Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/Q8noVpkCM84boAq_VCFb0I4i6Ps.roa
File: Q8noVpkCM84boAq_VCFb0I4i6Ps.roa (raw, json)
Hash identifier: xvi7ZecF4RGcVW3zGq6mCiK+iw6dT2PbBeyuJzlVo+Y=
Subject key identifier: 43:C9:E8:56:99:02:33:CE:1B:A0:0A:BF:54:21:5B:D0:8E:22:E8:FB
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 07A2
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Q8noVpkCM84boAq_VCFb0I4i6Ps.roa
Signing time: Tue 29 Sep 2020 10:04:29 +0000
ROA not before: Tue 29 Sep 2020 10:04:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 58.86.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1954 (0x7a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=43C9E856990233CE1BA00ABF54215BD08E22E8FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:77:9a:c9:cf:de:39:d9:0f:03:39:3a:07:9e:
ae:be:35:8e:ef:c7:18:98:e9:20:98:80:ca:b1:ad:
fd:31:a2:98:50:e4:2e:84:71:58:65:61:08:55:29:
bc:24:f4:c2:63:9b:35:05:d3:24:1e:9d:22:c1:26:
fa:99:82:db:f6:61:b0:aa:6f:fd:46:bb:cb:6d:0e:
96:5b:05:07:de:2f:c6:ae:b8:5e:1d:53:1d:14:de:
ca:2a:e3:dc:e5:19:49:49:06:96:9f:bb:cd:b2:4c:
af:65:51:77:6d:f3:7e:f9:0c:10:8d:f8:8c:fa:51:
6a:f0:88:b4:ba:22:bb:19:56:7d:22:c5:90:a5:08:
cd:a7:87:8a:48:88:82:8f:a4:5f:ab:2b:53:0b:a2:
83:0b:cd:ca:bf:82:dc:8f:32:aa:af:02:a7:51:72:
21:59:e6:45:25:0f:63:75:22:05:e3:0c:a9:ee:98:
46:f0:84:d2:c9:81:86:50:46:41:73:e6:db:e7:21:
e8:16:74:c3:29:a1:2a:89:03:00:7f:e9:06:d1:8c:
91:ec:1a:be:1e:d4:40:c8:e5:45:d2:eb:f6:cd:3d:
78:25:28:36:f0:c2:03:c5:67:86:d0:ab:a4:bf:59:
8f:10:58:80:17:4b:bf:11:a0:d6:10:35:cc:49:0f:
a2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C9:E8:56:99:02:33:CE:1B:A0:0A:BF:54:21:5B:D0:8E:22:E8:FB
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Q8noVpkCM84boAq_VCFb0I4i6Ps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.55.0/24
Signature Algorithm: sha256WithRSAEncryption
61:65:9b:28:ad:6a:68:11:6a:e2:63:7e:6c:6e:fe:85:de:45:
d4:46:70:ca:f8:9e:3a:71:89:cd:6a:91:fa:50:09:76:ee:87:
20:f6:66:7c:51:d1:18:34:7a:51:22:01:ea:f3:44:03:bf:6a:
3b:e5:57:5b:8f:17:8b:e7:23:f4:4a:b0:3b:45:f4:7e:cd:f6:
23:df:34:80:b4:4b:17:cb:55:7e:39:c3:db:7a:b9:db:8b:32:
0f:6c:87:3b:06:93:57:c8:87:19:10:29:bb:32:6f:c9:dc:f0:
12:c3:cf:bf:bf:99:05:ff:06:ac:3d:0d:6d:5d:67:cf:63:02:
3a:df:d6:e0:7e:f9:a9:cc:4b:f1:62:fb:07:0a:6f:ec:e2:fb:
2b:39:c5:25:5e:1e:a9:82:49:03:78:cc:0e:d2:b3:55:b8:53:
64:5e:d9:37:2a:41:95:c0:3b:9e:9f:16:52:ec:83:cc:de:08:
58:85:1e:96:d8:69:57:a3:18:5a:3f:48:46:12:d7:47:22:d6:
9d:e5:99:8a:8d:f7:7d:98:c5:e5:80:48:16:04:af:89:32:2e:
40:a9:a0:c4:fe:82:c5:79:ad:9d:68:b7:0f:7e:c7:b4:2b:c9:
7b:60:a6:7d:50:1c:5b:6d:98:4c:7a:c5:c6:6a:36:4c:38:03:
43:6d:bd:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org