Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ak5m-Jy6dAk-HxmBg3r8aqxbSTY.roa
File: ak5m-Jy6dAk-HxmBg3r8aqxbSTY.roa (raw, json)
Hash identifier: WfQqbdFNQOlt5OaiXRN1FBuP/CpUaQLsvaAjZfu6bZI=
Subject key identifier: 6A:4E:66:F8:9C:BA:74:09:3E:1F:19:81:83:7A:FC:6A:AC:5B:49:36
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0781
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ak5m-Jy6dAk-HxmBg3r8aqxbSTY.roa
Signing time: Tue 29 Sep 2020 09:59:57 +0000
ROA not before: Tue 29 Sep 2020 09:59:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 61.58.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1921 (0x781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 09:59:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6A4E66F89CBA74093E1F1981837AFC6AAC5B4936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:91:bb:f7:05:37:fc:d9:41:3a:41:8a:5f:48:
ab:13:e8:66:3b:be:8b:1d:e3:fc:3b:39:8e:ff:62:
ea:c9:ac:40:95:35:e8:c4:5c:fd:5d:7c:78:ee:10:
b3:cf:9f:50:7b:49:cb:fd:4f:df:63:e3:ea:80:ce:
5c:c8:9a:22:79:6c:0b:a9:5a:13:88:d4:92:26:87:
06:54:a8:2a:e3:b4:d5:a4:0d:23:4d:13:63:97:28:
56:c9:ef:a4:5a:cd:b6:70:c5:47:bc:e4:e5:b0:77:
25:72:f0:4c:48:d7:8d:5a:6f:73:2b:53:ef:f4:74:
45:b2:2e:cd:f0:69:15:a9:ed:30:ac:21:8e:72:23:
15:22:b4:06:db:ce:ee:98:55:d4:02:b3:df:8d:23:
56:38:c4:1e:7e:cd:5b:ba:59:37:d5:17:52:c2:ee:
33:d7:ad:b5:13:68:09:a8:0a:13:b5:02:7e:6f:4c:
d5:8f:90:ab:8d:62:cd:71:cb:d4:09:06:a7:ef:4c:
76:bd:ac:94:97:61:3b:27:f5:63:3c:2a:60:4c:a1:
0e:7b:3a:64:82:d9:72:d6:7f:77:85:0e:bd:52:62:
40:ba:97:61:fc:8c:aa:50:f4:91:3a:f4:ba:11:8f:
82:08:fc:fe:4b:30:da:6b:2f:77:e3:60:09:d2:27:
96:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4E:66:F8:9C:BA:74:09:3E:1F:19:81:83:7A:FC:6A:AC:5B:49:36
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ak5m-Jy6dAk-HxmBg3r8aqxbSTY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.160.0/19
Signature Algorithm: sha256WithRSAEncryption
57:37:25:4a:41:1d:0e:5f:81:d4:fa:ea:84:e0:bf:a2:00:0a:
20:87:5d:78:1c:5e:45:7e:18:cb:01:bb:09:26:04:7d:cf:50:
2e:24:d3:9c:fa:6c:3b:db:b2:18:d9:6a:7c:ec:d7:6d:ff:81:
90:f9:07:cb:45:34:ba:e1:58:e5:50:dc:15:ed:56:e7:79:d2:
cd:a4:ff:f0:76:81:30:07:f2:80:da:37:73:9b:f9:24:68:8b:
ea:54:72:5b:4f:eb:cd:0a:6a:01:34:c8:13:02:95:46:ec:41:
1f:fe:f0:8c:73:25:86:9f:03:bc:5e:74:80:1b:63:50:93:ea:
8b:f9:50:84:67:5c:f3:3e:0f:85:68:28:3b:42:16:8f:9d:68:
c6:5c:02:0d:34:46:9a:c7:e4:c2:70:2d:63:db:b2:d2:a4:58:
8f:df:76:19:e2:78:ad:d5:92:d2:50:16:bb:93:0f:16:2f:45:
be:0e:d2:08:5a:8f:50:14:da:87:eb:d7:59:71:7b:31:64:d0:
e5:56:84:df:f6:87:db:77:80:a2:73:69:bd:81:c5:70:d4:25:
f7:1b:e0:4a:ff:9b:f9:d3:19:06:4a:cf:74:0d:1f:3f:76:67:
be:f8:f3:79:94:86:6c:36:04:cb:81:6d:c1:bd:75:86:ef:69:
88:2d:b5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org