Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/qrfLolF6MF_Xm1ZXGVCD11HvmdY.roa
File: qrfLolF6MF_Xm1ZXGVCD11HvmdY.roa (raw, json)
Hash identifier: 90LxSwXF5mAXL0+DWOVHwUbaFZha628pzNSn/s4G/94=
Subject key identifier: AA:B7:CB:A2:51:7A:30:5F:D7:9B:56:57:19:50:83:D7:51:EF:99:D6
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0A0A
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qrfLolF6MF_Xm1ZXGVCD11HvmdY.roa
Signing time: Sun 07 Feb 2021 12:40:01 +0000
ROA not before: Sun 07 Feb 2021 12:40:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.243.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2570 (0xa0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:40:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AAB7CBA2517A305FD79B5657195083D751EF99D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1e:b3:2b:1b:1e:4c:77:94:0d:a4:af:c8:46:
54:6e:18:08:ff:6d:33:9d:fe:18:69:d5:a1:cd:4e:
6d:89:ef:c0:02:86:ff:ef:3f:2c:f4:d9:1f:90:bb:
f9:c1:7b:27:a3:62:05:67:20:4e:41:c4:dc:dd:19:
93:c4:11:cc:88:ec:c0:6c:61:20:41:cb:ad:ce:d3:
89:f9:bf:e1:e1:0a:e3:c4:92:5e:e0:99:fe:df:43:
3f:d2:a6:7b:b0:95:a2:3a:09:93:3f:51:f0:2e:50:
c2:6b:d4:b5:47:37:f7:eb:05:9c:34:b2:8c:7d:79:
c3:78:9c:44:fa:09:d9:c2:95:8c:e9:83:27:56:89:
79:6f:f0:bc:d2:e7:27:ba:ae:a3:04:1b:d1:8a:56:
11:95:91:2d:93:19:53:95:22:1c:55:9f:5f:1d:88:
8d:f5:e7:86:25:1f:44:02:10:69:44:84:21:d8:c9:
35:6e:26:e5:de:c5:91:71:c1:7a:b6:45:dc:6d:b4:
5a:68:d2:e2:38:97:c8:13:c3:b8:5f:2c:78:79:fe:
37:62:59:1f:63:f0:df:6b:e2:5f:be:6d:bb:82:cc:
ff:39:b9:89:d5:c1:3a:66:55:a7:a4:74:d8:c1:d4:
b2:dd:42:19:2c:31:fc:ac:59:04:f0:dc:d4:f0:f7:
e7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B7:CB:A2:51:7A:30:5F:D7:9B:56:57:19:50:83:D7:51:EF:99:D6
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qrfLolF6MF_Xm1ZXGVCD11HvmdY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.0.0/18
Signature Algorithm: sha256WithRSAEncryption
19:8c:b4:3e:09:43:87:46:62:dd:ef:db:00:96:4c:d9:d2:ee:
25:a8:15:a1:d7:e6:bf:54:f8:10:f4:7d:8d:43:58:2a:86:f5:
73:de:54:88:b4:cb:85:a0:8e:65:65:4f:91:41:f4:90:c6:2b:
e9:ac:52:55:59:87:63:7d:38:09:68:fd:25:ec:d9:6b:34:96:
24:58:da:b0:09:95:43:58:37:71:04:8a:9c:13:0e:cb:fe:32:
57:f9:19:e8:50:7f:8e:fc:d6:ca:1e:52:62:62:67:ec:cd:9d:
9e:91:81:96:55:cf:3e:51:8c:e2:fe:ef:2e:1c:8b:ef:f4:d1:
2a:d1:48:c0:03:f9:d7:d0:0b:6f:88:1b:82:be:b2:9b:ce:ef:
28:28:80:37:43:02:e7:3d:57:79:73:7a:2a:7a:a0:a1:47:fc:
8d:f7:6e:2b:7a:61:33:d2:83:2f:07:6a:75:35:65:51:ff:b3:
6e:c9:b1:6a:c4:12:3d:07:9e:91:1b:4a:83:0d:00:41:42:2e:
87:55:09:53:a4:1f:4f:83:18:13:e8:8f:3d:3d:45:2a:dc:8d:
ba:b8:f9:0b:59:a8:9f:80:e3:ef:c4:c4:1d:6a:ef:0e:28:56:
77:35:02:16:ce:f7:72:e5:94:d4:dd:ef:55:29:9a:84:33:a1:
e0:b6:74:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org