Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/wqKdjOnb59A_VUqOvVVV2adTuvg.roa
File: wqKdjOnb59A_VUqOvVVV2adTuvg.roa (raw, json)
Hash identifier: LVJqRqy5FShptAyTCJCNgSY6gMEZ13MxT2xe3LikIRc=
Subject key identifier: C2:A2:9D:8C:E9:DB:E7:D0:3F:55:4A:8E:BD:55:55:D9:A7:53:BA:F8
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0A06
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/wqKdjOnb59A_VUqOvVVV2adTuvg.roa
Signing time: Sun 07 Feb 2021 12:39:57 +0000
ROA not before: Sun 07 Feb 2021 12:39:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.71.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2566 (0xa06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C2A29D8CE9DBE7D03F554A8EBD5555D9A753BAF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dd:ae:44:6a:67:bb:bd:24:57:46:1a:2d:36:
d4:ed:cf:4f:36:ae:17:8e:4a:47:e6:76:9d:eb:a8:
5a:2d:2c:91:d9:1e:7a:53:4d:9a:cd:14:a5:ef:5e:
17:b0:48:5c:bc:38:23:6e:78:41:b4:5f:95:66:c4:
c3:a7:10:ab:c4:37:ef:79:48:7e:9c:a4:ee:c2:d7:
0b:07:9e:4a:5c:47:4a:c4:82:79:30:a4:5e:06:fb:
90:f3:e0:2e:47:4c:4a:8c:5f:3a:11:a8:8c:5f:fd:
c5:f5:75:08:e2:b6:73:b8:93:e6:be:cc:31:4f:80:
05:a8:9e:99:40:a6:93:47:2b:76:e3:a8:63:5e:c7:
b1:cd:b4:dc:8d:74:10:ed:5b:3d:34:4b:a8:d6:6a:
4b:17:cd:d6:1f:34:cf:4e:87:8b:92:e4:4f:e6:f4:
a8:4a:aa:2c:ca:80:1e:74:64:b5:1a:f2:16:09:a8:
b8:13:8c:2a:3f:78:e9:80:85:ff:d6:66:3e:c4:ee:
4b:a9:48:a8:33:99:97:f3:f5:84:e5:88:be:f1:6c:
b7:b3:dd:2d:46:cf:51:91:e8:a3:d9:13:9b:b1:7f:
2c:0c:04:cd:4b:26:65:f7:0c:f4:31:26:5b:79:3b:
f1:9a:c9:b2:ee:01:5a:2c:e1:34:03:f6:2a:7e:1e:
35:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A2:9D:8C:E9:DB:E7:D0:3F:55:4A:8E:BD:55:55:D9:A7:53:BA:F8
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/wqKdjOnb59A_VUqOvVVV2adTuvg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.71.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b5:8a:a7:a6:d1:b9:61:c1:fb:69:13:33:d2:e1:c0:42:eb:5f:
b5:7a:39:f1:87:e6:fc:bc:1b:5a:b3:79:69:26:c2:bd:3e:e7:
06:c6:ea:e3:4d:eb:bc:16:66:36:bb:77:9b:66:3b:e9:b2:c8:
a2:c2:34:55:bc:c1:b2:ce:fe:8c:b7:b9:54:f8:27:c7:a0:56:
1c:44:fb:6c:c6:39:75:30:e0:28:8e:6c:73:c2:1d:49:98:36:
13:7f:29:f8:bc:72:da:c8:4c:ca:8b:d4:ae:1b:3e:f5:7a:51:
76:16:24:82:d0:ac:b5:9d:09:db:3c:48:b2:f8:23:78:09:6b:
2f:58:d2:2e:81:cc:a4:f1:bb:c4:9b:8f:f9:49:cc:d6:9f:6d:
07:d3:61:17:c8:a0:3f:6c:52:5b:fe:df:2e:31:2c:f8:63:22:
bb:bf:e3:88:40:e7:2a:12:92:54:4c:f7:a4:0a:a4:0e:dc:21:
ab:ca:7c:09:ee:12:d5:08:3d:8f:fd:b4:1a:f6:a2:83:24:22:
6f:ba:ee:7a:3d:d4:9c:c4:0e:24:e8:18:6c:af:13:93:b4:bf:
74:11:e6:ac:c8:aa:ad:a4:c7:da:0e:57:99:a5:db:dd:6c:ed:
66:d3:4e:03:9b:37:96:02:e4:5c:50:b7:f4:21:5b:99:29:dc:
34:aa:09:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org