Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/n9T6z1ML0pGswDO1RJ2P5fzfe-4.roa
File: n9T6z1ML0pGswDO1RJ2P5fzfe-4.roa (raw, json)
Hash identifier: tLotTHZ8cBEZPbDbVu7g6Mql8k5xfjovCUgXT+6z3bk=
Subject key identifier: 9F:D4:FA:CF:53:0B:D2:91:AC:C0:33:B5:44:9D:8F:E5:FC:DF:7B:EE
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09F4
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/n9T6z1ML0pGswDO1RJ2P5fzfe-4.roa
Signing time: Sun 07 Feb 2021 12:39:39 +0000
ROA not before: Sun 07 Feb 2021 12:39:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.59.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2548 (0x9f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9FD4FACF530BD291ACC033B5449D8FE5FCDF7BEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e4:3e:53:d2:ca:bd:a1:dc:78:1a:cf:22:4a:
ec:8c:6d:aa:78:24:27:ca:75:c9:a0:89:61:80:df:
66:96:44:94:dd:ca:fc:5b:b3:e5:c0:ab:7c:79:c0:
c0:c1:1b:ae:cc:f5:f5:4c:4c:37:43:28:44:70:f6:
97:63:c6:58:d2:9f:dc:63:93:c3:3e:3e:c9:17:61:
d8:3d:69:68:d5:cf:db:d7:76:2c:85:97:8c:f8:86:
74:c5:c0:19:a2:a1:41:6f:a6:33:34:ba:82:d3:af:
d1:c4:79:32:04:7b:89:71:2e:4c:d7:e8:6f:ae:fb:
8e:99:1f:d1:e5:35:30:3a:02:24:ba:17:d7:bb:9b:
22:5d:b5:c9:13:c0:95:c5:99:3d:df:91:f5:aa:ea:
ce:b8:ca:0a:93:b2:2a:9f:26:a1:d4:86:2c:ee:d0:
2d:2f:91:14:dc:cc:4b:2c:cd:22:9a:80:93:b0:8d:
1b:4e:4d:68:5e:72:08:c5:8e:81:c8:9f:8d:0a:3b:
72:64:15:70:f3:02:e8:68:06:ce:3c:3f:f6:be:14:
ef:8d:33:ed:19:23:59:f2:fe:53:80:87:0a:3d:18:
4a:5a:8c:10:c0:8a:04:7e:f8:37:6c:25:e3:fe:33:
cc:84:54:d5:5f:be:3e:2a:ca:a4:cf:04:72:33:78:
88:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D4:FA:CF:53:0B:D2:91:AC:C0:33:B5:44:9D:8F:E5:FC:DF:7B:EE
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/n9T6z1ML0pGswDO1RJ2P5fzfe-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a4:78:19:17:17:ea:2a:24:f7:a6:de:49:18:26:9d:e4:49:0b:
a0:87:d7:1b:54:f1:58:64:b9:30:1e:3d:b5:0a:22:c5:44:2c:
b3:62:b9:fa:6c:35:61:6c:ea:66:ea:04:b6:98:57:01:55:61:
82:10:ae:59:c9:b7:1f:f7:b0:19:ff:f0:c1:23:67:4b:62:68:
ab:31:61:5e:e7:d9:85:a1:2a:d0:b2:85:ef:73:65:a5:6f:65:
7e:3b:db:8f:1b:8e:0f:c6:10:15:26:ee:42:63:fc:ca:31:14:
e7:77:48:76:07:68:e9:f4:34:d2:67:b9:51:0e:c0:b6:13:47:
bd:f4:f4:97:b0:34:a2:67:5d:5a:f6:05:44:95:98:1e:58:b4:
e0:fe:06:e8:6b:ea:53:24:18:e4:6c:d9:0b:63:10:da:cd:5a:
91:3c:3e:37:62:f3:46:01:04:b2:30:6d:84:a7:4c:bb:3f:0a:
a2:7c:0c:c3:a9:01:83:83:8e:8c:82:f5:51:da:35:49:90:91:
6e:04:c7:a9:49:71:7b:d9:ec:89:12:2e:1e:f3:d8:71:38:29:
5f:b5:a4:cb:d4:e6:c9:90:a7:2b:80:52:2b:72:5d:63:04:88:
98:f5:1f:b8:c4:d3:b3:cc:6c:cf:7e:41:6b:5f:d7:b2:d4:40:
dc:1d:40:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org