Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/v4cU2i2t9gC-XhMN2K9APUslTqY.roa
File: v4cU2i2t9gC-XhMN2K9APUslTqY.roa (raw, json)
Hash identifier: MmeoazgjeNQ2gGl1/1xH7lyZFVfV9Iotc62nSb7xyfc=
Subject key identifier: BF:87:14:DA:2D:AD:F6:00:BE:5E:13:0D:D8:AF:40:3D:4B:25:4E:A6
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD0
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/v4cU2i2t9gC-XhMN2K9APUslTqY.roa
Signing time: Wed 29 Sep 2021 02:41:07 +0000
ROA not before: Wed 29 Sep 2021 02:41:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 163.14.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2768 (0xad0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BF8714DA2DADF600BE5E130DD8AF403D4B254EA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:14:ba:bf:70:5e:06:fd:ef:dd:be:60:3a:77:
74:28:4f:f1:2b:ab:b0:d4:51:da:ad:d9:aa:a2:44:
41:d9:52:2b:f6:bd:73:73:b4:7a:01:7a:44:ba:82:
e1:ab:02:43:46:db:80:30:9a:ab:22:3b:a1:a3:47:
5c:47:67:67:af:2d:2c:51:e1:5f:d2:73:f4:a1:e4:
63:4e:14:bf:5c:75:e5:f6:1c:f0:85:00:f2:78:1e:
54:f7:57:1f:e0:14:4e:1c:78:21:8f:27:89:f9:b7:
2d:6d:7c:e0:cc:10:af:fa:e8:a6:ed:55:9a:f3:0a:
7d:ff:96:3c:9f:8d:88:d1:59:85:b4:22:82:c7:6e:
75:d7:cb:cd:b0:b8:55:9d:e9:fb:15:1b:a0:51:3e:
c4:86:58:ea:d4:c0:85:38:e7:02:8b:ec:64:bf:fd:
40:a1:25:34:2b:5c:a9:3f:21:8a:ad:9e:02:4f:a7:
67:03:cb:18:ad:90:30:6f:cb:1f:33:54:bb:54:3b:
3b:d1:fd:45:4a:74:07:e4:5f:78:e3:f9:8d:9b:e8:
bd:f3:2e:3e:d1:c0:75:b1:85:7d:0e:df:cd:7f:d8:
3f:27:d0:f6:cb:4e:37:d8:93:7c:81:b7:db:39:62:
c6:29:14:e7:d9:2f:1b:49:65:ca:86:b8:92:64:b5:
24:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:87:14:DA:2D:AD:F6:00:BE:5E:13:0D:D8:AF:40:3D:4B:25:4E:A6
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/v4cU2i2t9gC-XhMN2K9APUslTqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.14.0.0/15
Signature Algorithm: sha256WithRSAEncryption
54:65:73:cf:dc:ed:5b:da:ff:65:8c:6f:42:c6:e8:58:be:0e:
c0:5f:a7:ce:a6:ef:b3:a3:a9:a6:fe:6e:bd:ba:f7:28:f9:c1:
83:e0:b6:bb:88:2a:d3:78:3b:d6:60:a7:be:c4:42:9b:d7:f8:
91:92:ae:34:4c:e5:ab:94:63:b7:5b:1e:a3:1d:c2:84:15:56:
26:ea:56:6b:97:ab:2a:b1:ce:33:a5:88:28:dc:6f:8a:ba:09:
ee:14:50:36:50:01:f6:3d:f3:e0:8d:bd:53:43:32:85:41:2f:
a2:f1:1f:a8:79:ae:bf:40:90:17:8b:5c:14:a3:cd:e4:1a:e4:
bc:dc:19:e1:4f:7f:ab:5d:f1:82:f4:9a:af:ad:de:f3:05:36:
3a:22:88:2d:72:71:9a:61:30:a3:61:5d:ec:10:22:a1:de:e9:
98:72:03:f4:67:7a:7f:c2:d6:03:40:24:af:51:de:b3:0b:82:
a0:77:6f:1b:52:c4:e4:f3:d8:b6:3a:7a:cd:4b:6b:18:a9:ec:
fc:ad:be:20:34:47:ec:89:96:9a:f4:91:1c:2d:2d:05:bc:af:
07:d8:ce:d6:a3:c8:56:71:d2:9d:41:a2:e1:d9:ec:ff:2d:59:
03:90:91:d2:6b:ee:12:f5:e6:09:03:ac:9f:dd:1f:70:c0:74:
6c:01:7f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org