Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/2Bgetp8qh45OSmIHsy9BPiiK480.roa
File: 2Bgetp8qh45OSmIHsy9BPiiK480.roa (raw, json)
Hash identifier: VsLmOOOMZQFq8nMk9mopLy2yJcvus+IUBwo+fB9HqRM=
Subject key identifier: D8:18:1E:B6:9F:2A:87:8E:4E:4A:62:07:B3:2F:41:3E:28:8A:E3:CD
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08D3
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/2Bgetp8qh45OSmIHsy9BPiiK480.roa
Signing time: Sun 07 Feb 2021 11:53:49 +0000
ROA not before: Sun 07 Feb 2021 11:53:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 61.58.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2259 (0x8d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D8181EB69F2A878E4E4A6207B32F413E288AE3CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5e:90:d1:88:e1:af:b4:5c:38:88:45:b0:ba:
0f:2e:7a:05:96:9c:19:9b:46:2e:b0:5b:a2:ba:42:
53:aa:b9:54:cc:f6:3b:4f:34:f5:fe:d9:03:3c:1e:
3d:f4:0c:9e:f2:ea:ed:eb:8a:b6:3b:ec:7f:23:49:
84:64:90:cc:5d:9e:b7:d6:9c:36:7c:75:48:9a:9f:
ac:c8:04:48:d9:16:86:f5:93:81:45:88:e0:19:55:
4e:a1:72:48:3b:ae:7d:28:5e:ad:16:aa:86:9d:d3:
6b:76:a7:e4:5c:fc:38:c0:0a:8d:0b:f2:05:11:9b:
b1:61:2e:31:34:7b:34:cd:78:60:cb:fc:22:b4:a0:
38:72:9c:9d:c9:24:fe:f2:f5:8d:13:c5:be:17:09:
5e:67:7b:2a:13:4c:18:a1:47:a8:a8:5c:a8:0b:41:
27:d9:90:ab:d9:2b:a2:85:58:aa:ea:ea:da:c6:52:
2f:3a:c2:25:17:de:7c:ef:0d:77:d5:62:9f:87:30:
ba:da:09:26:c7:c9:15:04:ae:27:05:65:b1:e7:d4:
24:64:40:ae:72:db:9e:ad:84:b0:c9:07:2e:30:0c:
2b:86:69:50:16:44:03:ea:0c:25:60:ae:27:be:bd:
12:53:c5:c9:7a:66:e6:ed:b8:35:fc:a0:cf:e2:d1:
ac:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:18:1E:B6:9F:2A:87:8E:4E:4A:62:07:B3:2F:41:3E:28:8A:E3:CD
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/2Bgetp8qh45OSmIHsy9BPiiK480.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.160.0/19
Signature Algorithm: sha256WithRSAEncryption
cc:37:af:a1:54:e0:5d:eb:9f:c1:54:80:22:97:bb:c1:be:43:
11:96:33:2c:b0:2c:32:26:92:8a:d9:96:08:0e:c7:54:39:c3:
6a:2c:1a:05:a2:17:d4:00:b5:fb:c0:c5:ef:b5:c7:85:b5:6f:
41:22:70:71:41:52:33:2f:3a:c0:81:29:ea:f5:ac:3b:1e:ee:
c9:7f:2f:8b:11:f2:b7:c8:80:5f:87:a6:df:75:2e:d4:18:9b:
b9:ec:a1:3b:87:08:a1:3e:73:55:34:9b:5f:d8:6d:04:f7:a9:
5d:b1:ad:b1:e3:9f:10:ea:6a:7c:e5:a6:ce:98:fa:67:42:68:
ee:2a:0f:0a:7a:87:a0:33:c0:d4:69:0a:90:7d:ba:85:dd:e2:
1f:b3:96:77:01:e0:4c:de:53:ce:57:05:38:6b:a2:e0:4d:57:
ab:69:f7:4f:2a:3b:1c:b0:56:83:c9:45:84:75:ca:0d:3d:a2:
0c:4c:97:c0:ac:b9:5e:d1:f8:1d:14:ce:fe:ed:2c:92:fc:a6:
9f:c1:02:9b:72:bd:dd:42:31:e1:75:21:4b:66:83:cc:4b:ed:
79:8a:af:8c:3b:27:64:bf:be:81:6d:72:2c:a3:bb:e8:b1:86:
85:dd:f2:f2:fb:40:f4:d4:41:0f:69:e5:d5:bb:67:24:3a:04:
9a:cb:89:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org