Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/tyL2NCRym3hiLrJZq68g9Rr0hGw.roa
File: tyL2NCRym3hiLrJZq68g9Rr0hGw.roa (raw, json)
Hash identifier: vjSXAacP2+x8EbIsDTXr1HGK1zuL0KjWTOBli76OwFk=
Subject key identifier: B7:22:F6:34:24:72:9B:78:62:2E:B2:59:AB:AF:20:F5:1A:F4:84:6C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ACA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tyL2NCRym3hiLrJZq68g9Rr0hGw.roa
Signing time: Wed 29 Sep 2021 02:41:04 +0000
ROA not before: Wed 29 Sep 2021 02:41:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131150
IP address blocks: 120.119.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2762 (0xaca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B722F63424729B78622EB259ABAF20F51AF4846C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:76:b6:66:52:9e:7a:24:31:f1:5d:d7:cc:15:
80:26:81:66:7f:0e:49:a9:b2:1a:81:74:34:76:e1:
6d:05:0f:6b:8f:28:6e:7e:a3:d4:d8:8d:29:6f:d1:
73:a7:6d:0f:bd:47:6d:b6:55:ba:e2:bd:dc:1e:e0:
96:31:47:f0:2e:33:ca:eb:f8:4f:3e:38:20:8e:bb:
49:41:e8:61:8d:1e:f6:69:94:71:ab:e6:eb:dc:35:
d2:39:e0:ff:ae:c1:7f:30:fb:fe:b5:e3:25:64:d7:
f0:5d:c3:56:91:58:7b:84:2c:0a:50:09:77:3f:9c:
06:13:48:d9:38:e7:ee:3d:64:6c:da:66:72:ed:23:
59:ba:41:1e:4a:67:31:db:f5:ab:32:74:72:de:f9:
08:3b:84:16:43:cc:98:e7:4e:1e:56:86:27:2d:93:
90:d2:6e:af:87:23:ad:21:0d:88:76:d4:61:b7:17:
64:db:44:bf:cb:5c:6c:9a:b2:2c:67:c5:a2:6d:1b:
fb:a0:72:eb:a5:a3:29:a7:e7:a0:bb:64:49:92:4a:
53:5a:5c:4c:38:fd:7d:32:69:a6:39:b2:25:c8:88:
b6:d8:1c:10:76:56:fb:75:4c:ed:59:aa:c4:ea:ce:
50:c9:d2:d2:aa:69:fd:7e:38:ca:f9:05:47:e6:2c:
d4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:22:F6:34:24:72:9B:78:62:2E:B2:59:AB:AF:20:F5:1A:F4:84:6C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tyL2NCRym3hiLrJZq68g9Rr0hGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.119.254.0/23
Signature Algorithm: sha256WithRSAEncryption
81:df:bb:bc:ef:25:38:20:06:77:ad:8b:67:d3:da:ad:53:bd:
53:79:23:a8:b7:af:c0:10:47:a5:8b:a3:0b:55:fe:4b:7f:fd:
5a:41:4e:7e:04:b8:e2:43:e1:5d:77:b9:59:89:1f:db:58:ee:
33:03:ab:7d:10:28:d1:3f:c3:d6:87:14:ee:09:b7:8f:20:04:
2e:a6:76:00:db:2f:8e:18:e6:e4:52:5d:24:9c:35:45:95:a9:
0d:82:82:d5:3b:0f:c8:eb:3f:8e:2e:56:7a:65:2d:c9:68:e9:
b5:49:c7:b4:d4:94:d4:83:0f:1a:e9:34:9d:90:28:dc:ae:03:
82:d5:91:ed:58:6f:62:39:10:08:1a:18:81:3a:16:b5:f2:0a:
f1:d2:2a:b0:21:cb:6c:c8:7b:c1:d3:82:40:80:8c:17:5a:f6:
30:29:4e:af:ca:0e:87:8d:2a:32:e2:89:a4:29:9c:48:94:e5:
2c:a9:b3:1c:9c:d5:9f:27:c4:e0:22:12:c0:b7:9a:be:79:a3:
7f:52:82:f7:d4:69:fc:a3:bc:2b:82:5e:b3:d6:30:2c:2b:ef:
fc:9a:20:4d:26:79:27:8a:94:c1:8e:88:ab:d8:57:5f:f7:5d:
06:1d:8e:70:7f:e0:6e:a6:ca:46:c8:45:73:79:64:16:0e:35:
74:14:de:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org