Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nTuZJcBE-0cVuIfHdt69W1gsfwI.roa
File: nTuZJcBE-0cVuIfHdt69W1gsfwI.roa (raw, json)
Hash identifier: 0Rt7UXum+UMIkwNlFK0LnSgClTHQxVBs2sws+yO5Q9g=
Subject key identifier: 9D:3B:99:25:C0:44:FB:47:15:B8:87:C7:76:DE:BD:5B:58:2C:7F:02
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nTuZJcBE-0cVuIfHdt69W1gsfwI.roa
Signing time: Thu 15 Sep 2022 02:41:24 +0000
ROA not before: Thu 15 Sep 2022 02:41:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 163.13.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9D3B9925C044FB4715B887C776DEBD5B582C7F02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:d1:9e:ca:36:4a:a8:f2:e3:1e:ac:aa:bb:
3f:f9:e7:76:93:88:dc:79:68:99:aa:37:5d:87:70:
cb:db:07:e0:fa:55:45:de:48:6a:3e:db:89:10:eb:
83:6a:f9:50:9c:a2:6f:86:bd:46:23:19:8b:cf:1f:
fb:ba:88:48:8c:c8:13:92:cf:5a:d0:93:15:a2:57:
8c:45:65:a8:37:80:55:a0:77:c2:29:92:8e:3f:74:
6f:e9:e3:d2:58:55:23:58:15:b9:4f:eb:6f:08:3a:
99:76:44:98:c0:70:90:32:55:57:ca:dc:ed:de:a1:
21:ea:4b:21:ec:c1:a9:76:42:6f:f5:a4:cb:bc:50:
e4:39:09:92:30:85:47:da:8d:9d:04:68:dc:a3:a5:
6c:14:23:ff:12:80:f6:f1:88:28:0c:12:a1:6a:8c:
8f:89:62:df:33:5c:65:ef:24:ec:54:52:57:15:31:
cb:66:9b:af:e2:e5:40:5a:2b:0f:3b:8a:99:eb:12:
7f:65:43:9e:6f:f9:e6:01:f9:b7:71:8f:2a:d0:d0:
e0:f0:a9:26:c6:d6:5f:c8:d9:5c:13:7e:40:ac:d9:
00:13:f7:e2:29:bf:bd:6b:97:39:3f:be:cd:48:e0:
6b:6f:f6:02:b0:5b:2a:17:34:ee:04:ca:85:1a:12:
f5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3B:99:25:C0:44:FB:47:15:B8:87:C7:76:DE:BD:5B:58:2C:7F:02
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nTuZJcBE-0cVuIfHdt69W1gsfwI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.13.0.0/16
Signature Algorithm: sha256WithRSAEncryption
28:54:66:e6:e3:e0:88:53:41:ff:c9:28:39:34:af:a1:95:00:
8f:dc:e5:f4:d6:72:6e:76:67:d1:e4:44:00:5e:89:8a:f0:75:
7c:16:f6:f2:14:99:4c:c6:8b:d6:f8:ad:56:99:44:57:5a:4e:
47:de:93:d8:87:71:84:f0:83:19:c0:8f:67:4f:59:79:cb:a9:
92:84:c0:c1:5f:66:8e:05:a0:31:79:b3:bf:59:b3:86:0a:61:
57:08:13:ee:a5:33:a9:37:35:bb:25:5e:68:95:35:77:1a:fe:
3d:3a:fa:eb:30:a5:a6:0e:e7:c6:cd:f7:74:cf:6d:3b:43:71:
2d:cf:e9:87:fd:a7:9c:c1:48:e8:ab:b2:24:d6:9a:78:25:2d:
d5:4b:28:e6:ed:49:c4:55:4a:1a:c0:4a:aa:89:8d:d1:c0:8c:
23:eb:71:42:41:9d:03:6a:a2:94:96:f5:91:c8:3f:85:35:98:
b0:db:87:58:77:69:60:33:fd:c6:48:13:15:9a:32:e8:11:bd:
36:f5:18:28:2d:9d:b7:f9:f6:84:24:6b:ab:a7:db:8b:1f:9e:
ea:35:d4:82:c3:45:65:fe:63:bb:6b:c4:44:97:2c:58:53:f0:
e0:29:e2:67:7d:d9:81:d7:b1:a2:ba:60:b0:00:0e:b3:3d:02:
37:b8:0f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org