Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rmi3RHpzJqrqYqLufVDbiobPkGo.roa
File: rmi3RHpzJqrqYqLufVDbiobPkGo.roa (raw, json)
Hash identifier: DoIFyxBi6ZV0uQgmgkayAjKbvDr2sZ8YqbrOyOMoQhY=
Subject key identifier: AE:68:B7:44:7A:73:26:AA:EA:62:A2:EE:7D:50:DB:8A:86:CF:90:6A
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07BC
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rmi3RHpzJqrqYqLufVDbiobPkGo.roa
Signing time: Tue 29 Sep 2020 10:06:49 +0000
ROA not before: Tue 29 Sep 2020 10:06:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 192.83.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1980 (0x7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE68B7447A7326AAEA62A2EE7D50DB8A86CF906A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9d:6e:21:c1:b3:07:e2:58:6e:d1:b9:bc:8b:
7c:a3:42:55:96:9f:8b:1f:d3:c4:02:f8:4f:a6:05:
b8:6e:ba:cf:42:87:89:c3:a6:88:6c:49:b4:17:7f:
f5:c9:30:ef:5c:be:24:74:79:15:d9:1c:22:b4:5a:
83:aa:3e:4b:69:53:2e:24:9b:e4:3e:e6:b7:4c:6d:
d0:5d:4d:e2:ba:4f:1d:37:1f:fb:31:fc:b7:a8:73:
4e:47:12:73:e2:c4:57:f3:e1:13:7f:a4:f2:cf:24:
d4:98:99:b5:e6:64:98:7f:66:33:b3:67:3c:a2:13:
22:12:fb:1c:52:bb:e9:94:ee:6a:4b:1c:8b:2b:6d:
47:46:f7:e5:5a:a0:46:a6:b3:de:c8:76:c0:df:c6:
36:89:d5:5a:36:cf:b4:a9:b3:60:b3:28:d3:84:df:
a2:7d:60:b3:0d:a1:fb:e7:12:de:7e:d7:5c:8c:45:
fe:da:07:90:37:bd:5d:6a:e2:89:dc:08:77:13:16:
82:90:50:67:1a:fb:cd:bf:fe:88:3d:d9:c4:38:24:
e8:ee:ce:ec:75:4a:7f:4a:43:d1:9e:1a:e3:0f:2e:
d0:f4:70:2d:f0:db:1e:cf:28:cf:b2:a4:a1:86:7a:
bc:ae:5f:f5:77:8f:7e:34:d0:0c:ae:82:09:29:8e:
1d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:68:B7:44:7A:73:26:AA:EA:62:A2:EE:7D:50:DB:8A:86:CF:90:6A
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rmi3RHpzJqrqYqLufVDbiobPkGo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.168.0/21
Signature Algorithm: sha256WithRSAEncryption
89:9d:18:51:1d:d7:2e:3d:8f:54:6f:b4:54:94:0f:b7:4f:31:
2d:96:ef:ab:3e:aa:f5:b0:5f:29:1f:5a:0c:0e:97:1e:fe:9b:
34:a8:4a:83:37:70:28:04:f0:34:0f:19:6a:0c:7b:b4:74:97:
c8:8c:30:23:d8:d9:1c:46:ac:e1:64:8c:32:4c:b9:e9:72:66:
d3:ea:5b:1e:82:67:81:7d:52:85:ba:10:5b:ef:f9:ff:dc:d4:
13:1b:5e:4f:df:7f:78:21:8c:2a:8a:77:c6:75:2a:09:fe:ee:
09:f5:e2:2f:3a:08:e8:6f:ce:cc:87:43:b5:c5:dc:43:3a:92:
0c:c8:0b:02:aa:fe:f2:dd:08:df:3f:48:3e:e0:77:ea:6a:30:
03:f2:b1:67:d7:6b:b3:a7:29:29:3b:6d:45:c3:f3:e7:10:3b:
b0:8d:c1:73:ab:99:0d:06:09:fb:7b:05:a9:80:65:27:4d:7a:
f4:32:e1:77:8b:9d:94:0e:d5:30:b0:74:bc:29:4f:2e:a6:ca:
d7:f1:b5:54:c1:66:b8:29:f2:e0:2f:12:0b:c1:7a:9f:00:3e:
94:8e:47:54:de:79:b3:ff:2e:af:3d:ec:75:60:5c:bf:6a:c4:
f7:79:21:8e:54:7a:9f:68:d4:88:b1:db:ec:da:f6:1b:7e:0c:
a8:9b:04:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org