Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xwlemCklV8S5wzV1JoDPgBm_pEI.roa
File: xwlemCklV8S5wzV1JoDPgBm_pEI.roa (raw, json)
Hash identifier: oeDRhoM6UqNph0rP+k4EiyRhMisoiNAhATzOmWPQ39M=
Subject key identifier: C7:09:5E:98:29:25:57:C4:B9:C3:35:75:26:80:CF:80:19:BF:A4:42
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xwlemCklV8S5wzV1JoDPgBm_pEI.roa
Signing time: Thu 15 Sep 2022 02:41:16 +0000
ROA not before: Thu 15 Sep 2022 02:41:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 210.67.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C7095E98292557C4B9C335752680CF8019BFA442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:fa:80:6d:b0:a9:f8:0f:1d:c7:f2:2c:a7:
3a:25:bf:19:72:5e:55:77:15:66:1a:83:0e:69:32:
1e:6e:9c:e3:2c:5d:85:98:0d:ed:3d:34:8b:cf:c2:
08:33:e2:66:b8:72:ed:7c:84:80:4e:db:dc:6c:ed:
40:39:ff:8a:d5:90:a9:82:ca:af:b1:87:f5:d3:b8:
d6:1d:65:2d:5e:76:20:00:23:4c:92:05:9f:57:d0:
68:15:78:30:2a:89:3e:08:12:b4:ce:6e:99:64:5f:
07:9a:7e:47:0e:42:06:3f:26:c1:36:01:80:1e:16:
87:96:79:da:e7:91:c1:1d:e7:6e:77:7e:47:0d:e5:
ac:7f:f9:92:4f:c7:1d:f2:eb:6f:fe:64:65:c7:71:
df:cc:53:70:1f:a2:09:2f:9e:f5:1a:31:69:ee:8f:
4a:df:e3:74:95:52:03:af:be:ba:37:b3:f7:1b:f4:
8c:0c:c5:c6:ba:db:04:12:92:7b:a1:5e:45:b3:1b:
62:18:d2:2e:e5:8e:a5:6b:eb:63:bb:63:0c:ed:26:
54:f7:30:db:85:80:ab:9a:4b:37:01:ac:7b:00:46:
cb:af:43:cf:02:45:6f:69:10:1e:e0:5f:27:f2:d4:
92:76:5b:49:8d:a4:83:2e:c6:68:06:2e:2b:62:a9:
b5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:09:5E:98:29:25:57:C4:B9:C3:35:75:26:80:CF:80:19:BF:A4:42
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xwlemCklV8S5wzV1JoDPgBm_pEI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.248.0/21
Signature Algorithm: sha256WithRSAEncryption
42:86:dd:d4:d8:66:4f:8c:f5:18:92:0f:31:f1:2b:cb:1e:31:
bd:78:0d:fd:4e:d7:0f:1c:cb:35:f4:7f:fd:f1:6e:cd:91:48:
41:f6:1d:bb:1d:e5:6a:08:04:b7:d5:5d:94:e0:2d:eb:70:e0:
10:06:53:77:f4:ce:86:03:ae:ec:24:9b:11:d2:33:6e:95:e4:
00:8c:90:01:39:e2:2e:96:fa:f7:69:27:1f:0a:90:9b:81:19:
df:db:84:bf:f0:ff:04:ae:67:14:9b:28:04:5a:f2:46:46:6c:
b9:56:24:5d:e3:a8:9b:1e:01:d1:b9:25:a8:42:7e:27:e0:d1:
eb:5c:16:08:4b:94:a7:13:30:71:35:09:1f:01:fa:99:17:cb:
dd:dc:64:72:bb:2c:d1:ef:3b:4e:47:f3:18:01:97:8c:71:87:
c0:a9:f9:5c:7b:61:c4:86:db:28:9a:be:8e:21:e4:9c:eb:01:
a7:b3:06:9c:ae:2a:04:fa:c9:b6:78:4c:84:64:f8:d5:e5:b3:
fc:61:4a:39:8f:14:55:61:4d:66:68:d9:d9:4b:e3:ec:ee:7d:
e0:36:91:50:33:b4:a1:ae:19:b5:70:5b:47:b4:82:b0:97:21:
ad:58:0c:76:1d:76:b8:20:47:c0:ea:1b:49:e7:00:53:bc:2f:
3c:ac:32:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org