Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ma_GnoiWNYTt_U7aWyag-9bfTMs.roa
File: ma_GnoiWNYTt_U7aWyag-9bfTMs.roa (raw, json)
Hash identifier: bvg6EGqu118s+qacvgcKoEJEAqIWQyd+InwOLVeoL6E=
Subject key identifier: 99:AF:C6:9E:88:96:35:84:ED:FD:4E:DA:5B:26:A0:FB:D6:DF:4C:CB
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07EF
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ma_GnoiWNYTt_U7aWyag-9bfTMs.roa
Signing time: Tue 29 Sep 2020 10:06:38 +0000
ROA not before: Tue 29 Sep 2020 10:06:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.70.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2031 (0x7ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=99AFC69E88963584EDFD4EDA5B26A0FBD6DF4CCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ce:4c:e8:74:d4:59:b7:63:ec:4b:a5:b2:9e:
5f:9a:1e:7a:6a:a4:f6:5c:68:1e:f0:fc:d2:d3:bd:
71:80:bd:2f:1a:d7:53:08:79:e4:b3:a0:5d:0e:c7:
3b:b2:d4:27:b0:78:19:a3:09:85:a9:e0:c7:c4:57:
89:c2:e8:1d:3a:83:9f:16:77:d2:ef:f0:12:2e:72:
46:98:43:56:ba:ef:15:ba:22:04:bb:8e:80:2a:9d:
d5:4d:c2:5e:39:53:57:e4:29:71:e1:94:87:a6:89:
9a:21:38:76:bb:26:f6:03:26:67:ef:5e:5c:8c:c0:
f8:27:ab:4d:aa:2e:67:6a:4b:18:5d:f8:5b:9e:5b:
ad:a6:2a:ff:b3:d6:f7:a3:ae:8e:6d:54:72:a4:25:
e4:14:78:17:42:2b:70:58:c8:b5:d7:84:84:ca:e1:
57:6e:f2:0c:f3:43:b1:c5:70:9b:02:fa:f9:0b:06:
17:73:79:5a:f8:e8:59:a6:93:a5:78:02:43:01:0e:
e3:fe:83:80:31:4c:46:77:2c:06:bd:33:5d:ae:01:
34:a9:fb:18:aa:b2:34:50:e0:ab:c9:2a:70:f8:e7:
9b:12:15:18:a5:c4:ec:6f:e3:37:d0:69:04:0c:c0:
8a:f0:cd:ed:be:36:d0:21:87:2f:33:75:ac:2b:22:
9e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AF:C6:9E:88:96:35:84:ED:FD:4E:DA:5B:26:A0:FB:D6:DF:4C:CB
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ma_GnoiWNYTt_U7aWyag-9bfTMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:b5:da:28:e4:2c:e9:cb:82:62:c3:b9:1f:e3:9e:59:b2:59:
0d:2c:a3:35:c9:31:4f:91:8a:56:b7:80:6d:fc:53:e1:32:ff:
77:bd:28:0e:ea:65:df:74:f4:e8:01:cd:f3:8e:16:72:f4:60:
bd:1f:36:92:0d:dd:e6:6d:77:a5:28:c2:c5:f9:3e:bf:81:dd:
63:e1:33:74:6e:90:3c:2a:36:72:3f:1a:d2:ac:6b:a4:b2:c7:
fa:d0:7e:07:70:e9:7e:92:c7:83:29:2d:25:e8:2a:e1:e6:b9:
4c:fb:dd:48:e0:71:2a:49:12:b6:90:b7:7d:53:4e:a3:60:85:
b8:e6:eb:36:c3:9d:f9:d3:61:25:79:04:8e:6c:a0:ae:bc:1d:
6e:73:01:ba:ba:fe:37:48:2b:40:b2:62:5a:46:80:ae:0a:e7:
19:28:ea:ea:07:29:73:8b:f5:0e:b6:db:d1:f5:2b:6d:f6:a0:
60:56:87:27:5d:61:e7:63:a8:4b:13:7d:7a:18:c3:e1:b6:37:
c9:a9:2d:60:89:16:f6:cc:d6:d8:74:b9:2c:47:68:d1:f8:15:
ab:a7:01:7f:0f:b2:5b:5b:8d:05:4c:7a:fd:11:63:14:eb:31:
7a:46:95:f3:70:fe:63:04:29:64:1d:d7:47:5d:25:58:2d:82:
d3:de:8f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org