Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/cNV9tUvT1sDbuIuOsfFYoPQxTTY.roa
File: cNV9tUvT1sDbuIuOsfFYoPQxTTY.roa (raw, json)
Hash identifier: 8I49cSqWH7PsNgxYxhiquyemfOgXjbA0v9aWOt8OTtE=
Subject key identifier: 70:D5:7D:B5:4B:D3:D6:C0:DB:B8:8B:8E:B1:F1:58:A0:F4:31:4D:36
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09E6
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/cNV9tUvT1sDbuIuOsfFYoPQxTTY.roa
Signing time: Sun 07 Feb 2021 12:39:25 +0000
ROA not before: Sun 07 Feb 2021 12:39:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 163.32.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2534 (0x9e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=70D57DB54BD3D6C0DBB88B8EB1F158A0F4314D36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b1:2f:2d:a7:2c:bb:dd:4c:e9:6b:c0:19:1f:
47:44:cb:39:25:a1:e1:3d:b6:e6:8d:53:1a:15:bf:
6e:01:70:8e:85:4a:a4:c1:60:11:4f:8a:b3:1d:f0:
c7:36:6a:1b:4c:75:4b:b5:68:f0:bb:6b:53:56:30:
62:f4:36:a9:6a:38:11:28:9d:cc:56:f2:8c:61:93:
45:67:c1:90:e0:67:bf:bc:2d:42:b8:c4:4c:2f:0d:
f2:bb:5f:49:df:12:fd:d7:bf:2b:5a:de:98:a5:b5:
66:2f:4f:1d:b2:80:c6:88:c1:da:d5:fc:e2:ad:a0:
93:63:d2:fe:68:99:98:5e:db:83:d4:23:38:3b:bb:
2e:94:8f:14:1d:c9:5f:be:8e:94:7e:56:09:f9:19:
79:55:ac:7f:90:77:42:dd:0c:95:66:7f:a8:28:cb:
ae:ee:b8:14:e0:bd:2d:6a:04:f9:2c:42:72:60:2c:
7f:2d:8c:ee:58:72:81:96:ef:fb:df:5a:4e:07:ab:
0f:dd:57:cc:eb:d0:58:85:1f:d3:5a:2c:07:4d:ee:
5f:4e:53:b5:b6:3a:ed:05:16:e3:10:ad:90:81:a0:
92:78:4e:03:a9:a8:24:c1:37:59:bd:32:05:e6:22:
61:d3:1a:4c:38:7e:b6:af:6d:f9:18:f7:87:8e:d3:
33:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D5:7D:B5:4B:D3:D6:C0:DB:B8:8B:8E:B1:F1:58:A0:F4:31:4D:36
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/cNV9tUvT1sDbuIuOsfFYoPQxTTY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.200.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:0c:cc:d1:68:64:28:28:07:72:27:c0:d1:cd:a2:a7:db:0c:
e5:41:7e:24:e8:66:80:90:a8:fc:b0:57:54:50:25:70:ff:aa:
ad:89:ab:78:fa:88:0d:ba:cb:52:d7:61:9b:94:4e:ea:60:2b:
bc:d3:be:6d:9a:79:f0:62:6e:c9:36:f1:4e:40:37:04:94:56:
88:bf:1c:f5:a9:48:2a:97:98:e3:08:a1:89:eb:b8:5f:d4:3b:
5f:97:69:f2:a8:96:63:2b:79:32:69:b9:c8:24:8d:e4:ed:4f:
4f:a6:bb:a7:64:12:c3:00:2f:1b:8b:94:ec:fa:be:8f:ed:83:
62:c0:48:cf:54:71:9d:fa:05:b2:22:fc:0c:64:cc:e5:08:2f:
13:e6:8d:a7:0e:5a:6b:93:48:72:b2:03:1c:fc:e0:3d:61:45:
21:86:bb:47:c6:90:20:57:6e:cf:ce:86:15:1c:0e:9d:43:81:
5c:8f:51:a1:92:1a:06:c3:15:ee:6d:6f:b3:eb:4f:55:e7:1f:
40:9a:f3:4b:b4:94:bf:55:b2:3a:04:e7:da:4c:60:2d:23:2a:
3d:cf:46:6f:a5:f6:d7:81:21:2c:4c:30:23:13:8f:b4:36:0c:
fc:55:de:46:d1:ca:16:e5:5e:52:2c:54:a7:2a:e6:a0:74:f8:
ff:66:2b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org