Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/boVztb7FuyEwRvdww0wBH4ZWCO0.roa
File: boVztb7FuyEwRvdww0wBH4ZWCO0.roa (raw, json)
Hash identifier: 9ebOPbrqmF/49gI8aRYLX3FGrzMRE5xCi/5lkwKi5Ng=
Subject key identifier: 6E:85:73:B5:BE:C5:BB:21:30:46:F7:70:C3:4C:01:1F:86:56:08:ED
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09B6
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/boVztb7FuyEwRvdww0wBH4ZWCO0.roa
Signing time: Wed 29 Sep 2021 02:40:45 +0000
ROA not before: Wed 29 Sep 2021 02:40:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 58.86.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6E8573B5BEC5BB213046F770C34C011F865608ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:21:a6:f5:0b:c7:ba:0a:a2:47:23:fb:9d:5f:
23:04:1d:f8:02:25:79:b1:2c:30:2f:c0:dd:aa:30:
9e:9f:13:95:19:08:89:38:34:dd:f3:40:de:1b:79:
99:0a:b8:50:83:fc:f3:c6:38:86:33:b4:f3:8f:7c:
c4:0a:09:22:77:de:eb:74:b0:59:06:04:a2:21:7c:
a9:10:b1:3a:05:54:ef:ab:70:3d:a9:c6:4f:b9:54:
95:ee:ef:a2:df:2f:6f:9f:2b:95:a7:66:45:c5:6e:
6f:97:c3:cb:50:92:df:c6:ee:a4:20:1d:1e:0b:ef:
cd:07:25:5f:06:a7:ba:69:a6:c4:06:bc:3c:2f:60:
3a:a5:37:49:b8:2c:cf:6a:01:97:f9:48:f3:7a:0b:
d9:ff:59:72:c1:fe:fb:13:d5:01:36:5c:eb:2b:56:
7a:b6:e0:70:59:66:01:7d:8b:fe:7a:ad:08:9d:ad:
4e:47:60:77:73:5d:cc:56:e3:e0:5f:d9:fc:83:9d:
30:fe:a5:95:b5:49:70:73:e4:d3:25:d1:90:6d:f5:
09:c9:a7:2c:f8:35:0d:b0:fe:b3:90:c3:32:7d:38:
f8:2f:4c:a7:4b:a5:12:e0:b9:99:58:c7:1a:77:ac:
7f:fc:0b:1a:6e:b5:56:ec:d9:13:06:7f:a6:7f:f6:
7d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:85:73:B5:BE:C5:BB:21:30:46:F7:70:C3:4C:01:1F:86:56:08:ED
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/boVztb7FuyEwRvdww0wBH4ZWCO0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.55.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:8f:7a:a1:1d:05:42:5c:a7:07:b3:f8:b7:38:17:6c:b9:5c:
52:1f:88:d5:49:25:ed:84:10:06:cb:40:01:8d:ad:d9:6b:62:
4f:99:40:20:75:44:de:4b:50:d8:40:79:c2:c4:76:30:6c:d6:
af:53:84:0d:51:42:e7:bc:65:3f:43:48:65:e7:b5:b2:5b:e6:
9e:9c:b3:10:d4:62:90:4e:82:a1:de:d4:06:90:e2:89:4b:ab:
71:88:95:ae:cb:77:82:52:0e:d3:50:3f:71:02:51:70:53:59:
47:9f:11:8a:69:58:bd:4e:f9:48:9c:e0:2b:8d:66:58:5d:c8:
f9:a8:f2:89:c4:28:6e:cd:10:1b:d1:b8:63:2e:63:79:78:63:
af:ac:f6:93:9f:19:43:15:fd:56:0c:0f:e3:30:55:08:34:68:
12:ae:b6:10:0f:37:a3:57:b2:08:70:e1:39:6b:23:55:9c:34:
de:7c:c5:9b:03:fd:48:6e:7f:e0:33:93:6f:76:b0:1a:a2:55:
4b:c7:db:7b:b1:b3:3c:69:24:26:cd:fc:d0:48:9e:32:b6:b3:
94:b4:c9:51:18:fb:79:96:32:09:b5:e4:19:c4:e6:ed:79:39:
82:f3:37:34:c3:83:80:7a:38:01:1c:e8:42:90:ef:74:1f:59:
2a:40:aa:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org