Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/WdRPPObiqHigX_ulHgdt-Wz2zfM.roa
File: WdRPPObiqHigX_ulHgdt-Wz2zfM.roa (raw, json)
Hash identifier: tUN8Rg6tnpbN7/75WXN/f4im2bFiyOchT+mkG1lTRP8=
Subject key identifier: 59:D4:4F:3C:E6:E2:A8:78:A0:5F:FB:A5:1E:07:6D:F9:6C:F6:CD:F3
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 078D
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/WdRPPObiqHigX_ulHgdt-Wz2zfM.roa
Signing time: Tue 29 Sep 2020 10:03:55 +0000
ROA not before: Tue 29 Sep 2020 10:03:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 61.57.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1933 (0x78d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=59D44F3CE6E2A878A05FFBA51E076DF96CF6CDF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:14:54:d1:31:72:56:92:dc:98:40:9f:ce:93:
49:52:06:b9:13:fb:a6:ff:c0:2e:58:d8:22:91:7a:
48:03:ef:c7:cb:75:8f:d9:41:71:31:21:fd:3e:cf:
c2:f7:96:29:87:05:c2:f1:f1:c6:8f:9a:31:10:77:
5a:19:db:54:04:c7:08:17:92:fc:4e:85:66:5c:1b:
9b:9d:46:be:d3:01:16:ff:ee:a4:e4:be:1c:f0:8b:
6f:9f:2e:40:18:7b:ca:bc:97:39:16:47:c3:f2:77:
91:47:56:8f:e0:cc:fd:34:53:a0:d2:50:1e:d0:ff:
c6:28:d3:77:a0:5e:c7:a3:8b:d2:70:ea:5e:03:05:
1e:35:6a:f2:db:1c:99:1d:1a:95:8c:07:24:08:ad:
bc:b8:1a:4c:68:44:e7:c4:e8:20:e0:82:b7:6f:ca:
47:57:32:4c:cd:69:72:bc:23:bb:9e:f5:3d:93:b7:
dc:62:1e:12:52:a8:ec:6c:e0:9e:58:94:42:93:9b:
2c:6e:a4:61:47:6d:c7:f9:ef:21:5b:b8:07:3a:a6:
ea:29:71:6e:d7:6c:53:bd:5e:1a:f1:a4:e6:79:a4:
1a:bc:c4:1e:f1:a3:8c:74:fb:4c:71:f4:52:0f:fa:
95:c0:c2:ee:7c:c3:1f:b6:91:4b:d9:b1:f2:e4:86:
6d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D4:4F:3C:E6:E2:A8:78:A0:5F:FB:A5:1E:07:6D:F9:6C:F6:CD:F3
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/WdRPPObiqHigX_ulHgdt-Wz2zfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.32.0/19
Signature Algorithm: sha256WithRSAEncryption
06:f4:d6:10:83:56:ad:c0:d5:ef:14:64:ea:7b:d3:27:6d:a4:
18:a0:51:b1:b0:da:23:9a:8c:4c:1a:73:9d:6c:5a:2e:d3:22:
00:f2:e1:e6:8a:9a:52:78:c8:fa:f9:0e:b1:7e:a3:89:fe:de:
e5:d1:d9:c5:a4:cd:fb:54:b8:c6:1d:3e:bb:01:29:8b:a2:f1:
fe:e6:18:0f:4d:ce:12:88:2d:44:75:ca:84:74:13:28:01:c7:
f8:2e:99:0f:c4:03:2e:ab:dd:e1:6b:52:83:ef:8a:4d:8e:cd:
c2:e0:ed:dd:09:d6:a5:28:3c:8e:ea:e5:a2:31:a4:5f:91:18:
3d:03:cf:52:75:e2:80:e7:e9:be:3c:7c:f6:e5:bf:24:ab:df:
2b:8a:f7:5a:85:de:92:24:90:e4:60:66:94:86:b3:96:0d:fe:
a1:72:50:eb:5a:be:83:58:cd:06:d4:72:0b:f2:05:f5:81:46:
07:9b:cb:7e:77:65:b9:28:02:43:97:8a:54:61:07:1e:27:83:
84:4e:5b:28:13:e5:c1:1c:0b:57:50:72:81:8e:0a:cb:33:70:
70:4f:17:3f:81:c0:8f:76:7f:ed:b0:a9:34:84:b3:d6:a8:11:
78:9c:ff:e3:4c:f8:27:ae:87:27:a2:20:5b:cc:bd:70:3a:d3:
6b:40:3b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org