Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zkRnYWxgARAc50xkkD3ihx0xH78.roa
File: zkRnYWxgARAc50xkkD3ihx0xH78.roa (raw, json)
Hash identifier: XKZE3+qEBaqPCENYVBHJSMzCVWxITIt/y3S3KGMRJwE=
Subject key identifier: CE:44:67:61:6C:60:01:10:1C:E7:4C:64:90:3D:E2:87:1D:31:1F:BF
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zkRnYWxgARAc50xkkD3ihx0xH78.roa
Signing time: Thu 15 Sep 2022 02:41:09 +0000
ROA not before: Thu 15 Sep 2022 02:41:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 192.192.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE4467616C6001101CE74C64903DE2871D311FBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ab:9f:31:0a:ae:59:5a:82:e2:e7:9f:e7:89:
bb:a1:ee:3a:d2:bf:b3:51:a0:41:8e:e8:5c:b9:8a:
34:1d:72:fe:39:89:57:15:dd:c3:a8:9a:6a:9e:3c:
fa:fa:80:f3:4a:d0:6f:f1:a1:2f:36:96:ab:c4:34:
eb:63:2a:92:02:27:3f:4e:fa:6e:01:f0:d1:e6:60:
7d:19:87:90:66:47:5b:89:ac:fd:0b:3c:a5:ca:44:
9f:3b:54:f6:0d:94:2c:e7:0c:e9:66:27:99:52:c8:
61:e1:d6:f5:ff:4e:69:8d:d0:43:55:db:74:2e:c2:
04:48:10:27:f7:0c:a0:e8:fd:d9:93:6a:80:ad:ce:
cd:16:f3:83:72:2f:59:44:a1:08:a7:84:ba:f7:23:
5a:17:3a:db:81:68:a9:72:cd:40:da:d4:68:75:8a:
79:ca:24:df:a4:10:cb:b4:e6:8d:99:6d:df:1b:77:
e7:b8:66:95:9c:80:16:7b:78:50:9a:62:d6:03:d5:
3f:ac:f4:db:c2:61:29:a3:ac:f4:ca:59:41:98:0e:
28:ca:d4:69:76:0b:fc:d0:aa:0b:17:e9:46:cf:e6:
ab:6f:1b:31:0e:c3:3e:6c:8d:ef:52:f6:6b:ed:ff:
8d:b6:2a:13:cd:c3:c7:9f:37:64:55:e4:a9:8e:4e:
17:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:44:67:61:6C:60:01:10:1C:E7:4C:64:90:3D:E2:87:1D:31:1F:BF
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zkRnYWxgARAc50xkkD3ihx0xH78.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.192.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:73:bf:f7:81:e0:85:ce:f3:af:ea:05:07:2c:d2:47:5d:8e:
27:4b:82:e5:ba:07:8d:47:1c:79:62:c8:c6:c2:a3:44:f5:bd:
8a:ae:d0:64:f5:eb:9d:dd:cd:9a:b2:f6:13:5f:7d:b4:c5:bc:
7a:a5:82:76:31:f0:5d:25:48:7d:ed:da:6e:51:fb:ca:75:85:
17:df:4c:2a:d8:0c:f4:d5:b3:03:10:bd:19:1e:91:87:2c:ac:
c4:93:f5:8c:58:3b:cb:4e:f0:4a:94:bd:7b:54:a9:eb:b2:27:
32:98:f4:3b:d6:bb:0c:25:c5:35:2e:c3:ca:25:a5:de:01:f1:
2b:35:12:2d:34:7e:b8:a0:63:0d:95:60:3c:17:09:7b:d5:77:
d1:4e:66:ad:c7:47:d7:62:58:5c:d0:2f:f6:50:5e:8b:8f:a3:
09:95:97:5d:25:5b:e0:73:03:71:28:5e:d3:19:7c:33:5a:42:
bf:a5:f0:2d:f3:f1:6f:be:8a:fa:af:18:3c:6b:4a:ca:10:09:
3c:61:e8:5e:7c:ff:5e:02:89:44:fa:1b:6d:0d:da:f9:ed:c1:
3b:fd:fa:7b:c2:94:6d:bc:95:f7:3c:07:45:2d:d1:ae:61:9a:
fc:d9:42:d5:3e:0e:c9:d1:61:25:ed:04:34:67:74:2d:f1:d3:
40:c7:21:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org