Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/icnu8UtZsTrzD3tzU39WU0zWQfI.roa
File: icnu8UtZsTrzD3tzU39WU0zWQfI.roa (raw, json)
Hash identifier: IHlD3t5JMe5lgNUD30bHzFuO7oLjqmqAVVK1zWmXW4g=
Subject key identifier: 89:C9:EE:F1:4B:59:B1:3A:F3:0F:7B:73:53:7F:56:53:4C:D6:41:F2
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A8B
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/icnu8UtZsTrzD3tzU39WU0zWQfI.roa
Signing time: Wed 29 Sep 2021 02:41:21 +0000
ROA not before: Wed 29 Sep 2021 02:41:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 192.83.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2699 (0xa8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=89C9EEF14B59B13AF30F7B73537F56534CD641F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ff:19:33:b5:a8:83:97:c9:3a:48:bf:38:81:
c3:50:31:e9:df:08:a9:4b:9c:b9:66:a5:ba:8a:ee:
75:20:50:9a:0a:8f:1e:75:e5:38:32:c4:15:2b:85:
36:fc:f2:b9:a1:98:0f:84:a6:df:b6:06:c4:90:85:
bd:c6:5a:56:41:8d:9a:5a:7a:1a:83:41:6c:e6:b0:
e1:48:bc:04:cd:30:15:c9:44:5d:57:bf:7c:da:50:
c3:db:c2:0b:7c:63:27:b8:67:23:7d:e2:ae:40:d5:
a2:d6:71:0c:f9:2d:d4:90:d0:af:e9:d1:c0:30:e4:
a8:e7:6a:8d:ce:ae:6a:c7:ef:15:b0:2d:12:a5:7e:
ad:52:5b:49:bb:34:21:60:24:e6:a4:3c:26:40:a3:
00:bb:9b:60:e8:5a:63:a1:f3:d0:87:e7:10:d8:ea:
5e:cc:f5:52:3b:4c:a0:a6:a6:d1:3d:e2:8a:49:d6:
01:cd:cc:c2:60:c8:60:38:b0:9d:c2:ba:3b:1e:c4:
76:33:15:35:ce:d6:b8:c4:bc:da:47:94:52:a0:20:
ac:e3:0b:ac:26:aa:61:97:7a:09:a8:6c:9b:a2:4c:
6c:a5:6e:be:58:6e:fd:ab:36:c8:36:7b:dd:b1:2e:
59:74:65:61:36:aa:fd:ff:d1:aa:78:f9:b2:72:a7:
34:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C9:EE:F1:4B:59:B1:3A:F3:0F:7B:73:53:7F:56:53:4C:D6:41:F2
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/icnu8UtZsTrzD3tzU39WU0zWQfI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.168.0/21
Signature Algorithm: sha256WithRSAEncryption
60:ab:e4:1d:d0:b5:43:52:f9:7d:94:df:c0:07:92:0e:6a:6d:
c3:2a:a9:1c:4f:8d:64:11:5f:2e:32:e8:43:aa:02:af:8c:9e:
5e:b5:52:80:74:f0:73:d8:8e:1f:3c:1a:c6:b2:bf:08:a2:90:
b9:c0:a4:90:74:9f:2d:e6:16:32:95:ec:d1:e7:05:83:2e:2b:
1d:87:eb:71:57:ae:25:79:72:be:92:e5:c8:fe:4f:89:9f:3b:
3d:51:47:6e:36:ff:5b:91:56:36:c6:0e:24:a5:8c:cd:66:83:
d5:12:79:8e:ad:97:b5:8a:91:f5:b2:e0:84:85:32:fd:df:1c:
9b:a3:b2:00:2b:51:a6:74:b8:f6:8e:39:c4:2f:8d:e1:7c:e3:
16:9c:07:f5:b7:39:5d:fc:d9:af:4c:52:95:b9:5d:6d:81:27:
87:88:a8:7f:18:0d:7c:d8:23:c2:f7:05:d5:4b:94:ea:66:ce:
c0:ba:9d:b9:8f:3c:60:0c:6b:e6:6f:3f:3c:a0:b3:3d:ea:d8:
99:fb:be:54:8a:e3:80:6b:fc:dc:91:fe:03:12:f3:7b:f4:4d:
46:bb:da:0e:1a:a1:06:8b:45:03:ea:d0:00:4b:d0:3c:35:12:
ee:1d:e6:08:44:76:79:6f:ea:0a:35:40:d7:14:96:27:3d:53:
4f:90:5f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org