Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/J6lSCItfrfSay7s2xYliXiEAY5c.roa
File: J6lSCItfrfSay7s2xYliXiEAY5c.roa (raw, json)
Hash identifier: dlTJl7J6FibU/z8r/501+lA5uh4arfslxBdMZ/7V2BM=
Subject key identifier: 27:A9:52:08:8B:5F:AD:F4:9A:CB:BB:36:C5:89:62:5E:21:00:63:97
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08E7
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/J6lSCItfrfSay7s2xYliXiEAY5c.roa
Signing time: Sun 07 Feb 2021 11:54:02 +0000
ROA not before: Sun 07 Feb 2021 11:54:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 61.58.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2279 (0x8e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:54:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=27A952088B5FADF49ACBBB36C589625E21006397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4d:68:6b:58:26:03:4a:82:9d:38:e8:18:9e:
4e:fa:d6:ab:06:d8:a7:8c:3f:99:3a:7a:d0:7d:89:
8f:84:33:98:5a:5d:6c:61:3f:35:10:ab:3c:80:04:
12:22:cb:f1:ce:3a:09:d4:26:39:5d:31:ee:90:5d:
a2:78:bf:86:57:39:34:56:8b:27:5e:ab:4f:2c:22:
d3:11:34:d8:2b:12:24:30:2a:68:1c:a9:f2:52:67:
6a:d2:10:ef:16:ad:d8:38:0f:e6:9a:18:1a:c3:0b:
ac:a0:42:89:eb:cc:8c:92:46:f8:e3:54:91:47:cf:
e2:46:e1:73:ce:c1:31:69:80:89:4a:91:75:84:47:
bb:09:a1:b7:d3:93:a6:9d:bd:7c:eb:c1:6b:bd:9c:
d4:c6:76:97:57:a2:99:81:bf:70:9c:f9:22:c7:0c:
e5:c7:07:a6:2c:24:a6:cc:9c:8f:cc:ff:77:72:d6:
05:0f:ce:cc:99:c5:5d:d7:20:a1:4a:81:77:96:97:
a8:c9:8b:62:93:15:01:5d:6d:35:56:db:f2:a1:52:
55:68:ba:db:d1:f5:91:d9:64:9d:12:a1:7d:c3:b7:
57:8f:3f:78:60:6b:cb:86:0b:17:6c:2e:3f:e2:d6:
25:e0:ab:b5:39:bb:2e:a7:4a:48:8f:b9:cd:f3:f0:
61:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A9:52:08:8B:5F:AD:F4:9A:CB:BB:36:C5:89:62:5E:21:00:63:97
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/J6lSCItfrfSay7s2xYliXiEAY5c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.72.0/21
Signature Algorithm: sha256WithRSAEncryption
79:8f:8b:be:14:ad:c2:63:50:38:e1:b4:b0:86:c6:8e:77:23:
de:ec:b1:72:00:58:3a:fa:10:05:e5:7f:e8:7d:d0:9d:be:2f:
61:2c:e4:21:68:95:23:a0:38:ee:07:48:be:61:00:6c:0c:be:
3c:dd:ca:98:d9:03:6f:d4:41:f6:28:60:04:ad:72:46:72:72:
e0:07:74:e9:ed:60:86:7b:20:e5:a0:a1:ef:54:f9:54:a0:19:
6b:49:5e:00:ec:95:79:51:e2:4a:c6:57:7f:fc:9f:1d:13:e8:
21:14:e3:7b:3e:81:68:37:b5:a2:ba:9a:66:2c:2e:96:56:bf:
23:4d:b2:0c:fe:38:f3:e1:b0:5c:8d:49:ae:bc:79:29:32:6e:
f9:41:07:45:fa:bc:6f:85:5a:84:46:14:48:d5:82:c0:ff:1c:
d5:fe:ae:bf:8e:3f:82:e0:87:f9:7e:b2:e3:9a:4b:86:27:f3:
25:56:0b:90:8f:83:89:61:0a:6f:bb:53:44:f5:fc:48:2f:42:
b4:04:48:2a:37:d9:10:bd:52:f4:03:32:cb:84:f2:65:e8:27:
6e:5d:0d:2b:37:42:9d:f8:c1:58:3b:a1:2a:cb:5e:d0:ec:f4:
9f:84:8d:83:5e:5b:f9:9f:af:62:42:ee:59:e2:c5:09:e3:df:
e2:3b:7f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org