Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ucpSAXvckO6dC3zoE2Ml87jiA-c.roa
File: ucpSAXvckO6dC3zoE2Ml87jiA-c.roa (raw, json)
Hash identifier: F49NNG9eUg91TDvo3z7ttnvU+SRlOaFgZb/FPJUSRMQ=
Subject key identifier: B9:CA:52:01:7B:DC:90:EE:9D:0B:7C:E8:13:63:25:F3:B8:E2:03:E7
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0ADE
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ucpSAXvckO6dC3zoE2Ml87jiA-c.roa
Signing time: Wed 29 Sep 2021 02:41:11 +0000
ROA not before: Wed 29 Sep 2021 02:41:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 203.71.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2782 (0xade)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B9CA52017BDC90EE9D0B7CE8136325F3B8E203E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4f:d2:ad:89:88:60:9a:b4:ef:c7:46:77:6b:
6a:4b:a7:7a:6d:6c:8e:2a:bf:d5:58:af:02:d3:68:
79:2e:ef:f7:be:a8:b2:48:3c:8b:0c:65:b6:51:d9:
63:3b:5a:ff:2b:5c:ca:aa:9f:f3:42:22:12:0d:32:
19:20:15:91:29:ce:ac:03:f3:89:b4:e9:93:75:4f:
b1:f5:1a:cc:dc:42:7d:5d:08:7d:38:6b:b1:79:bd:
17:b0:9e:6a:21:aa:5c:b8:74:22:34:a6:18:c9:29:
0e:34:cd:fc:3f:b7:69:f9:6a:fd:8f:db:96:4c:0c:
ad:ec:9f:f5:11:38:fe:b4:52:cc:5d:36:aa:18:cc:
a7:b0:1a:cf:95:e0:f9:c5:7e:99:16:1b:85:66:d0:
5c:29:f4:61:ac:89:51:00:27:6c:f0:b3:93:5e:8c:
7b:ab:8e:37:0a:4c:78:ec:ac:a8:54:68:80:22:8a:
ef:11:72:4f:9b:6b:99:d9:df:53:da:6b:bf:d5:ec:
db:f4:af:09:e6:96:ba:d9:44:55:0d:5a:ee:58:8d:
a2:49:5d:f5:e8:2f:44:79:8b:15:eb:31:e8:bf:a1:
f4:54:9c:18:0b:33:0b:95:c4:37:91:c8:a1:ad:a2:
e2:f7:81:60:24:59:e2:84:1f:a3:12:9f:a5:3e:fe:
8b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:CA:52:01:7B:DC:90:EE:9D:0B:7C:E8:13:63:25:F3:B8:E2:03:E7
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ucpSAXvckO6dC3zoE2Ml87jiA-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.71.0.0/16
Signature Algorithm: sha256WithRSAEncryption
09:91:10:de:2e:46:df:17:0b:29:cc:1b:75:02:ab:0d:8d:03:
67:48:a9:7e:6d:3c:c9:38:b9:05:a6:11:43:9a:59:70:3e:b1:
c1:66:f9:eb:33:0f:7c:ba:40:22:3e:61:38:6b:cc:f1:a7:79:
e0:79:56:aa:bf:20:e0:f3:9c:d6:6b:67:a7:7b:54:fe:a1:05:
cb:0e:71:d5:fd:b2:ef:43:fd:3e:9f:76:3f:12:89:42:b5:0d:
06:fa:d2:b8:03:82:64:d6:59:48:cb:3e:e3:2c:3f:6b:bf:17:
76:eb:8b:ec:17:af:6e:c2:f8:70:60:44:66:d3:b3:a5:46:68:
e1:b1:4a:61:ae:17:78:79:f5:cb:f0:75:16:bf:e8:c9:f4:57:
e8:b8:7c:07:16:5b:d7:be:08:60:41:00:ba:3e:2f:c2:9b:8c:
51:f6:ee:e8:ff:ed:55:9b:1b:33:92:d2:66:c0:a1:98:45:1e:
b0:8f:c3:28:09:8a:67:29:9f:88:6a:b2:b1:05:b2:1e:8c:07:
1a:fe:27:7d:db:69:ad:81:c4:6e:a7:3a:92:cb:f2:82:26:b4:
92:bd:4a:87:b5:21:43:b6:5d:01:44:7a:96:fb:99:d2:dd:a1:
77:2d:42:98:ef:a6:76:b5:83:83:73:e3:9b:6f:8e:69:ae:bc:
51:94:45:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org