Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/uXjtI7tS9F87DrMRX3gjTPKMS4M.roa
File: uXjtI7tS9F87DrMRX3gjTPKMS4M.roa (raw, json)
Hash identifier: WG8bnRhjf8WviOelDhErD5HIZou0UtYTY+pzMoRxr1w=
Subject key identifier: B9:78:ED:23:BB:52:F4:5F:3B:0E:B3:11:5F:78:23:4C:F2:8C:4B:83
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09A8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uXjtI7tS9F87DrMRX3gjTPKMS4M.roa
Signing time: Sun 07 Feb 2021 12:38:20 +0000
ROA not before: Sun 07 Feb 2021 12:38:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 120.96.0.0/11 maxlen: 11
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2472 (0x9a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:38:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B978ED23BB52F45F3B0EB3115F78234CF28C4B83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:24:90:44:b8:a0:a6:0c:66:bf:35:ff:fb:
4f:d0:00:ac:44:98:e6:67:18:5d:41:89:ba:c1:1b:
7c:c3:6d:c6:ee:0b:95:28:27:8d:29:3f:d3:51:66:
84:f8:3b:73:ba:3b:b8:96:45:e8:fb:67:f2:86:f8:
30:86:30:57:2d:53:27:94:52:c9:76:db:2e:8a:2c:
c5:e8:6d:c4:44:de:9c:80:ca:f6:c8:5f:49:db:71:
e4:fe:35:95:46:5d:54:da:81:ce:e6:f8:6f:55:c0:
a1:76:e0:1a:b9:be:46:af:4d:e8:e9:51:ab:5c:77:
91:29:03:5b:39:9e:84:80:26:38:18:71:2a:8b:97:
84:bc:e7:91:0e:3c:96:b3:35:fe:24:12:2f:d5:08:
74:f1:69:b4:dc:b2:6b:76:b3:bf:7a:10:0e:e7:b7:
cb:c8:ac:93:df:6d:11:c1:8f:4a:ba:1b:87:1d:e6:
25:07:a4:55:1a:4c:56:de:bd:e1:c8:13:3a:e2:a3:
27:64:4d:49:db:d1:9e:e9:6a:b7:25:bb:04:3f:e8:
e4:e3:cf:15:c8:46:be:97:7c:f3:3a:24:49:e1:b6:
c0:45:00:35:a9:41:16:9c:8a:fd:d4:61:70:99:d5:
8b:32:c1:a1:ab:c6:8a:cb:e5:da:14:62:77:71:f5:
d8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:78:ED:23:BB:52:F4:5F:3B:0E:B3:11:5F:78:23:4C:F2:8C:4B:83
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uXjtI7tS9F87DrMRX3gjTPKMS4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/11
Signature Algorithm: sha256WithRSAEncryption
6e:ab:80:83:f1:9e:c1:9f:87:56:e9:b3:c4:43:a2:96:22:0b:
51:87:08:4e:5d:a7:c6:0d:f3:d2:98:d8:e1:6e:32:ea:7f:ba:
9c:92:6a:01:62:00:e9:37:8e:77:b0:c5:bd:36:b2:40:61:b5:
d9:7b:57:1d:61:8e:63:fc:7c:5f:e7:32:bf:d2:dd:c2:0e:34:
02:b9:96:ec:8c:a6:1a:43:47:c3:e7:b7:8a:d6:7f:4a:b0:3d:
e3:74:eb:7d:a8:c4:62:4e:e2:35:a6:d8:21:fe:38:9e:77:a4:
a2:aa:cc:36:36:a4:3f:9b:ef:10:c3:f4:97:21:cc:4b:39:13:
69:42:c3:e9:94:63:6a:82:6b:e5:33:2f:3e:38:c4:d4:5f:d8:
9d:b3:f1:c0:cd:32:a8:12:19:25:99:ab:db:95:93:ea:37:da:
c1:4c:ba:41:98:52:6c:d2:c8:c6:89:f1:17:15:ca:bd:4d:50:
a8:ad:26:67:18:a6:0e:b3:4e:92:11:e5:66:e9:0d:09:45:91:
1b:ff:ab:b5:4b:49:a2:a6:5c:04:97:fc:71:af:a8:71:6f:6f:
8f:9f:b7:e7:b6:81:fa:73:4a:e8:01:4c:ca:78:aa:df:eb:00:
a6:c9:1b:b4:ca:0c:36:03:43:e1:cf:3a:ca:e4:ae:80:6c:04:
2d:c9:48:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org