Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/qmhmW5PwwSP8JkPv-m8bvqD52Gk.roa
File: qmhmW5PwwSP8JkPv-m8bvqD52Gk.roa (raw, json)
Hash identifier: HerL/uBOR/n/HxZGF+OsWyLee4iSTvzCZ6qNdnrKciY=
Subject key identifier: AA:68:66:5B:93:F0:C1:23:FC:26:43:EF:FA:6F:1B:BE:A0:F9:D8:69
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0A04
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qmhmW5PwwSP8JkPv-m8bvqD52Gk.roa
Signing time: Sun 07 Feb 2021 12:39:55 +0000
ROA not before: Sun 07 Feb 2021 12:39:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.70.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2564 (0xa04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA68665B93F0C123FC2643EFFA6F1BBEA0F9D869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:aa:62:14:e9:f9:2b:dd:f5:b3:19:c5:4a:
c7:29:5d:14:5e:10:ca:a2:13:58:f8:73:27:0e:3d:
5a:b4:25:b3:05:36:02:b8:93:70:65:62:e7:79:54:
0a:a1:bf:12:57:d8:c9:84:59:cc:fe:2d:db:2b:9f:
6d:49:b0:fb:0e:60:d8:15:f4:15:13:61:ed:84:3c:
29:66:cb:06:2c:89:33:bb:09:e3:89:c0:7b:72:5d:
7c:04:81:a6:ee:23:12:ed:76:c6:7c:e7:3c:70:8b:
30:73:1b:4a:2d:45:54:f9:a4:c4:bc:1c:39:28:b3:
5c:d4:f5:05:c0:ac:32:a3:1d:6f:de:9b:18:07:ae:
76:04:e9:00:50:5a:09:82:9b:19:fc:01:4a:93:ce:
75:60:68:e3:da:78:8f:f6:9b:e7:e4:dd:01:8e:29:
11:b3:8f:3d:7c:b1:20:42:df:05:8e:7e:0f:09:14:
0e:76:65:0c:d1:5c:23:66:f4:a2:8c:3a:bc:f6:17:
f8:92:d4:12:90:4a:ef:78:95:a6:a5:65:5b:c1:b0:
c4:9f:e8:cd:31:04:1b:a9:3e:7a:47:14:e4:b0:0a:
be:4b:3b:90:ea:88:2c:c9:da:77:ac:90:d8:c1:f7:
71:5b:65:67:85:30:71:bb:cb:00:e8:97:23:73:84:
99:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:68:66:5B:93:F0:C1:23:FC:26:43:EF:FA:6F:1B:BE:A0:F9:D8:69
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qmhmW5PwwSP8JkPv-m8bvqD52Gk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
94:b8:45:13:ca:0d:df:53:fd:f1:82:69:28:2e:6d:32:ed:46:
8a:79:42:ba:0d:b0:97:a6:77:92:d0:04:7f:55:1c:8c:85:5b:
ba:96:ac:c1:ea:aa:69:be:df:55:90:21:c1:7b:96:9b:4f:d4:
84:ff:ad:85:2c:d8:97:12:8c:c7:22:3b:0b:15:42:8f:2f:c6:
d1:d1:4c:60:8e:d6:ed:ee:f4:c2:d6:46:00:08:77:b5:b8:ee:
ec:b1:cc:c8:49:81:2d:e0:38:e0:bf:93:d7:1e:8a:54:5f:ef:
5d:70:6f:53:b0:73:2f:b3:46:1c:a0:0e:51:60:12:29:28:08:
b7:f7:00:98:51:ad:dd:9d:35:df:a3:9a:cd:37:62:aa:a2:b1:
8c:1d:85:7d:7f:af:a5:58:3f:52:f7:4b:8f:33:c7:8c:05:e4:
0d:13:bb:8c:86:80:9b:c5:cc:6c:d6:03:18:36:b5:b5:a8:d6:
96:01:5b:c7:74:2c:bf:f8:d2:bd:c6:23:1a:7e:fe:d3:ca:d8:
36:1f:85:3f:ed:84:0d:40:04:e4:d9:83:57:b7:d6:51:c6:fa:
a6:e9:97:2a:c6:90:3c:b5:4d:d3:6c:87:42:8e:de:10:d8:75:
5b:d0:16:35:53:73:9a:fb:e4:c4:b9:21:79:8f:94:1f:be:2e:
1e:04:e3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org