Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/NYuzblBNtAyyfxJOuTTBtWzH6OI.roa
File: NYuzblBNtAyyfxJOuTTBtWzH6OI.roa (raw, json)
Hash identifier: KTyc5xCPXn+fUuLh16NGLRiS81NWyQUBQOVZAv7BSYo=
Subject key identifier: 35:8B:B3:6E:50:4D:B4:0C:B2:7F:12:4E:B9:34:C1:B5:6C:C7:E8:E2
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0A7E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/NYuzblBNtAyyfxJOuTTBtWzH6OI.roa
Signing time: Thu 15 Sep 2022 02:50:04 +0000
ROA not before: Thu 15 Sep 2022 02:50:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 61.58.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 15 02:50:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=358BB36E504DB40CB27F124EB934C1B56CC7E8E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:77:fb:87:9a:90:05:11:90:09:af:d4:08:03:
6a:1a:91:95:3f:9b:5a:eb:cb:62:b7:b7:d3:46:ab:
67:03:71:be:80:63:97:f3:f8:2c:aa:e0:92:59:f8:
e2:b3:26:cb:14:8a:be:a3:f6:f7:cd:d2:4a:05:fa:
a4:a7:7e:cb:f7:07:2b:7e:2f:bc:99:fc:c1:a8:b3:
56:bb:dd:2c:f9:57:00:3b:d7:3f:d1:34:b1:26:a0:
9a:2d:65:5b:fb:16:45:7d:f7:22:73:45:6b:ac:11:
fb:38:07:dc:26:80:41:69:55:b5:64:ff:cd:52:ea:
74:3a:4d:43:a5:7b:80:e9:e4:e6:f6:97:7a:1d:72:
af:dd:a9:ea:39:28:bd:bc:67:b5:8b:0d:8f:70:4b:
b0:a2:c3:8b:45:26:d3:ac:6c:a1:a3:d5:d6:1b:07:
85:74:12:e5:5f:62:b2:24:55:da:46:83:13:7e:e9:
28:a0:02:ec:a7:ff:d0:07:de:da:a1:8b:b5:43:a1:
e6:24:28:ff:72:8a:1b:1d:88:42:90:83:54:64:fd:
bc:a3:61:d5:e1:28:cb:7a:84:b5:13:73:69:a8:4f:
84:8e:73:7a:ad:cc:88:99:93:f8:4c:8a:3b:c0:cf:
4f:54:92:48:54:94:c7:a9:a8:fe:76:e7:67:65:12:
d9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:8B:B3:6E:50:4D:B4:0C:B2:7F:12:4E:B9:34:C1:B5:6C:C7:E8:E2
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/NYuzblBNtAyyfxJOuTTBtWzH6OI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.160.0/19
Signature Algorithm: sha256WithRSAEncryption
33:d5:4a:b5:a4:52:1d:f1:66:69:8e:4e:94:2b:e6:8c:70:d7:
bd:10:8d:10:68:fa:23:aa:ee:1a:ef:8e:cb:77:c3:96:91:4e:
67:62:dd:1a:4d:8d:82:27:7b:ba:bd:00:e6:63:de:77:bb:0f:
1e:38:83:b4:68:5d:21:e0:52:3f:52:c7:56:7b:fe:9a:81:9a:
96:4a:5c:9b:f8:e4:54:06:69:7c:27:9f:c1:aa:5f:68:ba:70:
8b:b4:a9:2a:a6:be:db:4c:fb:0f:61:18:04:e8:40:bd:5e:79:
50:dc:2c:54:ab:ef:af:54:a0:40:5f:5e:33:29:d0:a2:75:8f:
97:cd:51:38:6c:65:ce:11:c8:58:02:fa:fd:c1:a5:7a:16:58:
fd:bb:c1:60:bf:66:1b:df:67:ba:64:60:ce:36:ff:f8:65:9b:
a6:3d:e6:3e:b3:8c:62:6c:47:a2:94:d8:91:94:21:31:eb:a3:
c5:b0:40:59:53:b9:5a:f3:57:8e:8d:db:56:f7:8b:4b:6f:21:
d9:08:b8:9e:4a:7b:3a:bf:cd:e3:af:f3:e1:66:7a:0d:c8:41:
00:da:ac:d9:f0:41:02:7f:e2:1a:ef:38:69:da:3c:1a:bb:41:
81:90:5a:31:b6:2b:31:d1:40:58:a6:95:ef:43:49:23:4e:37:
47:c4:6b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org