Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/lMLqZXLg0Renzb7u6dGMNyw9OzA.roa
File: lMLqZXLg0Renzb7u6dGMNyw9OzA.roa (raw, json)
Hash identifier: fDhG9LEgRMwmJ4LTroT1SG672a29ishJ0aCbRXgRVvk=
Subject key identifier: 94:C2:EA:65:72:E0:D1:17:A7:CD:BE:EE:E9:D1:8C:37:2C:3D:3B:30
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AC3
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lMLqZXLg0Renzb7u6dGMNyw9OzA.roa
Signing time: Wed 29 Sep 2021 02:41:01 +0000
ROA not before: Wed 29 Sep 2021 02:41:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17716
IP address blocks: 120.96.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2755 (0xac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=94C2EA6572E0D117A7CDBEEEE9D18C372C3D3B30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:26:b4:e5:d3:c9:0e:fd:99:44:af:77:ac:c3:
13:4e:cf:a3:e1:4c:e5:c3:5a:f1:21:35:94:86:29:
ea:48:b2:60:e5:c3:96:a7:66:d1:fe:53:f0:ff:ff:
e1:a3:ea:d7:5f:96:46:bd:0f:d2:f8:c1:c9:ad:1c:
b5:91:f8:91:94:dd:b6:18:b3:b5:75:ea:a5:dd:04:
59:0d:a4:93:61:32:15:99:20:77:d9:35:f0:9c:c4:
20:5f:97:69:b0:86:59:d5:eb:15:e9:f4:f8:5d:4e:
f0:a6:6f:fe:21:15:7e:89:18:83:94:fc:a8:69:1d:
f7:e2:e4:de:59:08:ad:4e:bc:ae:a9:96:dc:1c:0d:
ca:11:b5:68:83:0c:e8:44:d8:4f:6d:c3:48:1d:ad:
9a:4a:3a:d9:0e:e9:87:c5:c9:d2:ec:3a:3c:b8:77:
c6:1b:f9:8e:59:9e:5b:e3:55:c2:50:8d:f4:5e:68:
d5:da:f4:aa:9d:0c:dc:3e:b2:f5:71:9c:f5:41:2b:
7b:2e:ce:5a:1b:5e:64:b6:b4:40:00:e9:2c:25:a3:
44:46:84:29:a3:e9:13:d8:a8:6a:62:39:4d:c7:6c:
14:11:e7:4a:e9:d2:b9:ee:88:a8:3a:68:58:f7:86:
45:1b:5c:5e:51:6d:ee:4c:8e:f5:b0:42:67:d6:95:
eb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C2:EA:65:72:E0:D1:17:A7:CD:BE:EE:E9:D1:8C:37:2C:3D:3B:30
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lMLqZXLg0Renzb7u6dGMNyw9OzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/19
Signature Algorithm: sha256WithRSAEncryption
36:88:9d:87:ae:41:83:98:b5:ab:66:75:36:04:a3:eb:9c:39:
91:3b:5b:1e:03:d7:c0:3c:c0:aa:f9:7f:81:22:a4:71:6b:b2:
db:d4:15:3c:50:d3:d5:c7:eb:46:f8:85:21:03:b7:da:69:31:
2a:da:7f:a4:66:1d:c9:38:be:ff:e9:cf:23:80:13:d3:bb:1c:
41:c3:a4:d9:a6:ae:a5:0a:ad:28:59:46:e2:9f:8c:ef:6a:cb:
30:eb:9c:40:7a:8c:3b:de:e7:36:ab:14:85:b7:b5:f1:62:79:
d0:39:a3:d8:67:21:b8:44:0f:17:62:3c:2c:15:7f:5f:67:4e:
cd:1e:0e:9b:59:6d:9c:44:63:00:28:ac:26:4a:87:e4:ad:14:
e8:f3:cb:c8:4d:a7:3c:4c:59:14:71:1c:f6:bb:51:6b:0b:1c:
6e:96:21:67:60:f5:c2:ef:a3:8a:dc:aa:ca:a8:04:c8:ef:df:
e7:45:c5:4a:52:24:86:a9:af:9a:95:1c:44:09:33:3e:22:29:
5b:7c:a7:fd:41:29:c0:9b:29:ca:dc:01:95:84:f4:a3:fb:2a:
a4:f8:82:2d:f3:c6:dd:70:35:96:42:3b:2a:b5:22:83:af:47:
52:98:8a:d5:1f:c2:c5:78:31:d8:f1:4e:82:10:34:6e:ba:44:
fd:07:b4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org