Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/hsrS2rML5BAGvbfqJLBsSBsl7QQ.roa
File: hsrS2rML5BAGvbfqJLBsSBsl7QQ.roa (raw, json)
Hash identifier: n2joZZkOXQRvu78gXKI93NrOAbb1F9EYtRfkHIEP5PY=
Subject key identifier: 86:CA:D2:DA:B3:0B:E4:10:06:BD:B7:EA:24:B0:6C:48:1B:25:ED:04
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0806
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hsrS2rML5BAGvbfqJLBsSBsl7QQ.roa
Signing time: Tue 29 Sep 2020 10:06:44 +0000
ROA not before: Tue 29 Sep 2020 10:06:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.67.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2054 (0x806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=86CAD2DAB30BE41006BDB7EA24B06C481B25ED04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9f:fb:1a:0f:21:12:31:40:08:35:37:48:9d:
27:aa:8d:dd:b1:ce:ad:b5:81:51:b1:f6:20:83:c1:
29:e7:16:f4:26:06:b2:cd:a1:0e:95:fe:cb:2a:9d:
53:f3:f4:62:a4:0b:d8:a3:79:8c:f7:dc:ad:ac:0c:
78:24:49:d8:d6:7b:a0:77:ca:ad:e7:8b:fa:f4:f7:
56:38:9b:0d:72:72:a3:3a:1e:f0:94:ff:9a:d4:a4:
5c:66:d2:23:b0:b9:d3:f2:94:15:a0:13:28:63:3d:
c9:5b:2a:69:c4:83:6a:99:53:af:51:a9:af:9a:ea:
28:37:b7:a6:94:ed:50:cb:9e:20:2e:79:d3:25:c6:
df:98:48:d8:a3:02:e4:f6:f2:13:89:e8:83:89:a7:
45:9d:07:82:cb:22:81:1d:bd:8a:b0:e5:f4:66:b5:
ad:4e:97:eb:e6:13:f5:13:b1:0e:f1:44:a0:a6:33:
2b:0c:d5:a0:57:9e:8d:43:41:a9:8b:33:2c:f3:d7:
ed:67:c7:c7:64:a3:6e:2f:25:1b:fb:9c:24:15:89:
0d:f6:93:18:97:10:e6:e4:3b:ce:5a:84:f2:a3:c8:
fb:1c:83:26:99:10:a2:1e:b6:c3:62:3c:39:f2:d9:
51:23:ba:98:42:5f:66:3e:a0:06:87:7c:9c:82:aa:
1e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:CA:D2:DA:B3:0B:E4:10:06:BD:B7:EA:24:B0:6C:48:1B:25:ED:04
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hsrS2rML5BAGvbfqJLBsSBsl7QQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.248.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:6a:e1:e8:20:9c:49:fb:39:9d:68:fd:85:a4:28:72:85:67:
71:85:23:58:09:fb:eb:b1:02:98:32:8a:5c:fd:73:e3:eb:e9:
4d:34:89:ab:22:65:eb:01:48:55:09:73:c2:6e:c1:b8:f4:6f:
43:f4:66:bb:1e:65:70:2d:dc:ef:4f:e3:4f:6d:94:20:7c:b9:
d0:27:8a:2a:31:4a:8d:6e:97:37:e2:a2:26:a8:af:c3:2a:8a:
7f:2f:3d:da:7b:b1:46:f6:a6:33:cb:6b:c8:26:7b:84:93:55:
96:64:a5:89:71:50:63:65:9d:91:42:31:66:7c:df:68:9d:3e:
61:e6:12:79:3b:04:4b:45:0e:6b:d7:54:78:12:e6:dd:7a:f2:
4d:a3:d4:78:1b:2a:c5:eb:8b:b7:a7:94:95:0c:57:3a:30:bc:
64:ad:ef:f4:46:e7:e0:72:a8:7c:e4:76:4d:2d:ed:02:40:fe:
10:c8:4a:6c:d1:6d:bf:a7:5e:d5:12:9c:4a:bd:24:9b:d3:4a:
7f:0d:9d:ff:14:18:e2:8d:d5:5a:02:42:35:f1:b2:7f:01:ba:
e4:34:79:f2:1e:a8:fc:8a:4b:57:90:c7:3c:ef:58:49:90:34:
42:30:9a:4a:4a:ea:96:1b:75:16:fa:a6:9a:84:28:be:9a:cd:
53:21:97:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org