Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ijJx3nU0TKC5AT-hOjX20lPo7mo.roa
File: ijJx3nU0TKC5AT-hOjX20lPo7mo.roa (raw, json)
Hash identifier: BKRSHhXeQ563ZIFj7S+QACKiyU2+8MeBtk0qspKiYjs=
Subject key identifier: 8A:32:71:DE:75:34:4C:A0:B9:01:3F:A1:3A:35:F6:D2:53:E8:EE:6A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09F2
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ijJx3nU0TKC5AT-hOjX20lPo7mo.roa
Signing time: Sun 07 Feb 2021 12:39:37 +0000
ROA not before: Sun 07 Feb 2021 12:39:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 203.72.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2546 (0x9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8A3271DE75344CA0B9013FA13A35F6D253E8EE6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:26:f1:c2:86:2e:6c:f9:2f:87:5e:57:4e:e6:
7f:6d:ec:b9:11:d5:48:9e:10:3a:5b:91:9a:6e:18:
9d:21:b4:70:dd:c2:39:7a:2b:95:50:e4:8d:28:d8:
78:9c:3f:1b:f8:75:6b:e4:71:61:53:1a:f4:c6:08:
9c:fb:36:cf:a5:4f:2e:ee:30:91:14:ea:6e:82:5c:
32:41:eb:91:85:c9:e3:5a:7d:1b:8e:3d:38:2a:7a:
72:17:1c:e9:c6:91:37:53:13:f2:cc:7a:d7:97:8b:
c0:25:0a:3b:7e:28:62:da:27:8e:65:bc:26:dc:c7:
25:33:b2:56:3c:42:e1:93:0a:4e:8c:46:7f:73:f6:
d3:2d:7b:9e:45:6c:ea:c6:32:88:a9:84:e1:1d:72:
04:81:cd:48:5f:1d:a0:62:c3:5c:84:bf:51:60:2c:
d5:e2:b8:16:01:d0:7f:8e:ef:d7:aa:e7:ae:26:37:
be:1e:d0:8f:0f:5a:ac:dd:41:49:60:de:bf:57:eb:
32:6d:e6:2d:38:c3:5a:a0:d5:bd:b3:85:62:43:ee:
14:ea:c0:d7:d7:9f:29:ff:71:85:68:6a:96:16:32:
ae:69:50:a0:de:97:7a:07:0b:1d:a2:9f:22:37:d4:
8d:0a:9c:6d:a9:37:e6:25:0e:5c:e0:a9:da:b4:03:
74:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:32:71:DE:75:34:4C:A0:B9:01:3F:A1:3A:35:F6:D2:53:E8:EE:6A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ijJx3nU0TKC5AT-hOjX20lPo7mo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:31:52:ee:d3:62:56:6d:d2:f4:1c:00:16:91:41:ad:d6:36:
26:f5:be:8d:91:ca:95:a8:b0:87:f2:b4:b9:93:9e:9a:16:1c:
38:61:e9:8d:e3:e5:af:84:35:de:38:21:13:29:1f:15:80:34:
95:ff:c0:2a:40:6c:dc:31:9f:c5:b1:de:9a:9b:cb:96:7e:66:
9e:d8:f3:98:e1:8b:d2:a8:a7:b3:de:57:c0:99:0e:1d:af:02:
38:aa:59:1b:92:2f:a2:13:7a:b1:54:bc:9b:a8:0c:58:a1:57:
1b:6f:05:75:3f:ef:b4:08:cd:5f:33:0b:01:42:96:2a:8f:93:
2f:f9:51:28:61:cf:bc:82:e1:18:56:1f:cc:4b:6b:c7:0f:5c:
8c:b9:48:df:2c:b0:e4:da:d6:b2:45:7b:65:b4:5f:b2:f0:c9:
1f:c2:5b:a7:db:58:24:ce:ec:5a:99:5b:20:d0:59:19:da:91:
bd:3a:b4:89:4f:db:2c:21:ac:99:d0:68:6f:10:18:5a:94:f7:
0c:74:20:30:51:66:73:f1:17:c5:b4:64:37:ea:e4:55:cc:e7:
c2:2c:9e:df:f1:fa:99:89:61:5b:48:0f:62:b3:52:f8:32:72:
3a:4f:d7:45:7d:ee:dc:96:af:78:0c:4b:0f:ed:31:04:73:0a:
e2:f5:2e:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org