Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/uS7zNP29-XxtEL-VxVbOrvQ4-Bg.roa
File: uS7zNP29-XxtEL-VxVbOrvQ4-Bg.roa (raw, json)
Hash identifier: J6b2RHc8BQBvq7cIDvmdCZBAWwdlQVoH9jX79Z8FGPc=
Subject key identifier: B9:2E:F3:34:FD:BD:F9:7C:6D:10:BF:95:C5:56:CE:AE:F4:38:F8:18
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07FF
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uS7zNP29-XxtEL-VxVbOrvQ4-Bg.roa
Signing time: Tue 29 Sep 2020 10:06:43 +0000
ROA not before: Tue 29 Sep 2020 10:06:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.59.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2047 (0x7ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B92EF334FDBDF97C6D10BF95C556CEAEF438F818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7f:d8:7a:c1:1d:98:7f:44:f2:54:5a:13:69:
f0:74:00:c7:a6:1b:ad:74:23:06:12:fd:28:b7:e8:
0c:b6:b1:c6:e2:52:fb:86:2f:c1:14:ee:ef:88:38:
f2:d9:67:17:42:4f:f4:bb:e8:ec:77:65:2a:71:f1:
8c:a9:c3:8a:e9:ef:c9:f8:e3:38:ca:3b:63:b1:b9:
6d:e7:95:9a:22:cc:02:0a:33:82:65:c2:f6:c1:0b:
72:41:07:42:33:9c:08:86:4b:87:09:6e:91:6b:f8:
b0:17:a1:70:76:b9:00:1c:24:f2:8d:7d:45:3f:87:
85:8a:50:ca:a0:b0:3b:43:93:70:db:96:bd:d4:41:
cd:9c:41:12:98:f4:66:4a:22:31:e2:54:da:24:bc:
11:06:25:fd:e8:6a:bf:ca:67:ba:57:ae:e5:8d:07:
d0:8c:1c:1b:35:30:1f:b9:c8:3a:57:60:80:e7:a3:
6a:d3:cc:66:b0:57:49:f3:8e:db:8f:e3:f8:22:de:
e4:f5:a7:17:32:ab:bf:81:d8:cb:b9:ac:af:30:9f:
c8:5d:6c:e4:61:8d:47:b0:df:af:f3:69:4c:40:d3:
a8:b7:43:c7:f3:06:25:ec:c6:d4:a8:54:4b:b7:ba:
0e:b8:e9:c1:0c:3e:81:6b:29:7f:1e:7c:c3:22:8e:
25:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2E:F3:34:FD:BD:F9:7C:6D:10:BF:95:C5:56:CE:AE:F4:38:F8:18
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uS7zNP29-XxtEL-VxVbOrvQ4-Bg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3c:36:41:8b:3f:7f:1b:5d:21:c4:52:cc:a6:3a:9c:f6:2e:50:
80:33:3c:d3:ea:b3:9d:f6:7a:e9:2e:57:6b:5a:93:85:4c:09:
79:8a:51:f0:5d:ca:68:55:99:fb:a0:96:2c:e9:52:6c:d9:38:
7f:80:d6:47:f3:14:c0:68:f7:04:41:3f:44:29:f0:89:1e:a2:
ee:af:e8:3a:4f:ac:96:83:d6:d1:65:1e:57:5c:c6:9b:b3:a2:
4c:3f:d5:ca:8f:31:da:bd:a1:a1:bd:05:32:11:d0:fd:67:ab:
23:21:a5:15:ec:a6:34:e4:46:12:2c:90:49:67:dc:54:60:8c:
e6:6f:09:30:c8:23:9f:24:8d:6c:0b:c5:96:f8:21:6a:b9:c5:
d1:99:13:2f:be:48:7f:68:b7:13:75:0e:6a:d7:a6:dc:6c:b8:
d2:5f:22:74:f4:ce:dc:3a:79:6e:a9:66:9b:50:d7:b5:3a:fa:
3c:a4:f2:10:36:56:44:25:74:7e:5e:76:ed:b8:55:76:db:4e:
e1:fa:35:f5:fe:30:fe:cf:a2:07:8f:ff:5c:7f:82:a3:89:69:
81:62:c6:65:83:a9:02:08:5f:f6:2a:44:03:3f:a4:2a:b4:b8:
2c:ed:14:5b:b4:44:22:63:a4:f6:ae:ca:55:3c:27:75:2e:54:
da:22:c4:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org