Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/iAc5Lp3sW3w_LOJVmP6Z4Z0kKyY.roa
File: iAc5Lp3sW3w_LOJVmP6Z4Z0kKyY.roa (raw, json)
Hash identifier: QCxQoAObumz7dCXHBTM+XEI/Wspu+I4hv+HaWb5BZxE=
Subject key identifier: 88:07:39:2E:9D:EC:5B:7C:3F:2C:E2:55:98:FE:99:E1:9D:24:2B:26
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ADA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/iAc5Lp3sW3w_LOJVmP6Z4Z0kKyY.roa
Signing time: Wed 29 Sep 2021 02:41:10 +0000
ROA not before: Wed 29 Sep 2021 02:41:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131150
IP address blocks: 163.32.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2778 (0xada)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8807392E9DEC5B7C3F2CE25598FE99E19D242B26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a9:8f:ea:ed:13:24:66:9d:aa:f3:1e:dc:39:
a9:9f:72:57:ce:35:f8:1a:06:e9:f2:d5:c8:9a:62:
6d:45:28:e7:34:58:76:19:f5:38:1a:91:b7:b8:a3:
ac:5f:2d:30:92:ea:19:9e:f9:e9:57:71:48:86:17:
e9:e7:1d:30:e2:3f:de:d8:5c:7d:d9:53:b0:45:98:
3b:25:20:53:53:6b:71:d3:bf:72:40:2e:52:92:1b:
22:d5:e9:bb:da:3d:8f:d6:c8:88:90:be:3a:a0:9a:
cf:0c:99:4d:9b:d0:51:ef:f9:fd:44:7f:f2:ff:f9:
0f:6e:92:6f:0c:07:14:84:4f:23:0b:3e:bd:c8:e4:
ce:54:6e:d0:49:d8:d9:70:71:81:65:b5:7f:31:39:
95:ef:de:a3:e0:97:c4:59:6b:b4:a0:24:31:d1:1c:
5c:db:1b:6d:f5:a9:ad:22:de:b3:f1:00:19:c2:6a:
f1:df:71:33:b4:5d:6d:db:a9:4e:93:ea:ba:2a:7a:
2e:0f:05:c6:ac:7b:2f:7d:b1:b7:0f:c1:a1:1b:c7:
88:d5:36:46:4c:66:8c:dd:ba:71:b1:f1:fa:e2:40:
13:32:68:41:79:b2:28:4f:92:7e:e3:ea:b0:6e:24:
72:7c:50:0b:92:db:d4:90:97:11:1d:01:77:8e:9a:
64:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:07:39:2E:9D:EC:5B:7C:3F:2C:E2:55:98:FE:99:E1:9D:24:2B:26
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/iAc5Lp3sW3w_LOJVmP6Z4Z0kKyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.200.0/22
Signature Algorithm: sha256WithRSAEncryption
56:e0:68:97:a9:58:99:09:f2:d0:32:ee:fd:a7:4f:2a:e8:3f:
cf:5d:7c:8a:31:9c:21:ff:d1:f9:54:a4:4e:80:58:e8:4b:8f:
8d:ad:ab:fd:ed:40:c8:06:ef:92:bd:06:c6:68:fa:2c:80:8e:
6b:8e:92:23:4e:96:db:11:b1:a5:a8:ce:6f:99:73:8c:67:7b:
4a:e9:41:b6:d7:79:11:34:5d:54:ab:67:5c:fd:d6:5e:b1:18:
f9:48:dd:1e:ef:8c:c2:6d:1e:2e:77:d5:0d:02:07:b6:ce:a3:
24:d1:60:3c:8f:31:a4:f0:bb:26:96:ab:21:1b:e1:ea:45:01:
ca:49:b9:34:0e:7f:b9:af:5c:aa:51:7f:5c:dd:f8:fd:d5:3b:
36:67:ed:04:30:98:f2:78:57:b8:16:97:c3:c1:cd:97:60:2b:
16:bb:60:be:74:7f:9f:92:19:90:6e:1c:df:dc:52:92:6b:1e:
ec:b1:66:87:01:1f:e1:62:1d:0c:b0:d2:3b:c2:a7:5a:0c:61:
72:38:84:2d:b9:59:b3:a7:b5:36:f5:18:16:48:67:64:a8:5a:
b3:1c:99:f7:03:0a:43:c0:d8:78:64:a0:2a:54:e1:3c:4d:e2:
cb:9d:75:71:f1:9a:bc:de:0f:ff:c5:41:c0:51:5d:f2:2a:fd:
93:2c:1d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org