Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ere1tkO-EYPg1ikiI-yWjcAyaVs.roa
File: ere1tkO-EYPg1ikiI-yWjcAyaVs.roa (raw, json)
Hash identifier: SV0Op+ZBazn0sHVH9XtwtLCZL8pAHFwxpWNpjmHJ5vc=
Subject key identifier: 7A:B7:B5:B6:43:BE:11:83:E0:D6:29:22:23:EC:96:8D:C0:32:69:5B
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0965
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ere1tkO-EYPg1ikiI-yWjcAyaVs.roa
Signing time: Wed 29 Sep 2021 02:52:39 +0000
ROA not before: Wed 29 Sep 2021 02:52:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.58.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2405 (0x965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 29 02:52:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7AB7B5B643BE1183E0D6292223EC968DC032695B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5c:17:f6:f0:06:0a:7e:99:7d:b8:ef:42:fe:
a8:a1:fb:b9:00:45:84:68:81:5f:4a:35:a8:45:bd:
90:30:fa:07:94:05:4c:40:7b:05:4f:0e:bc:9f:a4:
7e:4d:60:96:1d:77:d3:63:02:48:b3:64:63:3c:ec:
2d:ed:1d:28:75:81:21:f1:95:59:86:f7:ff:d6:05:
91:f0:86:36:03:36:00:6f:3e:51:06:2d:12:0f:20:
b8:b1:ce:37:c1:10:4d:1b:4a:11:24:2c:3e:be:8e:
03:94:d2:34:11:32:d6:15:be:62:de:7a:51:7b:60:
cf:8d:84:66:23:36:41:17:26:61:44:25:3e:7b:af:
03:0e:ed:1d:22:48:48:3e:f0:f5:2d:0e:95:c8:1a:
1a:de:18:9c:08:0b:3f:6e:9a:6c:63:4f:42:a1:a9:
24:c5:4c:bf:55:42:06:69:c3:c8:ff:81:51:e6:83:
9e:e3:b9:ba:5b:80:9b:1b:dd:52:79:87:83:e4:43:
47:2b:d0:c7:05:58:ad:d1:56:30:cc:eb:e8:7d:c1:
62:58:03:91:01:ad:7d:4c:9b:27:e8:5f:2c:2f:c9:
f7:af:e8:57:a1:0e:60:5f:81:7c:f1:fc:f2:53:23:
c2:ff:96:bd:31:de:4e:14:90:fc:9b:cd:03:a0:0e:
15:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B7:B5:B6:43:BE:11:83:E0:D6:29:22:23:EC:96:8D:C0:32:69:5B
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ere1tkO-EYPg1ikiI-yWjcAyaVs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.16.0/20
Signature Algorithm: sha256WithRSAEncryption
90:05:43:40:e3:3d:37:1b:bb:c4:1b:f0:b1:07:5c:ec:3b:92:
cf:84:53:3e:d4:0f:75:e0:af:20:87:55:79:85:63:0a:d4:46:
6f:b2:fa:62:5f:9b:8d:ed:c0:81:94:28:7c:59:ee:c1:9d:05:
e6:a2:9d:15:2e:ae:59:cb:d3:32:10:cc:8c:5f:ec:39:07:0a:
81:11:9a:80:ba:e7:2e:c8:67:8d:65:43:1d:73:65:45:d0:0d:
92:ce:5d:4b:16:70:33:ae:0c:87:19:c5:3f:ac:3b:9f:95:b2:
16:33:55:d8:59:c9:97:8e:20:da:14:88:32:8b:21:26:d4:c0:
19:78:89:63:91:05:96:5a:f8:b1:4d:f1:20:a3:d4:13:b4:4e:
82:3f:00:5b:87:6d:50:e3:4f:70:fe:e5:83:82:4c:cb:21:8d:
1b:a8:2a:8c:df:6a:5d:fc:fc:ac:ac:86:10:f3:60:f5:9f:dc:
e3:e2:0f:a1:0d:c1:6f:52:43:ad:fc:c0:f1:05:45:90:81:f5:
03:e5:e3:45:3d:c9:a6:f0:d2:61:39:db:ac:85:62:b2:ac:d1:
d0:bc:60:98:99:17:32:d9:77:db:4a:90:d4:d8:a1:24:1c:76:
e1:1a:4a:92:dd:51:f3:86:fd:f6:83:8a:2f:81:9b:bb:b7:61:
d5:40:56:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org