Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/FExP7WhG2cPHiy7rRv4T33jP3Rk.roa
File: FExP7WhG2cPHiy7rRv4T33jP3Rk.roa (raw, json)
Hash identifier: buwAuZ/5nRuqpa54CIlAzpHpBc0OwJmcF3gkf9u1AMk=
Subject key identifier: 14:4C:4F:ED:68:46:D9:C3:C7:8B:2E:EB:46:FE:13:DF:78:CF:DD:19
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09B3
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/FExP7WhG2cPHiy7rRv4T33jP3Rk.roa
Signing time: Wed 29 Sep 2021 02:40:44 +0000
ROA not before: Wed 29 Sep 2021 02:40:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 58.86.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2483 (0x9b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=144C4FED6846D9C3C78B2EEB46FE13DF78CFDD19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:3b:d5:ea:28:de:13:8f:b5:0f:48:42:4a:
ff:b2:27:5b:25:ae:d9:a2:57:71:1a:63:63:87:45:
88:03:60:83:0b:3c:10:c4:8d:c6:da:c7:44:47:0e:
85:cf:12:64:13:f4:e5:f9:09:e7:aa:76:bc:17:da:
0b:27:be:52:39:c5:37:2f:fa:b4:7b:31:06:cb:33:
78:72:cd:a4:f8:99:e0:4b:ac:bd:83:4b:e3:d9:48:
51:f8:21:65:9e:3c:97:14:9c:95:05:9b:9e:d5:f9:
af:d7:29:f5:9b:22:f1:49:13:c7:9f:20:b5:a2:64:
0d:2a:89:79:bb:48:c5:d0:fc:8a:c0:93:52:9c:64:
ed:dd:31:6b:e8:ad:16:d9:13:30:23:76:37:17:65:
8d:8a:64:cf:b6:50:8b:84:8d:9a:c3:2d:79:52:50:
a8:a1:c9:78:a6:15:d4:52:47:80:b4:e7:80:d8:8b:
00:fd:21:a1:b5:8a:f6:36:fe:e4:c4:91:f7:b4:f5:
9d:57:21:73:0d:18:80:6e:9b:d3:77:d0:bf:d2:0e:
47:20:0b:84:d7:57:22:4f:86:30:c6:80:16:1c:85:
2f:9e:31:99:0f:74:a0:48:05:ff:6b:3e:15:fc:64:
2f:24:d3:1c:f0:7a:04:f3:27:4b:86:65:bc:ca:54:
63:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:4C:4F:ED:68:46:D9:C3:C7:8B:2E:EB:46:FE:13:DF:78:CF:DD:19
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/FExP7WhG2cPHiy7rRv4T33jP3Rk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.46.0/24
Signature Algorithm: sha256WithRSAEncryption
32:63:ba:70:2b:7a:d5:32:7c:27:08:06:56:6a:10:e4:22:23:
76:18:5e:b6:bd:7d:92:4b:ce:f2:bb:12:ba:8e:da:04:13:d2:
9f:f9:fc:b1:e7:23:ef:00:84:9c:ab:60:7c:a4:0a:e1:7c:f7:
98:fe:8b:7f:55:41:65:e1:71:25:fe:9d:1e:0b:4c:b0:a9:1b:
1c:01:ed:ab:bf:89:3c:f6:45:5f:36:55:9a:cb:b9:05:94:6a:
16:de:00:2c:e5:f2:79:f1:f5:56:76:90:e0:32:bf:a3:e2:98:
9b:80:d6:8c:9a:37:63:89:92:8e:57:c6:cb:c1:da:6c:49:16:
48:0d:6e:99:b9:85:f3:65:4a:4f:42:cc:74:53:a9:88:1d:57:
ce:93:ed:c2:7d:6f:ff:fa:c0:ea:5d:2e:fa:67:c8:3f:b6:44:
66:86:bc:96:3a:37:ba:a6:8a:0a:eb:a9:ac:79:e3:e9:07:3d:
84:39:88:2a:7e:f7:e5:ad:a7:52:bf:38:a7:26:48:0a:69:4a:
80:a2:93:c0:3b:00:12:17:a6:b0:fd:68:1e:83:ec:06:31:22:
9f:f7:a6:32:22:5a:57:ad:56:12:89:39:20:ab:5c:ae:b7:dc:
05:4f:a4:45:be:19:73:d7:1c:af:db:87:15:b0:a3:32:50:8d:
70:e5:e5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org