Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xqPUJhWb_v1hYPSb8nA6tnMoEvI.roa
File: xqPUJhWb_v1hYPSb8nA6tnMoEvI.roa (raw, json)
Hash identifier: mqcYvvTMjMyLB5FDbNLuFj1shvPaTrp426MczNWa9CY=
Subject key identifier: C6:A3:D4:26:15:9B:FE:FD:61:60:F4:9B:F2:70:3A:B6:73:28:12:F2
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xqPUJhWb_v1hYPSb8nA6tnMoEvI.roa
Signing time: Thu 15 Sep 2022 02:41:06 +0000
ROA not before: Thu 15 Sep 2022 02:41:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131150
IP address blocks: 163.32.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C6A3D426159BFEFD6160F49BF2703AB6732812F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ae:ae:dd:09:64:7e:3c:04:f4:e7:d9:34:e5:
6f:b5:43:12:fb:0c:68:20:a3:fb:19:20:57:cb:65:
b8:52:04:c0:d7:a2:b8:c6:96:71:46:7b:de:41:95:
ff:9d:52:ae:2a:46:25:6a:c7:b0:d4:63:94:c3:20:
a4:e8:bf:2e:99:5b:c9:b8:c0:7a:34:6e:6a:a0:3e:
71:7e:61:b3:63:8d:bf:57:70:c8:e3:dd:5c:7f:1f:
af:fe:8e:f3:a2:45:eb:ec:00:68:d5:1e:c0:a2:0a:
ad:a9:15:14:95:84:e9:59:21:ec:36:f8:df:29:8d:
94:bf:2b:00:a8:8d:f4:7f:25:64:45:8f:87:7a:4a:
e2:95:16:f8:bd:87:39:5e:9a:7c:26:62:8a:a8:25:
a8:d3:1b:29:6e:39:f0:4c:9a:db:1e:57:9a:40:8c:
63:ff:e9:58:ec:00:fb:11:86:9c:f7:f0:71:87:c9:
69:c1:24:4a:87:be:50:59:a5:92:b7:1b:cd:20:26:
5e:a1:a5:f6:a6:97:fb:99:dd:22:9f:60:e3:be:25:
ba:7a:0d:91:4e:47:3f:86:a5:e1:39:35:fc:3f:a4:
9a:32:47:65:b1:7e:45:8a:0d:9c:c5:4f:7d:3f:da:
a7:11:d5:e3:82:b6:7b:1d:9f:2f:97:f9:a4:55:a5:
40:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A3:D4:26:15:9B:FE:FD:61:60:F4:9B:F2:70:3A:B6:73:28:12:F2
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xqPUJhWb_v1hYPSb8nA6tnMoEvI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.200.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:0c:f5:09:74:f1:71:aa:a1:fe:46:ba:c8:aa:46:a6:3c:7d:
76:72:88:e9:29:e5:0f:50:27:aa:9d:b7:79:2b:bb:37:30:3a:
47:59:c4:1b:31:0e:fd:4c:33:14:2e:d1:cf:28:ac:c1:15:19:
dd:63:dc:4d:3e:22:91:6a:96:37:80:79:3c:ef:88:3a:91:b5:
b6:0d:59:01:ec:c5:88:2c:17:1a:11:f6:25:b1:1b:2d:ae:0d:
5b:cd:c6:7e:91:cf:69:b3:b2:75:59:1f:23:fa:7b:ae:53:2b:
ce:d6:fc:58:da:04:ba:f7:08:cc:2e:1c:4c:11:91:e6:b6:bd:
51:3f:94:3b:0f:c6:3c:1a:8d:87:04:12:26:3c:7a:81:aa:52:
46:67:82:ba:ff:c5:ad:ba:22:a9:cb:d3:0d:7c:0c:00:e0:e0:
c8:32:fa:94:e9:75:e0:2b:7c:cc:8a:ca:f4:96:72:91:0e:ed:
63:8b:fb:28:82:7c:24:a4:a3:f2:04:95:81:69:0e:ed:22:ad:
7d:07:d5:8d:ed:e1:6f:67:cc:06:cb:0b:d5:95:2e:82:1a:d1:
cb:93:6d:46:44:22:d9:70:79:72:cd:e1:b7:81:35:52:21:b7:
12:db:d8:95:7a:4d:c0:c5:f7:00:3b:87:f8:5a:c0:84:03:21:
6e:f4:4b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org