Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/grjjUKj3cGb3O7yIZuZxKf4k6ss.roa
File: grjjUKj3cGb3O7yIZuZxKf4k6ss.roa (raw, json)
Hash identifier: pOKhPL2sppCKboNHg6nkiNH2Cpvz9qOC1emrWQCPxEM=
Subject key identifier: 82:B8:E3:50:A8:F7:70:66:F7:3B:BC:88:66:E6:71:29:FE:24:EA:CB
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09FC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/grjjUKj3cGb3O7yIZuZxKf4k6ss.roa
Signing time: Sun 07 Feb 2021 12:39:47 +0000
ROA not before: Sun 07 Feb 2021 12:39:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.62.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2556 (0x9fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82B8E350A8F77066F73BBC8866E67129FE24EACB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:af:71:a3:37:8d:e4:34:ee:8c:90:77:f1:78:
9f:ac:b4:e8:95:c7:7b:26:b0:68:d5:fa:f8:5a:4e:
db:13:ae:57:c5:c0:6f:6e:f3:fa:47:37:03:0b:30:
ad:d8:82:30:43:d1:4b:08:23:3b:c9:9f:fe:f2:82:
2a:39:50:d8:5d:ae:3c:2c:4f:2b:8a:82:b5:15:d7:
b5:08:be:23:95:3f:1f:e9:2c:e4:5d:88:b2:24:01:
56:40:97:ef:36:8c:a3:d3:77:da:0c:e0:14:7f:61:
92:ed:b0:c8:6d:c9:49:b7:eb:f7:b7:e5:93:c9:48:
f5:14:d2:e2:f1:c9:e6:f3:2f:3a:f9:fc:06:38:4a:
29:8c:71:9a:fe:45:b6:dd:2f:17:08:b5:bc:65:34:
0a:a5:85:93:68:e0:b0:d5:4d:26:1f:df:1a:1a:36:
00:f1:cb:e9:6e:82:98:cc:41:99:b2:98:38:f3:9a:
8e:a1:39:72:1c:94:64:ee:b2:2a:ca:42:23:c0:1b:
a9:6c:63:4e:c5:3e:d7:eb:ef:7c:8c:c7:c7:a5:89:
73:cd:53:51:58:fe:5a:f2:75:26:fe:fc:30:da:cf:
8e:15:2b:0c:0c:57:ef:fe:cb:1f:d0:50:7d:9d:13:
69:f0:47:13:80:58:54:b1:6c:c0:bb:b8:9b:b2:15:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B8:E3:50:A8:F7:70:66:F7:3B:BC:88:66:E6:71:29:FE:24:EA:CB
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/grjjUKj3cGb3O7yIZuZxKf4k6ss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:fe:c0:68:c8:de:9a:5b:80:a6:72:a5:72:65:82:02:5a:e4:
20:f8:15:20:c5:5b:07:01:91:35:eb:a7:5a:01:f9:62:94:07:
42:63:53:ce:0a:f1:2a:29:c8:04:01:97:b0:9a:af:24:4c:1e:
55:dd:98:72:f9:97:3c:09:d0:8a:2d:48:9a:73:76:d6:f3:1f:
a5:d2:d1:62:2a:5a:f6:d3:85:53:3e:c8:15:11:3f:0b:f3:65:
8b:f4:4a:16:64:ef:bb:6d:3c:23:c3:6f:1b:4f:cc:1b:56:17:
8b:a3:6b:b3:94:21:3e:f8:9f:3c:05:24:76:a0:da:23:5c:37:
ab:b0:56:05:7b:db:a6:a6:a1:b2:0a:3d:f7:a9:fb:4d:19:d7:
97:ea:be:7b:09:30:90:3c:9a:c7:d2:9b:f3:5d:d2:28:51:a0:
88:ad:39:37:fa:e2:01:07:dd:e4:f3:cf:91:02:24:bc:ee:4e:
07:9c:e3:c4:c3:4b:a8:5b:7d:f8:2b:5d:c6:33:74:a5:a8:86:
e3:18:5f:f8:a5:c0:8e:6c:a1:cb:f9:bb:11:e3:ba:5d:08:d4:
95:cb:a4:af:c8:cb:8a:21:e2:9a:17:b6:87:26:1b:35:7f:29:
6a:ff:11:8e:49:fd:c5:cb:34:3a:75:d3:42:18:04:25:8f:5b:
f1:65:70:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org