Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/wq9uhMgsTiftRQ9Oq3cvzBjkV-U.roa
File: wq9uhMgsTiftRQ9Oq3cvzBjkV-U.roa (raw, json)
Hash identifier: oMNpejcZHhThnU6eE6JPx4FcSPelrZPceQ/GyesNxR0=
Subject key identifier: C2:AF:6E:84:C8:2C:4E:27:ED:45:0F:4E:AB:77:2F:CC:18:E4:57:E5
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0801
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/wq9uhMgsTiftRQ9Oq3cvzBjkV-U.roa
Signing time: Tue 29 Sep 2020 10:06:43 +0000
ROA not before: Tue 29 Sep 2020 10:06:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 163.16.0.0/13 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2049 (0x801)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C2AF6E84C82C4E27ED450F4EAB772FCC18E457E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:19:27:24:1d:24:35:3f:da:6a:e0:28:c0:
fb:ce:17:aa:3c:ea:6e:7f:a3:31:f4:4f:1b:64:e4:
d6:f2:36:51:47:3e:f3:a2:89:fc:7f:de:aa:9c:ca:
bd:6d:6a:49:c4:47:3b:ab:78:4e:70:b9:3b:ca:33:
b4:45:9d:c1:1b:e2:08:4c:55:8e:72:95:05:3b:ee:
60:aa:20:b3:eb:29:f8:b7:15:d8:28:f2:73:e0:a2:
2c:92:33:8a:18:26:98:94:55:d1:9d:b8:ed:2d:54:
bb:c4:a0:02:d5:40:83:10:27:18:16:91:61:72:0b:
f5:84:fa:01:ae:75:08:6d:8f:40:eb:45:ea:cb:2a:
1f:df:ec:27:76:2c:32:ac:31:b9:77:b3:dc:96:10:
14:af:fa:e3:e0:98:db:91:fb:ea:bc:74:42:c8:4d:
31:dd:c6:e3:7b:58:d5:34:29:84:b6:a1:7a:02:13:
9d:c6:ef:1c:4a:d4:43:0a:37:27:7a:37:3e:82:26:
ff:49:80:3e:dc:5e:82:95:fb:92:35:df:d4:86:09:
03:29:3f:c5:a8:47:2d:f0:df:9d:9a:25:4a:42:36:
2b:cd:e6:49:b8:d9:4e:1e:72:c6:f0:15:50:2e:43:
5f:9c:bd:14:32:30:bf:33:6f:d1:e6:83:b6:e9:96:
32:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AF:6E:84:C8:2C:4E:27:ED:45:0F:4E:AB:77:2F:CC:18:E4:57:E5
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/wq9uhMgsTiftRQ9Oq3cvzBjkV-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.16.0.0/13
Signature Algorithm: sha256WithRSAEncryption
36:e7:f5:1c:b4:ac:09:9a:c6:f8:d7:49:14:e5:bc:22:e6:65:
ed:cb:1e:f3:47:66:45:d6:44:0b:db:b8:cb:25:47:b8:9e:56:
b8:3a:e0:d1:80:df:c9:1f:95:7e:6f:55:b3:80:8f:33:71:31:
4c:ca:aa:0a:a0:01:41:d6:39:31:36:53:f1:1e:ac:7e:08:0f:
5f:f7:7e:b2:f4:ec:e7:fe:8a:dc:bc:82:c7:99:38:1c:f3:d1:
ae:5e:53:c1:14:77:55:98:de:89:ba:ca:ed:7c:bf:88:a6:a7:
3d:e0:ad:52:4f:82:5a:f1:7c:5e:7c:35:df:48:8b:00:a8:09:
4e:d0:9e:dc:29:34:26:f2:00:27:63:a3:a7:7f:f5:dd:30:f2:
97:fd:31:e6:f9:42:50:66:01:c6:bc:64:4b:67:42:56:d1:7a:
07:95:08:60:47:60:f3:2c:3c:a6:d8:d8:e7:25:53:12:60:96:
6c:8a:b9:14:40:78:6d:c9:18:b7:a6:c0:84:9e:91:04:c3:65:
1b:aa:79:62:74:57:a5:50:79:f1:d1:82:15:32:63:dd:32:ec:
f8:44:13:ab:b4:e3:b5:fd:08:c6:da:f7:e3:23:26:fb:70:2d:
49:de:42:ce:7c:05:77:2e:3a:5a:74:d9:bb:df:49:12:49:0b:
08:30:e8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org