Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/BCGsGXQrkn1UtQHX0MKxfX4EfSQ.roa
File: BCGsGXQrkn1UtQHX0MKxfX4EfSQ.roa (raw, json)
Hash identifier: 4kaLl6Fa1Q5J/x0Zs30oS4zSfJimt7J2kxGRZzBzKe0=
Subject key identifier: 04:21:AC:19:74:2B:92:7D:54:B5:01:D7:D0:C2:B1:7D:7E:04:7D:24
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 098E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/BCGsGXQrkn1UtQHX0MKxfX4EfSQ.roa
Signing time: Wed 29 Sep 2021 02:52:31 +0000
ROA not before: Wed 29 Sep 2021 02:52:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 61.58.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2446 (0x98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0421AC19742B927D54B501D7D0C2B17D7E047D24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6f:23:30:32:e7:1b:96:91:f5:b4:61:83:83:
55:aa:0d:25:0a:dc:56:48:e9:41:45:e4:db:0a:2d:
34:e2:81:32:26:d3:a3:a3:13:91:39:30:cd:8b:98:
4a:6d:c3:4e:b3:db:b1:a8:fd:00:35:d7:8c:b0:b3:
fb:61:f5:c7:35:4f:e8:24:ab:ee:85:a3:d3:ad:8b:
01:c0:aa:ec:78:5e:95:92:f5:93:a8:d0:92:bb:62:
ad:ef:65:40:f7:d8:7f:4e:78:0e:85:28:2f:35:76:
00:57:04:c7:b2:70:42:1d:39:58:a8:7d:b5:71:b0:
9d:82:88:0f:6d:e3:1b:bf:8c:a2:bc:0b:d7:a1:9d:
5f:f6:10:fe:d8:3d:dd:d7:31:bd:cd:60:39:4d:4b:
f7:dc:21:d1:f5:45:4b:1a:80:f2:4c:bb:4e:c9:50:
60:a9:63:1c:d3:77:6f:bf:e2:20:cb:99:5b:da:fb:
74:f1:3f:3e:e0:f7:b8:d9:6a:c8:0d:84:a6:01:e0:
96:1f:02:7b:c1:4f:8c:8e:6f:af:a1:b9:b7:b4:02:
30:32:67:c8:20:05:22:c0:9e:20:fd:5b:bb:39:ee:
28:e4:a2:2a:2e:12:1f:c7:47:2d:29:8e:d5:dd:24:
9f:f0:c7:f6:05:6e:e7:f4:c0:8a:21:e0:d7:47:3b:
b5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:21:AC:19:74:2B:92:7D:54:B5:01:D7:D0:C2:B1:7D:7E:04:7D:24
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/BCGsGXQrkn1UtQHX0MKxfX4EfSQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.80.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:83:30:94:5d:a7:9f:d2:0b:e3:68:af:a7:61:ae:ba:10:8b:
fb:f8:c2:76:cb:d9:63:be:a4:54:e8:7d:d2:4a:9d:fd:00:4c:
f3:06:a8:64:2f:29:bb:f0:c1:de:b3:87:38:ce:a0:27:14:0e:
4c:dc:b0:8e:0c:b6:6b:f3:f4:d3:bc:eb:f3:35:df:60:54:ee:
f4:cd:e0:99:8a:7e:be:bd:d2:5d:ac:1d:41:c8:6e:a7:4e:b8:
b6:44:35:a6:2c:9f:7c:82:29:a6:68:1b:c6:61:1a:b1:88:63:
df:ea:ad:e0:35:2f:9e:a2:83:76:2f:a2:e5:95:30:11:0d:8b:
ac:a6:0b:ea:45:0e:74:27:0e:0d:01:42:6e:ba:29:71:42:e1:
b7:ce:00:2c:c3:df:87:b7:f6:f6:dd:2c:16:b1:a7:ed:bf:d8:
af:98:7d:0d:53:0e:fe:e2:ae:79:b8:f3:ee:95:ed:65:cd:26:
94:01:02:c0:39:d2:1e:fc:e9:0b:f9:9d:38:9f:f0:a8:05:61:
25:5f:ee:b7:82:bb:c1:1d:f9:9d:a6:23:14:bc:1c:7e:42:f3:
f3:3e:33:f9:13:93:ce:2b:ca:64:b0:38:f6:0a:c9:8f:d8:2f:
34:26:00:d3:e4:2a:e2:b1:5d:d2:4a:ed:68:b8:ac:6a:ea:4f:
44:da:33:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org