Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/qS_ECov2Gh-qlPH8o-vJ6ExoIZQ.roa
File: qS_ECov2Gh-qlPH8o-vJ6ExoIZQ.roa (raw, json)
Hash identifier: fOcBlwS11fZfkdAvpFAmb0nhUWMhuJV4bTrI1N4EaX8=
Subject key identifier: A9:2F:C4:0A:8B:F6:1A:1F:AA:94:F1:FC:A3:EB:C9:E8:4C:68:21:94
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qS_ECov2Gh-qlPH8o-vJ6ExoIZQ.roa
Signing time: Thu 15 Sep 2022 02:41:09 +0000
ROA not before: Thu 15 Sep 2022 02:41:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17716
IP address blocks: 120.96.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A92FC40A8BF61A1FAA94F1FCA3EBC9E84C682194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:b7:23:9a:6a:f7:a5:43:7b:2c:09:29:28:
80:3c:a5:73:37:ca:21:b7:be:ae:1f:d8:16:64:72:
c0:ee:67:7e:86:61:2d:8f:7f:39:89:ff:a9:ad:83:
8c:84:fc:ca:43:b5:2c:c8:a3:70:86:0f:ba:19:36:
e7:35:9c:32:35:53:43:11:89:50:bb:55:b6:f3:72:
c8:e5:6d:93:8f:0b:81:60:8c:28:a0:4f:89:92:b0:
97:f7:37:73:41:cb:b4:4c:e2:fc:23:e3:b4:30:8b:
c9:64:e9:98:a3:cc:1c:35:5c:92:68:05:ea:64:7d:
af:c3:cf:e3:10:8c:c7:2f:14:cf:7f:3b:a3:33:f5:
18:fb:38:c8:e4:81:92:92:1f:4d:dc:35:de:9f:5e:
29:c6:83:26:9c:63:d1:e2:e8:00:a1:d7:73:bf:62:
ec:f3:48:b4:db:4a:df:1c:45:78:b1:8e:78:b4:49:
3c:c3:31:d0:1c:77:d2:5f:c3:0e:e7:21:84:e4:35:
4b:ed:c3:30:c2:1a:25:4c:b6:a8:b4:d3:aa:3a:bd:
02:aa:37:0a:89:19:05:17:e1:23:37:77:0a:25:c4:
2a:29:3b:60:b0:cf:56:d4:d1:72:9a:26:54:ef:76:
e9:34:c5:eb:d3:62:86:43:ca:3c:02:74:2e:86:04:
d3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2F:C4:0A:8B:F6:1A:1F:AA:94:F1:FC:A3:EB:C9:E8:4C:68:21:94
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qS_ECov2Gh-qlPH8o-vJ6ExoIZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.248.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:80:f4:88:84:99:ee:37:23:26:21:7b:c3:c9:9e:22:14:7a:
28:97:e1:72:22:96:04:d5:97:97:8e:ef:65:9f:ec:a0:b3:2a:
8d:f3:06:fe:24:89:ec:7b:98:68:e7:7c:e6:0a:e6:9b:4e:ba:
b7:87:66:9b:25:4e:18:71:ec:7d:2d:e1:fe:37:90:93:05:d0:
3d:de:72:b3:1f:6f:4b:0c:a5:b6:a1:74:00:77:bf:85:0a:cb:
5b:32:bb:bc:a3:04:fe:10:c2:f1:95:9c:eb:68:23:89:f4:b3:
e8:99:26:b5:2e:3d:44:eb:44:70:9d:69:c5:77:e1:a9:6d:39:
8e:1f:d0:1c:e6:71:3c:6f:55:59:47:78:df:45:81:2b:51:24:
67:3e:7d:4e:5f:44:a6:9f:28:d8:a1:40:62:44:da:4a:a1:22:
be:66:c3:7c:04:4c:45:9b:49:82:f4:48:65:e5:71:bf:71:df:
4f:aa:12:4d:b1:91:8b:12:ff:f7:32:d5:72:76:47:eb:e3:76:
82:46:29:bc:c5:25:2f:00:00:9b:a5:41:60:35:d0:6b:c1:07:
b2:33:6e:8e:62:09:39:bb:0f:e0:0b:37:d0:13:9b:16:b9:6e:
55:65:4c:2c:1e:a7:67:b8:dc:cb:a0:5a:d2:88:fe:e7:e0:34:
2f:4d:ce:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org