Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_XGsfs1orAhNT66xZVhKkOmJhCs.roa
File: _XGsfs1orAhNT66xZVhKkOmJhCs.roa (raw, json)
Hash identifier: VNnkGpXyr6eGL7JfybHBYDNy/IgJ9DHT3eQv+uxsMBo=
Subject key identifier: FD:71:AC:7E:CD:68:AC:08:4D:4F:AE:B1:65:58:4A:90:E9:89:84:2B
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0807
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_XGsfs1orAhNT66xZVhKkOmJhCs.roa
Signing time: Tue 29 Sep 2020 10:06:44 +0000
ROA not before: Tue 29 Sep 2020 10:06:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38844
IP address blocks: 210.60.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2055 (0x807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD71AC7ECD68AC084D4FAEB165584A90E989842B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:43:8c:14:67:63:01:7e:7a:90:fc:88:15:84:
57:9b:8a:d8:c6:e7:78:bc:d0:36:d1:0b:40:ee:ef:
47:4d:86:4c:42:e7:61:d9:ea:9c:8b:29:48:b0:48:
44:f4:bc:a7:51:2f:20:e1:a9:d9:b0:d6:de:f9:c8:
25:4c:71:d6:ca:37:4c:e2:42:8f:8f:52:e8:2d:3f:
10:81:3f:6a:01:5c:36:11:42:a8:a4:dd:b3:c2:a2:
50:3b:53:d6:f7:58:55:7d:7b:8c:da:f1:d6:4d:7f:
b1:c2:0b:ae:12:31:d3:80:e6:f6:81:50:61:30:51:
bb:1a:94:c2:71:48:ca:38:87:8c:e6:0a:0a:17:75:
0d:74:81:0c:27:5f:22:23:4b:8a:0a:f2:2d:b6:cc:
96:0e:ef:99:3c:7c:e1:52:21:79:e4:05:60:7e:76:
8b:f6:a0:84:56:b3:65:91:bd:6d:37:37:33:36:f1:
3e:00:f4:c6:23:eb:ac:31:db:ff:ce:2f:47:1a:87:
cc:6b:e5:1b:08:5d:95:74:19:60:ee:e2:7b:7b:6a:
67:99:fd:08:3e:c1:63:b3:6d:94:04:88:16:b6:6f:
b6:fc:81:78:07:60:a9:2c:1a:26:8c:1b:c0:57:82:
8e:87:48:cc:d9:3c:bf:8d:c0:11:2d:e0:22:5f:de:
73:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:71:AC:7E:CD:68:AC:08:4D:4F:AE:B1:65:58:4A:90:E9:89:84:2B
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_XGsfs1orAhNT66xZVhKkOmJhCs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.150.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:2d:d8:6d:ac:be:7e:d5:7f:de:33:94:22:73:7e:d5:3a:04:
d1:0e:bf:f8:0e:49:ac:f1:66:40:c1:a8:8d:49:71:ec:75:d7:
4b:f7:f5:6f:fd:3b:3e:fd:e6:2b:99:ab:e5:cb:cf:b1:bf:bc:
ea:95:d6:22:c2:01:24:5c:08:64:96:b9:30:44:32:bb:35:86:
6e:8d:8b:f7:13:97:f2:96:42:db:2e:2c:4c:fe:e1:c4:95:5f:
a4:46:da:07:f7:3b:ab:32:f4:6a:19:f1:68:6e:a1:32:79:43:
0d:37:4d:11:01:eb:7b:6c:a9:9a:7c:ee:40:50:a9:b9:b1:b7:
e6:13:a8:bd:fd:e5:4b:44:d1:61:82:e5:c5:3b:ba:77:5b:55:
32:73:6b:8a:ff:7f:64:0d:87:67:dc:96:91:e1:23:e5:10:fe:
a0:c4:f1:c4:0e:cf:6a:7a:04:f5:39:b1:3c:86:10:29:a0:a0:
00:f9:fd:66:42:ce:fd:54:29:d2:04:e4:25:4f:4d:8c:d8:4b:
f4:e3:31:62:c1:39:45:da:31:41:34:56:17:d3:fa:dc:b3:e2:
90:f3:3f:51:f0:fe:d9:f3:2e:24:62:e7:3b:e4:61:a9:e0:b4:
b0:0f:9a:93:84:2a:a7:fe:17:aa:42:ee:d4:76:87:65:42:9c:
a9:5f:00:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org