspKQVjnkihZFjpc.roa
Signing time: Thu 15 Sep 2022 02:41:10 +0000
ROA not before: Thu 15 Sep 2022 02:41:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 163.16.0.0/13 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FFE1B1D69130AA5B41B292905639E48A16458E97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:95:52:97:c1:47:33:7e:2e:29:6e:89:9f:5a:
e6:56:c5:10:1a:c1:d3:e2:93:3e:e6:85:77:1c:85:
4b:1c:a6:67:93:e3:9c:9f:10:12:d3:62:ba:81:49:
17:02:fe:5b:5b:d0:bf:aa:da:d5:b8:10:49:1f:93:
41:9a:fb:e3:cd:ca:76:5b:75:32:41:5a:04:17:fa:
7e:c0:03:1d:fe:ae:7e:50:f8:8a:c2:5d:dc:f1:5a:
3f:c2:fd:14:f7:b8:c0:1c:14:c5:fe:8d:f7:c0:e5:
44:ee:86:16:04:06:24:73:06:2c:3d:bf:fb:aa:77:
5a:53:28:c2:ba:cc:7d:87:9e:71:4d:e6:b8:86:fd:
cc:df:19:98:d7:f3:5c:d7:ef:52:2e:4a:d5:40:ae:
a3:e2:23:e6:de:55:26:21:cc:4f:50:be:ee:42:d3:
ff:51:52:17:f1:5a:58:cd:2b:1c:23:c6:40:82:6c:
bd:ad:52:c0:24:88:0a:56:c8:09:e4:a0:f0:e7:14:
92:fb:75:c0:a6:aa:35:01:76:25:04:ac:3d:89:12:
66:47:da:b6:02:8e:0e:7b:90:8e:d7:01:d3:b2:f8:
29:0e:d4:61:e3:38:90:8e:3a:ea:89:3d:b7:06:4a:
1b:b1:5a:55:5f:8c:d5:9b:39:43:d9:14:6a:a7:4b:
3b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E1:B1:D6:91:30:AA:5B:41:B2:92:90:56:39:E4:8A:16:45:8E:97
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_-Gx1pEwqltBspKQVjnkihZFjpc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.16.0.0/13
Signature Algorithm: sha256WithRSAEncryption
68:80:23:e3:59:ae:6e:09:5c:52:f0:a9:46:6e:3f:11:55:73:
09:8e:45:c8:4a:fb:b0:f1:2c:9e:da:4c:c6:50:cb:7a:ef:80:
16:fb:d2:e5:5f:d1:c2:fe:56:7b:06:7a:76:e8:d0:23:9a:79:
13:e2:84:14:aa:d6:1d:63:fd:d6:c3:40:45:f8:ba:2a:c1:98:
e6:ef:28:1e:da:ab:be:1f:d9:6e:fc:c1:8a:e6:76:67:3b:e4:
ba:57:3c:8e:18:e8:2c:2e:a4:21:20:d2:3e:f1:0f:ff:e0:6e:
df:0b:64:1d:1e:0f:39:17:f4:fb:b7:f4:4d:f7:31:1a:9c:e2:
d5:e2:e0:79:75:a5:4d:e8:f3:3e:b2:7f:51:c6:c8:11:af:8d:
fd:31:d6:4f:97:8a:49:c3:c2:43:19:85:db:ad:88:61:71:72:
5d:3a:b8:02:64:09:02:29:8c:64:48:46:2b:b3:2b:2a:3f:b9:
de:0c:a1:1e:2a:94:4c:2e:b9:e2:02:80:c3:00:42:7b:15:2a:
bc:b1:c0:14:d7:06:6b:b8:36:c5:3b:a3:25:45:59:b4:c8:3f:
37:d2:f5:f2:bd:7b:a7:45:c6:37:98:81:c6:ac:cc:8d:f5:33:
77:45:5e:8d:80:ed:44:90:88:a2:7f:67:4f:ab:d0:0c:b7:69:
56:c1:dc:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org