Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rOxcMPZHBvwjYk_GDCJm5qZ8dh4.roa
File: rOxcMPZHBvwjYk_GDCJm5qZ8dh4.roa (raw, json)
Hash identifier: k1oMngYQ4Hv2cgaejBy5ZETvPUqjmaOsuXWHIVh+NQE=
Subject key identifier: AC:EC:5C:30:F6:47:06:FC:23:62:4F:C6:0C:22:66:E6:A6:7C:76:1E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09C2
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rOxcMPZHBvwjYk_GDCJm5qZ8dh4.roa
Signing time: Sun 07 Feb 2021 12:42:47 +0000
ROA not before: Sun 07 Feb 2021 12:42:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 192.83.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2498 (0x9c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:42:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ACEC5C30F64706FC23624FC60C2266E6A67C761E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f8:f2:65:f4:9c:3b:e4:cc:db:fe:1b:27:ea:
1e:ad:c5:d2:61:d9:05:63:39:42:bb:d5:74:74:fa:
2f:d0:0c:5a:a2:73:fe:78:64:c8:58:15:44:4c:c4:
0e:13:bb:d9:88:fb:f4:6e:49:e0:45:3c:69:db:88:
1f:ff:9d:60:b8:fc:ee:2d:32:fd:dd:a9:05:63:85:
e9:64:36:05:3a:72:75:d2:35:76:82:19:3d:5e:dd:
e6:9b:28:f2:29:5c:f5:c7:3b:81:ac:e4:b8:4d:7f:
51:2b:4b:7a:fd:aa:ae:ec:60:fb:75:c4:9d:18:81:
ab:b3:66:dd:04:ec:71:e2:1c:f1:ab:a4:fb:61:bb:
8b:49:8d:8a:61:48:b4:fc:67:2d:c1:a9:cf:82:fc:
bf:4c:30:9d:fb:bc:d7:6b:a4:51:a2:0a:c8:d4:f6:
f9:ae:ad:50:8c:34:e2:d7:25:0d:52:6e:d3:fe:f2:
4f:b4:c6:e3:14:64:3a:41:76:7a:a6:38:f7:9e:ea:
28:f8:6e:e7:02:37:d9:64:9e:6b:32:6a:ed:3c:de:
c4:0c:01:78:85:e2:eb:c4:a5:d1:9e:ea:e3:0d:7e:
fa:cf:e1:fc:b4:bd:af:4f:da:df:cf:8f:0e:82:ec:
78:bf:de:08:78:17:6f:b3:51:f4:b3:61:a0:37:8f:
04:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EC:5C:30:F6:47:06:FC:23:62:4F:C6:0C:22:66:E6:A6:7C:76:1E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rOxcMPZHBvwjYk_GDCJm5qZ8dh4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.166.0/23
Signature Algorithm: sha256WithRSAEncryption
78:e1:32:37:ac:7d:99:d7:b3:7b:be:98:5a:6c:03:08:d8:d7:
47:fe:07:e6:eb:74:0f:20:29:14:f8:14:a1:dc:4d:c7:23:be:
f6:60:5a:e9:89:4f:63:a6:a7:d1:9e:e7:b7:74:66:9f:55:f0:
13:c6:bf:b2:ca:8a:4b:1a:dc:c4:21:17:2f:ad:b2:03:6e:77:
07:a7:00:21:08:b2:41:4b:8a:b9:0c:84:fd:bd:1d:ba:90:d9:
3c:20:af:48:6e:fe:f3:68:dd:da:fb:1c:e2:da:59:8e:16:16:
64:cf:52:6a:ae:1b:8f:30:36:b9:f6:3c:f0:df:e7:87:58:c4:
14:6c:e0:56:01:a5:27:71:b7:49:ff:51:7c:1b:5f:a2:01:87:
5b:97:fb:e0:90:f6:96:a0:bc:9f:77:0c:5e:f5:be:c5:7f:b5:
55:9c:2d:9f:d6:f2:42:aa:4e:ed:4e:8d:d2:09:c2:25:d1:85:
ad:c3:bd:62:08:8b:92:df:8e:70:cd:3d:46:48:40:f3:4c:3c:
7f:28:ac:1d:4d:85:3d:f0:4f:9a:35:16:cd:f8:39:c6:48:31:
c5:81:f3:0b:df:2e:2a:27:fe:17:24:2b:d1:9f:0e:ab:22:09:
9d:b5:8f:c0:ab:5c:96:c2:94:5f:da:e0:5c:0d:17:91:eb:bd:
a6:1b:4f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org