Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/AdWcKWPIt0E807ZSs5x7teUtXGw.roa
File: AdWcKWPIt0E807ZSs5x7teUtXGw.roa (raw, json)
Hash identifier: ZtSuCAkgHvjnSKDHUNYHYdTza6KuRlyUIHQ1M5Vo3j4=
Subject key identifier: 01:D5:9C:29:63:C8:B7:41:3C:D3:B6:52:B3:9C:7B:B5:E5:2D:5C:6C
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 079E
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/AdWcKWPIt0E807ZSs5x7teUtXGw.roa
Signing time: Tue 29 Sep 2020 10:04:28 +0000
ROA not before: Tue 29 Sep 2020 10:04:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 58.86.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1950 (0x79e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=01D59C2963C8B7413CD3B652B39C7BB5E52D5C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3a:c7:47:36:04:73:7f:0b:2f:dd:3a:06:ec:
4b:85:64:1e:08:ac:07:73:d9:fc:25:83:70:22:ce:
1d:f5:3a:8d:7b:80:d1:db:c6:07:d3:ce:d9:96:ca:
2f:75:32:30:69:c1:67:70:fa:72:0a:80:e8:0b:f9:
de:06:90:1b:69:56:21:b1:09:54:79:7b:dc:26:39:
68:e3:d3:a3:52:ea:a5:aa:e8:47:89:fc:29:64:2a:
f7:d6:81:41:c2:9b:cf:e1:93:df:51:9f:3f:ea:79:
32:91:92:b1:04:ce:2d:7a:0c:40:05:85:fa:5e:0c:
50:e3:7d:ca:01:2c:ba:8f:9c:3c:2c:83:5d:1d:a9:
11:0c:da:99:89:57:f0:8a:b5:3f:33:fe:97:93:b2:
0d:e8:b4:89:e4:4d:7c:88:05:54:86:8c:0b:a6:7c:
89:77:b0:38:c2:0c:a0:89:69:10:98:e2:0f:da:7b:
96:17:2d:e8:e9:16:ed:7d:a1:02:33:c1:7d:c4:05:
bc:c7:30:5a:71:0a:d5:1f:76:d4:c1:fb:36:35:8b:
5a:82:4d:6c:6e:50:a2:bd:c8:06:2f:19:74:6f:10:
36:2b:00:1c:38:82:b2:36:cd:85:4c:61:4a:3d:d9:
94:a8:a7:b7:76:be:f5:c2:a0:c0:af:04:34:7a:4c:
dd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D5:9C:29:63:C8:B7:41:3C:D3:B6:52:B3:9C:7B:B5:E5:2D:5C:6C
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/AdWcKWPIt0E807ZSs5x7teUtXGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.38.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:7c:b1:e7:fe:ab:8a:ad:bf:c9:bc:b4:ce:f3:e6:14:c4:53:
58:73:aa:61:cb:9b:3c:58:cb:4a:5c:b0:92:cb:3b:c1:ea:76:
6b:20:cb:e5:90:d3:0b:33:ba:61:af:57:06:ba:91:a4:61:7b:
38:64:49:c0:09:60:71:6c:04:f7:8b:46:07:98:3e:35:60:14:
b6:66:4f:08:e8:a5:e0:f6:36:b9:1e:ca:45:de:e6:27:47:fe:
1f:90:c6:0f:c3:3d:bd:27:ca:e2:fa:3c:d1:44:96:68:83:01:
e8:e2:c4:4a:10:a7:61:51:f3:eb:68:4c:8c:0b:a2:25:17:55:
cf:f8:48:a3:af:07:9d:3d:84:a9:cd:99:8f:b1:c8:e6:0d:13:
c6:e6:f7:af:37:5a:93:6a:bd:13:76:f3:a5:3c:2d:b9:10:d4:
1e:c2:32:90:74:a4:97:69:4c:bb:fd:67:13:69:b6:79:24:4f:
2f:85:29:41:b8:6d:13:c5:6b:00:cb:e2:e1:ea:a3:46:0d:37:
b7:ef:c1:f3:35:64:86:68:05:8b:22:a6:0d:84:f8:eb:d9:e6:
42:21:b8:78:46:3c:5e:92:12:78:47:f6:b0:22:9e:51:c8:0c:
56:2d:ed:0c:16:49:66:aa:55:08:6a:78:1e:33:9f:27:74:c5:
b3:5b:09:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org