Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/6ufeGYwur1-FBI0OW7dYVJH6QcI.roa
File: 6ufeGYwur1-FBI0OW7dYVJH6QcI.roa (raw, json)
Hash identifier: di3YmS/jNkVnyorN9fEGKry4ln18mBuS+IQly+Z+Mv4=
Subject key identifier: EA:E7:DE:19:8C:2E:AF:5F:85:04:8D:0E:5B:B7:58:54:91:FA:41:C2
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0914
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/6ufeGYwur1-FBI0OW7dYVJH6QcI.roa
Signing time: Wed 03 Mar 2021 02:09:13 +0000
ROA not before: Wed 03 Mar 2021 02:09:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 58.86.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2324 (0x914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Mar 3 02:09:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EAE7DE198C2EAF5F85048D0E5BB7585491FA41C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:59:a2:01:1e:5f:75:ad:db:de:1b:08:45:90:
96:64:7f:3b:51:79:41:f5:f7:49:e9:b9:10:ae:e6:
81:08:6f:94:74:fd:52:a0:40:7e:8c:90:02:08:59:
f0:b6:2d:ba:5c:7c:61:e8:ef:6c:c4:b2:e1:e0:bb:
fa:31:31:a7:66:2d:eb:de:33:a1:16:92:a4:b2:25:
c9:fc:00:c6:85:3e:e1:12:ac:a1:21:02:bf:d8:2e:
cf:17:63:a7:b5:6c:cf:bf:3e:64:9f:9d:ae:47:58:
64:26:c2:20:86:21:0d:e1:18:da:b5:6f:62:5a:d2:
c3:e3:4a:a9:b5:b3:4d:b2:7e:1f:62:1d:7f:dc:9b:
df:21:bb:6a:4c:f2:c1:25:d9:02:c4:a2:9e:7d:0c:
96:44:b2:5a:3f:c2:1a:05:58:25:9d:b1:cb:cb:ee:
1a:64:61:f9:ec:09:2c:f7:2f:d7:aa:1d:5a:d0:8f:
0d:87:78:3a:59:22:67:ee:89:af:97:dc:d3:eb:6a:
a6:37:d1:37:68:4a:1a:cd:31:8a:05:9f:08:e0:bd:
57:fb:d2:5d:6d:0f:34:20:3e:7f:4d:9b:d5:ad:b8:
73:8a:5e:6e:2c:0b:fb:5a:4a:ef:76:fb:6e:ef:61:
29:15:9e:cc:fc:ce:4b:28:28:e2:2c:c3:b4:9e:b6:
6b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E7:DE:19:8C:2E:AF:5F:85:04:8D:0E:5B:B7:58:54:91:FA:41:C2
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/6ufeGYwur1-FBI0OW7dYVJH6QcI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.0.0/16
Signature Algorithm: sha256WithRSAEncryption
74:e7:5e:81:16:40:3d:3a:e4:73:88:91:cd:aa:9f:bf:3b:c8:
78:7e:c3:08:a6:ad:5b:2d:24:a5:b0:22:4d:bb:72:ca:63:72:
d3:b9:7f:9f:27:39:f2:1d:a8:eb:69:b9:f9:67:19:26:57:87:
01:94:3d:3f:55:5a:ad:b0:0d:e4:a0:0d:34:a9:2c:cf:47:11:
a1:92:07:c1:33:93:c9:66:ab:04:91:ce:63:ea:85:ea:1a:df:
ba:3f:31:41:78:c6:af:53:73:a7:d4:c0:8d:18:7b:34:2e:2a:
e0:51:89:ee:0d:a4:47:0e:ee:2e:f2:aa:f4:6a:13:51:8f:23:
b0:c3:05:d3:59:76:ef:94:54:ca:8e:75:44:c0:fa:f7:b3:1c:
5c:27:f1:ed:69:ba:2d:67:e0:e5:61:78:41:7d:83:35:2f:4c:
df:dc:86:55:af:eb:c3:59:aa:d3:73:ca:24:e2:ab:37:01:b7:
30:7f:bc:0b:fb:b7:00:6e:9a:d7:a4:35:54:8a:fc:87:9d:70:
20:51:e2:b3:4b:21:74:46:49:00:b4:03:6e:e3:02:16:5c:34:
7e:01:aa:5f:a1:0c:6b:d0:98:86:49:85:a2:b8:27:65:08:e2:
ff:e4:b9:1c:eb:8c:08:8e:e8:43:8a:49:69:fc:f2:64:f3:7b:
61:8c:2a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org