Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/20xwUi4BwikvBpdPVbIVDpd09Yo.roa
File: 20xwUi4BwikvBpdPVbIVDpd09Yo.roa (raw, json)
Hash identifier: efgEkYeXVu3KTMSOs7AImhAaOquHhKyiw/CWAHrWDWs=
Subject key identifier: DB:4C:70:52:2E:01:C2:29:2F:06:97:4F:55:B2:15:0E:97:74:F5:8A
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 099A
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/20xwUi4BwikvBpdPVbIVDpd09Yo.roa
Signing time: Wed 29 Sep 2021 02:38:10 +0000
ROA not before: Wed 29 Sep 2021 02:38:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 61.57.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2458 (0x99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB4C70522E01C2292F06974F55B2150E9774F58A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4d:d9:9a:e3:46:cf:22:e9:6d:30:7e:fb:f8:
4f:cc:a6:68:8f:d8:3f:62:97:98:be:1e:71:93:44:
dc:3a:7a:9b:a7:dd:c2:99:e6:a1:72:e5:23:2d:ee:
ee:0b:09:b3:69:a4:76:64:96:b3:46:77:36:14:b7:
1e:56:49:0f:71:51:f4:51:50:fb:a1:8b:0e:ca:21:
9b:95:a5:a5:6b:e8:b5:bb:84:17:57:da:08:86:f7:
23:dd:b5:3f:ec:89:37:40:f3:a9:de:9c:f6:d0:9e:
d6:be:07:17:74:b7:01:42:51:23:d9:82:aa:eb:37:
10:50:40:85:2b:b1:ac:9a:31:f1:47:68:81:2f:01:
33:e3:9c:0a:14:08:a8:b8:76:a7:4c:2f:a7:08:d4:
16:61:9d:92:18:9d:ff:1b:78:ed:d0:c0:ae:27:48:
67:8f:83:09:ea:38:c8:4c:c6:8b:f0:81:93:81:36:
17:d8:b2:ef:d0:a2:48:a2:85:8e:fe:10:30:f9:88:
57:6e:b2:54:c3:23:4a:2a:12:09:c4:a1:66:92:00:
87:02:ae:ef:d0:c5:54:f3:0b:79:1c:a4:7f:57:2c:
c7:91:5a:e7:1c:bc:9d:bd:98:10:35:fb:df:b6:92:
a3:6b:84:c0:82:ec:41:8d:b1:47:9f:82:5e:b4:21:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:4C:70:52:2E:01:C2:29:2F:06:97:4F:55:B2:15:0E:97:74:F5:8A
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/20xwUi4BwikvBpdPVbIVDpd09Yo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b6:bb:b0:18:87:60:4f:9d:a7:5e:c9:63:48:e0:03:42:23:04:
aa:9a:93:44:96:68:de:31:40:f4:30:0b:08:11:56:b4:7a:d7:
1f:c4:c8:a1:d0:1c:33:2e:bb:01:fd:10:9a:7c:a3:ec:c0:36:
fa:e1:a7:bf:4c:65:26:6d:23:49:c1:d6:cd:8e:e5:7a:67:17:
00:81:a3:86:8c:f2:2f:d7:4b:92:7b:ad:ef:48:8a:f3:a1:d6:
c9:a9:00:ac:92:c5:6f:5c:ae:31:94:d7:9a:99:68:95:21:3a:
52:c3:19:64:47:ae:7f:8f:a1:a1:c3:2e:5c:47:ac:e8:05:23:
c0:e8:b6:16:74:5b:c7:87:d1:8e:8f:39:51:cb:c6:ee:5b:a9:
e7:4c:37:d4:0a:52:1f:1b:b9:69:7e:84:88:95:0f:f9:af:42:
7a:65:4a:8b:10:37:72:cc:33:15:6d:03:b9:ea:9c:46:46:c7:
38:ad:38:36:87:40:f2:69:da:66:4a:66:06:63:9d:ab:49:59:
f3:e4:6f:9d:74:9c:42:35:ab:b4:1c:af:06:41:59:ca:27:b7:
a6:d7:4a:78:5e:b2:d9:6d:a0:86:db:50:6f:2e:87:60:c9:06:
5d:25:dd:f1:30:40:54:18:72:82:d6:5e:77:30:9c:17:e6:d0:
7d:57:7a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org