Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/E5DqivCNAzIHGjz5yvsJPvpKhfg.roa
File: E5DqivCNAzIHGjz5yvsJPvpKhfg.roa (raw, json)
Hash identifier: E0bB9UMUeCL+LJgoB8P6TKHiTRRCJRjriIR42tm3QQg=
Subject key identifier: 13:90:EA:8A:F0:8D:03:32:07:1A:3C:F9:CA:FB:09:3E:FA:4A:85:F8
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0A7E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/E5DqivCNAzIHGjz5yvsJPvpKhfg.roa
Signing time: Thu 15 Sep 2022 02:50:02 +0000
ROA not before: Thu 15 Sep 2022 02:50:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 61.58.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 15 02:50:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1390EA8AF08D0332071A3CF9CAFB093EFA4A85F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:c2:ef:79:f7:10:dd:6b:d3:45:fe:3a:1f:
83:12:92:e5:31:1b:34:be:3a:c7:1e:13:c0:81:08:
2b:e9:d1:0f:c0:87:c6:c9:7d:4a:64:a6:ca:86:20:
6c:eb:aa:89:17:60:34:74:b0:8c:f8:f1:25:69:ba:
1a:47:78:82:63:6a:07:6a:c0:58:40:a6:74:ef:33:
0c:eb:1e:d2:5b:0e:9f:7d:c8:88:e3:10:4e:e6:83:
d1:41:b4:98:68:54:02:bb:16:e1:42:19:3f:68:d9:
04:81:c9:46:53:0e:57:0d:96:ea:e2:1d:3c:fc:62:
ae:51:27:a5:ca:70:9c:a4:03:fc:4c:1d:f5:e9:80:
71:87:3c:3f:62:28:6c:c0:2c:2c:3b:a0:f8:63:18:
75:66:a7:f8:e8:81:aa:39:1e:f8:88:a8:66:7a:08:
c3:d9:2c:9f:44:5e:02:60:d6:98:94:9f:10:b4:64:
e6:37:ab:9a:7d:dd:8c:72:86:bd:1c:d9:d6:df:91:
7d:66:60:74:18:ea:2a:76:5e:22:00:ac:cf:ab:d4:
5f:4a:2d:ba:66:8b:f7:05:e2:0e:d9:d0:f0:55:2d:
53:46:14:ac:8d:f2:a8:39:3d:01:70:cd:9c:94:cb:
b4:04:9b:50:d7:97:39:e5:e1:e1:54:db:2b:75:66:
14:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:90:EA:8A:F0:8D:03:32:07:1A:3C:F9:CA:FB:09:3E:FA:4A:85:F8
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/E5DqivCNAzIHGjz5yvsJPvpKhfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:5d:f0:99:0d:4f:ae:c7:0d:b1:99:41:e7:66:7c:74:b7:70:
f1:ca:82:30:df:54:a6:d6:d3:64:8f:2e:f3:aa:7e:63:e5:14:
40:c2:50:54:79:5a:f7:95:c8:9c:7e:da:a4:eb:2d:a1:0a:e6:
6e:df:e2:27:95:94:dd:e2:7f:35:d2:19:a0:76:48:39:52:86:
74:c1:ad:8a:26:a2:b8:63:d6:5b:41:79:67:25:26:c8:cb:53:
0a:89:50:57:6b:5f:39:74:e0:c2:ba:72:f6:d3:e6:e4:5b:f7:
6f:d8:f7:5c:c5:4e:80:6f:bd:74:54:35:9e:f9:ed:8c:f1:96:
fb:f1:b9:3b:12:15:bf:61:ff:b5:5c:fd:11:ae:bf:ca:4a:4c:
dd:db:4d:c3:c9:de:75:0b:18:2c:75:ad:5c:c6:53:14:13:93:
fc:c8:e4:df:5b:79:cd:2c:47:1b:ef:ab:f0:e3:86:86:7f:76:
29:5d:87:34:72:1b:f4:a7:98:1f:04:d8:e9:a9:08:1c:df:00:
9c:ad:97:a3:67:d1:08:a0:ad:ee:3d:d2:32:8d:e7:bc:af:8f:
a4:92:0e:0a:70:ac:72:c4:bd:f6:00:37:c8:26:39:84:db:e9:
74:15:3d:0a:96:05:11:66:f4:46:e2:35:df:3f:b8:16:df:95:
e0:da:fc:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org