Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rh76XmKgKnjzVJlbUvPIymcEgnQ.roa
File: rh76XmKgKnjzVJlbUvPIymcEgnQ.roa (raw, json)
Hash identifier: bcmbl2eggpY1iGKruy3QpOL+fwLpOk5XIFyaqIPKx/Q=
Subject key identifier: AE:1E:FA:5E:62:A0:2A:78:F3:54:99:5B:52:F3:C8:CA:67:04:82:74
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07CB
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rh76XmKgKnjzVJlbUvPIymcEgnQ.roa
Signing time: Tue 29 Sep 2020 10:06:53 +0000
ROA not before: Tue 29 Sep 2020 10:06:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 192.192.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1995 (0x7cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE1EFA5E62A02A78F354995B52F3C8CA67048274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:36:c2:79:1c:7a:b7:4f:53:da:29:36:ce:d4:
5b:3f:44:ef:a5:7d:f5:e0:9b:96:ea:96:77:8b:dd:
08:96:c2:e4:95:80:9c:74:f3:cd:61:dd:71:db:eb:
ab:42:61:0e:fd:42:4a:1c:f0:56:aa:aa:d1:dc:3a:
d4:78:a9:1f:4f:4f:f9:29:c8:60:f0:4d:0b:9c:9d:
42:c4:94:62:11:25:6c:d3:6b:9d:0e:14:82:af:ac:
de:d9:9f:1c:66:0c:19:7c:f9:5f:dd:a8:57:e5:34:
8b:d4:0b:2f:62:2c:d3:45:ee:89:45:29:04:fa:3f:
60:0c:99:b7:44:d0:43:8a:a4:d4:1f:27:47:14:72:
27:16:2e:b7:28:39:e9:f2:16:86:95:ec:a6:ea:29:
c8:9f:2e:a0:d8:87:f4:ef:cc:01:1e:b7:35:9f:d0:
24:36:4b:47:8e:6e:6a:bb:d5:4f:cc:36:3b:48:d0:
1d:86:1e:15:61:81:05:9e:7c:ee:cb:e3:f5:73:58:
1e:0c:16:3b:fe:b1:e0:53:d7:e7:42:1c:2a:29:df:
19:f5:83:28:b6:97:56:9b:ae:66:83:eb:02:b4:12:
52:a6:02:1f:a7:93:c3:85:36:9c:79:81:b4:5b:a3:
a6:bb:74:ac:bf:24:f5:82:dc:a3:83:71:c5:bf:a0:
15:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1E:FA:5E:62:A0:2A:78:F3:54:99:5B:52:F3:C8:CA:67:04:82:74
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rh76XmKgKnjzVJlbUvPIymcEgnQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.192.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1b:79:8c:2f:a9:eb:28:36:50:c1:79:c3:ad:98:e9:f0:cf:5b:
a9:00:75:df:05:94:a1:35:1a:2a:52:48:42:7c:c4:2a:a9:55:
53:db:fb:4d:17:ba:4a:4f:c0:e7:7a:ed:a0:f2:c6:99:99:95:
36:c3:57:6f:a5:25:7d:b1:02:28:37:31:b7:c7:f3:8d:2b:c7:
9f:e1:2c:b6:a0:29:98:d2:ef:4e:23:39:91:73:49:40:f4:48:
dc:43:2c:e2:ad:cf:55:35:a5:af:41:12:d6:8f:3f:40:f5:00:
d3:65:6d:d4:f1:77:c4:88:7e:19:76:f0:d2:eb:4d:f7:5b:19:
b8:20:74:26:0d:7a:69:1d:9a:2c:41:9a:aa:63:ab:f5:9f:c9:
59:dc:bb:5f:f3:3b:b1:60:77:df:0b:46:13:df:ae:04:06:e1:
f4:f8:15:cd:63:80:ab:a3:a6:a0:43:25:fc:cf:fd:fe:86:4f:
87:a8:93:f1:7c:03:ce:ed:46:61:de:81:b8:ab:00:90:a9:c4:
11:98:6a:b8:7e:50:ab:86:cf:75:a3:ef:4c:8d:90:42:4a:0b:
d3:a9:c2:f8:0c:3c:da:c8:56:8d:d2:a5:e8:22:3d:7d:94:1f:
2d:57:04:2a:47:58:17:02:95:ac:97:fd:d5:e0:b3:d9:1b:17:
b5:01:6b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org