Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/husGFaZStD9-8tqID8knXiTcHi4.roa
File: husGFaZStD9-8tqID8knXiTcHi4.roa (raw, json)
Hash identifier: CPFUUrL6AkMYb5nF8zB2ZChLdOUEXYXebq2q8kf7/Dc=
Subject key identifier: 86:EB:06:15:A6:52:B4:3F:7E:F2:DA:88:0F:C9:27:5E:24:DC:1E:2E
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09BA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/husGFaZStD9-8tqID8knXiTcHi4.roa
Signing time: Sun 07 Feb 2021 12:38:35 +0000
ROA not before: Sun 07 Feb 2021 12:38:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 120.126.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2490 (0x9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:38:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=86EB0615A652B43F7EF2DA880FC9275E24DC1E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5b:f9:4e:75:80:fd:4e:af:ad:5f:72:4e:41:
f4:65:9c:2c:a1:f8:03:75:63:08:23:3e:c2:fe:fb:
9c:1f:57:c4:86:32:95:1a:c4:c4:a3:52:d1:87:de:
6e:5f:31:90:06:d9:34:a0:c2:27:d4:cb:91:7d:77:
a4:cd:ff:6e:a8:00:47:9b:36:ae:41:9f:e6:62:e2:
bd:c7:5f:c3:5d:f9:9d:23:63:01:1b:fd:52:7a:46:
48:f3:49:c6:f1:b4:12:10:22:ce:24:13:e0:9f:6b:
64:7f:b0:7c:52:ce:a4:4a:3c:53:20:1b:b8:85:01:
d1:27:d2:94:30:aa:f7:c3:47:23:b3:ff:f3:08:81:
b5:5c:49:08:e6:66:c5:ab:a2:77:b3:08:6c:b6:9c:
a3:4f:72:84:14:04:4f:76:ab:b4:e2:c9:07:d1:af:
17:0b:54:df:e6:a6:eb:ca:bc:4f:fe:cf:fe:45:80:
29:16:b2:af:27:a3:aa:92:c8:de:52:75:5e:07:74:
20:f9:43:13:8b:13:b2:d5:ff:de:4a:7a:a5:5d:18:
7b:47:83:aa:24:30:0e:07:cd:3f:d2:9c:14:9b:b4:
6f:dc:ef:7f:4b:d3:1f:61:66:36:78:28:0e:4b:9a:
14:b4:09:10:ad:69:e6:18:3b:64:e2:3b:79:d8:3c:
1a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EB:06:15:A6:52:B4:3F:7E:F2:DA:88:0F:C9:27:5E:24:DC:1E:2E
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/husGFaZStD9-8tqID8knXiTcHi4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.32.0/19
Signature Algorithm: sha256WithRSAEncryption
29:5c:78:28:6f:eb:96:bd:ca:4a:09:49:ca:4e:6f:eb:fc:8e:
f4:75:8a:cb:20:0a:ac:bf:10:e5:87:f2:f0:43:89:39:a4:fe:
1e:fa:14:ae:42:8e:c7:84:c9:55:f4:4e:2a:7b:8a:51:0c:90:
40:5c:19:49:b1:af:56:ae:f7:12:03:48:b8:7e:68:de:17:68:
d9:7c:4d:09:03:fe:6d:7a:db:41:12:83:1d:89:08:4b:29:cd:
8a:2d:da:32:69:18:2d:a1:34:d4:ac:d4:7d:2f:d4:dc:da:79:
e4:58:74:32:06:93:9c:52:d5:13:7e:a4:93:b4:fe:25:fc:02:
00:72:65:c4:1b:2c:32:69:81:e4:ee:07:6f:00:bb:48:2d:0a:
bf:b6:0e:2b:a1:63:2e:af:15:dc:d2:4d:96:ea:a0:05:79:23:
cf:92:ab:58:dc:69:1e:23:63:d3:5a:d1:35:b1:d5:4f:11:05:
52:e1:2d:37:0f:c1:5b:a0:62:16:6d:59:ad:77:58:07:3b:66:
2d:a8:a2:0a:b4:00:8b:d3:f4:92:21:2b:fd:68:8d:65:2a:1e:
ea:e0:18:3e:ac:62:3d:dd:76:a9:52:fb:d4:e2:20:3e:4d:e1:
ab:b6:c5:b7:39:c1:3a:78:95:e3:f9:f9:ad:a7:44:a7:c3:12:
23:de:84:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org