Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/UO0cp4_krE4h0wzH54NZEuU82VU.roa
File: UO0cp4_krE4h0wzH54NZEuU82VU.roa (raw, json)
Hash identifier: 53RAPD8Dc+PNzHu1zul8A088k9O7Up9noXmiDCN6+/I=
Subject key identifier: 50:ED:1C:A7:8F:E4:AC:4E:21:D3:0C:C7:E7:83:59:12:E5:3C:D9:55
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 08D2
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/UO0cp4_krE4h0wzH54NZEuU82VU.roa
Signing time: Sun 07 Feb 2021 11:55:28 +0000
ROA not before: Sun 07 Feb 2021 11:55:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 61.62.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2258 (0x8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 7 11:55:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=50ED1CA78FE4AC4E21D30CC7E7835912E53CD955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1f:fb:cd:b7:0e:eb:97:32:1a:3c:2f:1a:30:
00:82:b2:b2:97:62:65:ea:b2:f3:79:fa:87:fd:6c:
5f:75:63:e7:0a:9c:88:01:7f:d7:84:b6:0f:a9:f1:
f7:b6:13:47:13:5e:2b:bf:55:1f:c3:b1:c3:7b:aa:
37:2e:68:8d:fb:8d:0b:0b:e4:4b:08:b9:94:fe:b3:
6b:78:e8:8c:74:b1:b4:17:6e:06:0e:b1:94:75:4c:
7e:79:ca:eb:92:9a:7d:84:79:43:6f:39:5f:43:ad:
ee:71:1d:65:51:5f:d4:17:36:bb:a0:8b:12:7b:4e:
15:0f:1a:d4:a2:a0:3d:7c:6d:95:10:69:c4:44:65:
ec:94:ac:32:71:84:bb:38:d2:60:b9:9f:e5:a5:70:
14:6b:0d:fe:e2:62:48:39:63:93:4e:6c:41:62:4a:
55:38:fd:02:c4:7a:0a:41:0d:21:3b:28:00:ad:65:
0e:f2:0a:86:f7:c1:22:e8:12:0e:65:9c:f6:f7:ed:
c6:57:0e:be:8c:58:d4:20:55:75:08:2a:35:e6:11:
e9:33:f4:62:31:c9:9f:56:36:7e:2d:c4:91:7e:c3:
ed:d4:49:9f:a3:bd:69:69:6e:96:f6:88:22:83:cb:
06:ae:f7:73:2e:fa:ab:94:57:c9:24:ea:b9:36:92:
3b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:ED:1C:A7:8F:E4:AC:4E:21:D3:0C:C7:E7:83:59:12:E5:3C:D9:55
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/UO0cp4_krE4h0wzH54NZEuU82VU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.62.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:0a:80:c4:3c:7a:16:f7:ef:54:f1:c8:46:ee:6b:7e:b3:9f:
73:06:c7:d4:cf:3f:ac:51:be:d3:d3:38:91:d1:99:8c:08:67:
fc:04:32:a9:86:82:9b:20:2e:a7:77:b0:f2:38:eb:79:e2:ca:
70:2e:97:91:10:eb:f9:8b:cb:67:ef:1d:e4:ea:a5:eb:6f:03:
02:b5:33:0f:34:f1:ec:d6:41:84:49:64:30:3b:6f:c1:fd:42:
14:e2:7a:41:dc:26:52:9c:65:05:42:90:2e:a4:de:d2:ea:a9:
02:cf:c3:7a:ca:81:09:4f:e3:1a:ef:0b:1b:df:17:80:6e:40:
60:2c:75:ee:ca:1b:9b:52:93:32:82:71:58:db:9e:b1:29:5a:
2d:4e:6d:a0:cf:d7:db:1f:c2:1f:83:ab:0e:7c:85:26:d8:24:
b5:58:35:1a:8b:76:6c:be:b2:4d:1f:72:13:46:cd:61:ca:3f:
a1:64:0d:89:7c:11:cb:8d:85:f7:d1:b2:e8:e4:0e:c1:16:63:
39:2c:87:f6:6e:28:0a:26:81:0c:b6:be:6c:55:2c:dc:d6:1d:
4c:76:0b:ea:b7:68:ee:39:23:fd:91:eb:f8:ac:fe:b2:9d:fc:
9f:81:a9:ea:7f:0e:96:60:49:8d:84:0b:b2:94:66:ab:fb:ef:
6c:85:c2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org