Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/tInonTvQfgnx2MOfMfEByKwD9Tk.roa
File: tInonTvQfgnx2MOfMfEByKwD9Tk.roa (raw, json)
Hash identifier: IcBEB9NUdHoKIfwKA7mMLRpiE0pKz9m8Jx6UE7SIybI=
Subject key identifier: B4:89:E8:9D:3B:D0:7E:09:F1:D8:C3:9F:31:F1:01:C8:AC:03:F5:39
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07E6
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tInonTvQfgnx2MOfMfEByKwD9Tk.roa
Signing time: Tue 29 Sep 2020 10:06:36 +0000
ROA not before: Tue 29 Sep 2020 10:06:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 203.64.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2022 (0x7e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B489E89D3BD07E09F1D8C39F31F101C8AC03F539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f0:ac:ee:4c:4d:d2:fa:d0:bb:e6:71:eb:6a:
af:fc:ed:8c:68:98:8a:0c:01:34:b5:cf:78:78:e2:
c9:e6:5d:3c:e6:af:93:e0:0e:f7:41:ed:e3:79:a9:
ce:2a:cb:89:93:99:38:46:9d:73:6d:30:f1:de:fa:
5e:9a:3a:2b:98:a0:94:49:5c:8a:ae:61:ea:4f:0d:
0a:e9:23:2e:2f:66:25:97:5c:a9:f2:cf:59:26:29:
82:34:58:a4:1f:e8:32:b4:3e:d0:93:35:a6:a2:b2:
04:38:0b:d3:66:0a:9b:9c:e0:ad:74:b8:39:97:83:
0d:e5:e6:11:4b:1b:f8:5f:1d:33:00:89:b5:8c:04:
16:67:ce:f6:ef:ab:23:ab:98:fe:bd:d3:cb:4e:ab:
c0:70:b4:1d:8e:3e:ed:0d:dd:b9:d4:94:41:95:fc:
c7:48:a8:bd:b4:db:1d:fa:6d:cf:a1:4e:bb:5e:e9:
3f:79:4a:1a:ab:81:f0:72:32:b9:33:2f:8b:7f:16:
3e:04:f2:a3:b4:35:43:1f:d6:d5:e5:30:1d:d3:df:
14:09:61:f5:62:f2:55:6d:8d:07:1e:5d:53:07:30:
6f:4a:eb:7a:a2:8b:02:b7:7d:1f:54:07:05:7f:05:
6c:64:41:dd:f1:d7:dc:eb:48:08:2b:2d:2a:3f:48:
79:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:89:E8:9D:3B:D0:7E:09:F1:D8:C3:9F:31:F1:01:C8:AC:03:F5:39
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tInonTvQfgnx2MOfMfEByKwD9Tk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:71:e0:f4:f6:d0:8b:b1:ef:ea:1c:19:7c:f2:fe:5f:2f:ec:
8f:30:92:ac:11:2e:93:b5:f5:53:86:ec:3f:4f:37:3f:60:82:
f1:d7:19:73:ba:a7:ce:e1:2d:48:c9:02:ed:d9:84:fe:6f:36:
48:74:48:ab:49:19:cb:45:29:27:82:d8:52:b5:a1:1b:f6:17:
61:f6:5d:d9:95:0e:54:d7:82:05:ca:5e:6a:c0:c7:84:98:23:
39:ea:a6:c2:8b:6a:ec:ea:cd:63:d0:40:8e:8a:23:e8:7d:b1:
62:2c:78:6b:28:0f:c6:4a:a0:e7:95:53:b0:6c:da:1d:b3:12:
e0:1f:fa:c8:6c:e9:70:c3:66:cb:a5:38:df:20:12:62:a8:5a:
fa:75:40:0c:21:ea:05:06:7d:34:fd:1d:a2:ee:98:7c:e4:4a:
a0:7c:19:6b:ce:d6:c3:50:9a:58:da:c0:7a:5c:d6:1b:09:3c:
c7:c1:fa:46:5b:52:72:08:3a:d3:d8:ab:23:16:4a:5b:dc:6a:
fd:02:24:7e:f0:12:1d:24:ee:86:95:dd:41:6e:db:d3:59:cc:
08:a7:16:70:26:5d:76:fe:20:53:30:97:83:2c:8e:5a:b1:41:
b3:1b:b0:4d:2f:bb:43:78:fa:1e:8f:59:15:42:11:ca:e7:d4:
48:a1:c9:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org