Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zGvjXGpv4NeaXM93rIPefQ9QS5k.roa
File: zGvjXGpv4NeaXM93rIPefQ9QS5k.roa (raw, json)
Hash identifier: yRXX8IAWtUf8kL9+nOhz36mwmzzDMlXqKNmbrjwV/Rw=
Subject key identifier: CC:6B:E3:5C:6A:6F:E0:D7:9A:5C:CF:77:AC:83:DE:7D:0F:50:4B:99
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD7
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zGvjXGpv4NeaXM93rIPefQ9QS5k.roa
Signing time: Wed 29 Sep 2021 02:41:09 +0000
ROA not before: Wed 29 Sep 2021 02:41:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131150
IP address blocks: 163.32.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2775 (0xad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CC6BE35C6A6FE0D79A5CCF77AC83DE7D0F504B99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:98:ea:9a:58:06:b3:1d:ac:14:ab:41:ef:b9:
f5:73:47:32:c7:8f:15:a4:50:d6:15:11:66:23:68:
39:5d:2b:f8:a2:5c:66:52:ca:2b:f8:d3:24:d0:97:
4c:55:3b:3e:7c:6a:4c:4a:c0:33:71:5c:6e:5d:27:
ff:98:28:6f:ed:70:b4:5f:08:b7:28:bf:2d:c9:f7:
d4:27:c0:41:1c:c4:f9:0f:d9:c2:ad:d5:4c:d3:81:
95:0f:1a:5d:44:9c:d4:c4:9c:a3:61:2e:aa:7f:cd:
36:79:76:1b:80:e6:00:d7:9a:e2:10:6d:2e:a4:b4:
57:a4:cb:4a:63:02:7a:cb:ed:22:1f:89:f3:67:fb:
83:ab:f6:c9:66:bc:f3:17:bc:2d:ca:fa:ab:0c:9b:
b1:33:6e:9c:d6:9a:3c:12:9b:c3:92:08:68:69:dd:
62:af:a1:54:df:ab:bb:7d:3c:f9:37:0a:0a:b5:1d:
a6:b8:c4:c4:57:50:01:37:05:2c:d8:f8:79:f2:ac:
3d:f8:df:ba:96:11:d7:3e:16:fc:56:66:9c:7e:12:
ab:9c:18:a3:27:a4:cd:e1:d4:d9:30:e1:d8:d4:2b:
08:77:7f:79:fe:07:21:05:02:b5:d5:c3:4c:32:50:
0c:48:3a:21:4b:fe:59:3e:41:9d:0a:d3:21:1b:09:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6B:E3:5C:6A:6F:E0:D7:9A:5C:CF:77:AC:83:DE:7D:0F:50:4B:99
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zGvjXGpv4NeaXM93rIPefQ9QS5k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.136.0/22
Signature Algorithm: sha256WithRSAEncryption
87:c8:41:a5:fe:53:44:da:78:f0:54:6d:e7:5c:3d:5f:01:ce:
9a:6d:1f:1a:92:e2:d0:ba:3c:c0:59:fc:19:86:50:fc:73:e5:
a6:36:97:84:14:80:20:4b:00:a8:17:5a:de:b3:a8:43:5c:f7:
d6:93:f2:3c:d6:63:d9:7d:7e:f2:32:8d:1c:be:a3:b0:73:b0:
0c:e0:74:5a:cd:86:89:2d:8c:5b:73:d9:ba:a2:d7:ee:e5:06:
4b:da:49:c5:15:07:3d:9e:37:47:23:65:01:b7:ab:f6:42:b4:
a4:0e:80:6a:fa:d2:9d:b2:07:36:86:71:52:a5:1c:c3:fc:dd:
8f:b1:e2:77:c8:f4:03:88:07:22:b2:11:99:90:fe:55:04:6d:
b1:57:2b:11:9a:8b:71:a3:0f:3e:73:d7:de:bb:0b:65:54:ea:
3f:05:b6:7f:3b:40:30:94:ad:fc:bd:9e:de:c2:a3:fb:88:c7:
00:f8:24:49:b6:3b:34:bb:94:ee:3b:6c:16:b6:29:b7:a8:2a:
b6:f1:b6:3c:b2:9c:b8:56:c2:4f:4f:fb:46:61:25:85:92:90:
fb:5b:99:c2:2f:90:8f:a2:b6:f9:10:90:64:72:13:94:23:21:
00:5e:13:ec:e8:08:70:16:d0:a5:3c:ce:9d:0c:db:77:8e:4d:
9b:a7:e2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org