Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/pRLOISF0zZHS4CE-SsAGxqINDi8.roa
File: pRLOISF0zZHS4CE-SsAGxqINDi8.roa (raw, json)
Hash identifier: gw9scuvSA+P1W46rkiK+2ugSbSDHoW8olKf+MtMyFWc=
Subject key identifier: A5:12:CE:21:21:74:CD:91:D2:E0:21:3E:4A:C0:06:C6:A2:0D:0E:2F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AE0
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pRLOISF0zZHS4CE-SsAGxqINDi8.roa
Signing time: Wed 29 Sep 2021 02:41:12 +0000
ROA not before: Wed 29 Sep 2021 02:41:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 210.59.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2784 (0xae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A512CE212174CD91D2E0213E4AC006C6A20D0E2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ad:de:0d:d5:73:4f:f9:9a:76:be:76:60:72:
47:4a:31:9f:4f:84:82:a0:03:0a:e4:bd:71:10:fb:
46:67:1a:40:cf:c2:f5:ee:ac:3f:a3:24:58:04:09:
e2:e2:85:b7:6c:97:64:18:5d:32:3b:f1:1d:bb:54:
24:de:11:a8:e1:36:ec:0d:6c:d7:e1:3f:1e:45:ab:
6c:12:ef:b9:bb:37:79:68:d3:5f:50:39:63:08:e5:
50:12:3a:f6:9a:48:fb:2f:2f:1b:2e:b1:61:1f:64:
dd:19:86:2a:f7:85:8f:a0:6d:11:1c:9e:0a:76:77:
80:7a:b6:77:d0:07:cc:be:4a:2b:0d:34:26:8d:99:
61:83:6a:c4:2e:47:29:b1:42:c3:6b:f6:70:20:c0:
f6:c7:59:78:25:d1:39:25:18:16:8c:a7:1a:6d:b1:
5b:b5:be:80:e7:55:c7:d2:21:8e:18:15:89:23:87:
4c:d3:38:8a:1c:de:f3:46:02:3d:0f:78:02:17:4c:
ed:2a:85:7a:9f:b3:15:a1:07:3f:8a:d7:62:08:f9:
c2:b0:08:2d:bc:51:9c:ac:35:c0:b9:7b:7d:46:79:
73:be:20:a3:33:08:e7:65:c6:53:71:dd:e6:0c:74:
83:b9:14:c7:b0:3f:76:08:b3:39:49:2e:c5:e4:27:
ae:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:12:CE:21:21:74:CD:91:D2:E0:21:3E:4A:C0:06:C6:A2:0D:0E:2F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pRLOISF0zZHS4CE-SsAGxqINDi8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0a:3c:e5:27:60:8c:e3:e2:88:14:ab:80:2c:2b:b2:fc:c0:c3:
6b:ae:4e:1b:b0:4a:7f:ad:0a:d7:16:50:4b:cf:0e:ce:5e:9a:
82:4f:6f:2f:1f:c9:28:d6:25:29:65:bc:41:56:cb:11:5d:b1:
91:cb:43:59:55:2e:4c:89:98:97:6f:2d:69:d2:0f:00:8c:a0:
e8:5f:ab:06:57:4a:bf:79:71:ec:f2:86:3f:5a:81:b1:35:33:
01:b9:64:25:de:09:0e:69:f9:97:b4:26:fa:a7:a0:2d:59:a9:
2d:5b:6d:65:f5:48:3e:4a:fc:1e:47:10:9a:c2:90:35:e2:58:
74:26:08:dd:e2:da:e9:a8:49:db:1a:37:a1:e7:84:dc:98:e7:
8b:f8:eb:59:d6:e3:85:8c:33:47:08:2d:82:54:ec:f2:7d:c1:
dc:f0:af:9f:9a:98:f3:b1:1b:dc:63:8f:05:2b:4e:aa:c7:ba:
c7:db:63:0f:3f:d5:81:76:a2:19:95:d4:7e:e7:b8:8a:84:3f:
5d:42:75:63:75:77:48:dc:00:1e:c5:45:2e:0c:70:08:c0:c7:
f5:27:42:84:87:87:9e:9f:c4:02:e5:ee:c5:18:ac:dd:24:7f:
09:eb:9b:82:f4:76:aa:db:dc:58:c9:8c:bf:ee:ec:6f:fc:c5:
37:e3:11:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org