Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zbPAPyEvKt3mOyLF_qevcQNABcc.roa
File: zbPAPyEvKt3mOyLF_qevcQNABcc.roa (raw, json)
Hash identifier: imyl98J8Pe2HKcR9yEPR+eYoTHQVD2XmocprfftYcvI=
Subject key identifier: CD:B3:C0:3F:21:2F:2A:DD:E6:3B:22:C5:FE:A7:AF:71:03:40:05:C7
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09B8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zbPAPyEvKt3mOyLF_qevcQNABcc.roa
Signing time: Sun 07 Feb 2021 12:38:33 +0000
ROA not before: Sun 07 Feb 2021 12:38:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 120.119.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2488 (0x9b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:38:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CDB3C03F212F2ADDE63B22C5FEA7AF71034005C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:18:40:b1:21:3b:8f:93:90:87:cc:3a:58:
5b:c8:f1:ae:ac:bf:e5:8a:7d:d7:09:35:ea:46:bc:
8a:f0:65:77:90:54:7b:35:f3:3e:7b:b2:9b:1a:09:
7a:6e:3c:25:35:c8:3d:70:6d:42:19:3c:98:ba:35:
52:dd:06:42:2c:4d:b1:dc:8c:31:b0:bd:72:7f:81:
17:fd:2a:e2:04:93:2c:55:c8:ba:5f:45:19:72:3c:
c4:39:8e:b3:07:aa:40:bd:93:76:92:08:de:d5:3b:
bf:98:90:21:f9:59:11:84:ca:86:43:ff:b7:af:00:
c9:9c:0f:f5:d4:3b:44:93:40:bf:f6:ed:da:e0:8a:
03:23:e8:0d:68:4e:91:27:6a:80:64:57:27:c1:b2:
ad:5c:0f:6e:a9:a8:e4:24:9f:cb:b1:e1:c0:10:74:
cc:98:45:61:75:fa:22:fc:19:3b:ff:2a:eb:c6:d9:
cd:d0:8d:83:6f:6f:9f:48:b8:a3:b2:35:bb:5a:a2:
20:04:19:37:70:ab:fa:71:c7:24:b4:9d:ec:31:f4:
51:f3:6a:c2:73:82:1b:d2:0c:36:1a:5e:4e:06:d0:
e1:7b:ad:b8:5e:d3:a2:95:99:f7:8f:c7:cb:42:d0:
50:3a:e0:a4:3f:2e:22:cb:5a:29:06:62:d0:26:e1:
09:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B3:C0:3F:21:2F:2A:DD:E6:3B:22:C5:FE:A7:AF:71:03:40:05:C7
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zbPAPyEvKt3mOyLF_qevcQNABcc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.119.254.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:b1:c7:50:f4:36:aa:1e:2b:c1:bf:3e:89:5f:aa:b3:a3:b3:
41:22:7a:78:c6:bc:52:7a:09:b3:47:6a:ae:f3:f8:bf:12:65:
53:bf:30:54:33:6c:ee:4b:19:27:dd:3c:6d:ff:a4:4f:85:f5:
ec:59:31:8b:5d:fe:4c:d3:85:e9:ca:c8:a4:a2:6b:5d:39:52:
5d:68:4e:c8:17:81:10:04:6e:73:4a:47:52:5c:5e:9c:9b:02:
14:46:b3:08:da:5f:4a:1b:87:42:93:f6:71:37:e6:11:e9:6f:
1c:7e:67:9d:42:6a:2d:1d:c3:34:fd:64:07:c6:39:87:3c:9f:
68:2d:ad:b6:00:95:a4:68:9a:03:e9:32:5a:76:a8:a9:cb:90:
5d:b6:a1:da:26:1c:6c:2b:62:7d:18:80:e3:93:1d:ac:01:20:
03:d2:65:a9:51:18:64:a3:fd:e2:65:87:6f:2d:73:c2:bb:4f:
6c:f5:7a:6a:b9:1f:88:26:31:c1:f9:59:57:e6:92:cf:08:d0:
27:d6:ba:2c:2e:a8:60:2d:89:75:6e:1c:5b:a2:0c:22:f3:29:
c7:41:0f:65:0e:2e:1b:7d:a3:f5:b7:f8:03:69:59:89:36:43:
ec:0e:93:d0:f8:99:d0:83:82:82:6a:1b:17:57:b3:86:4e:41:
ed:37:48:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org