Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jS9yifXHkwqIcA-HJCcjAukyvho.roa
File: jS9yifXHkwqIcA-HJCcjAukyvho.roa (raw, json)
Hash identifier: mdeo9jWd3hvkatPC7aGbm2vJ/j2+XlXl7K0OuQE1c+o=
Subject key identifier: 8D:2F:72:89:F5:C7:93:0A:88:70:0F:87:24:27:23:02:E9:32:BE:1A
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0986
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jS9yifXHkwqIcA-HJCcjAukyvho.roa
Signing time: Wed 29 Sep 2021 02:52:29 +0000
ROA not before: Wed 29 Sep 2021 02:52:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 61.58.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2438 (0x986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8D2F7289F5C7930A88700F8724272302E932BE1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:32:95:ea:2e:59:28:e5:c6:9f:50:cd:ef:29:
53:c7:4d:5f:74:2c:27:18:0a:4c:b5:22:e7:de:ad:
28:9d:73:bc:27:89:1f:41:39:b2:c3:b0:f4:1a:b8:
51:20:1e:a6:b7:b4:82:38:c1:8f:d8:d9:da:31:52:
64:23:e6:3e:a8:24:ab:cd:91:6d:54:4e:e1:40:80:
e3:83:74:65:e1:3f:12:9f:72:cc:16:71:24:f0:d1:
2e:1c:74:ac:79:d3:99:f7:e5:9d:2f:75:c4:bb:9a:
c7:b1:47:b2:40:06:6f:09:25:37:81:79:cb:a2:fc:
d8:be:f5:91:ae:13:b2:32:0c:a3:91:73:22:e4:22:
73:cf:d3:0a:3e:31:27:34:04:1f:cf:58:34:2f:e1:
45:d2:34:c1:f5:b8:52:b6:e8:49:3d:0c:9e:e5:eb:
15:9d:ae:30:7c:66:41:ea:36:fa:ca:bd:a3:ba:36:
d7:a3:06:1c:8d:26:16:96:70:30:c6:d1:25:0e:c2:
cf:a2:da:83:06:73:54:33:0c:10:b7:c9:24:9f:26:
e3:7b:8d:9b:2c:a8:84:37:01:f0:55:da:9b:e8:50:
27:6a:f1:cc:56:af:93:3b:f8:45:8f:a4:74:fe:b6:
16:dd:7e:b2:a3:7d:9c:97:09:83:c6:fd:02:fa:c9:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2F:72:89:F5:C7:93:0A:88:70:0F:87:24:27:23:02:E9:32:BE:1A
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jS9yifXHkwqIcA-HJCcjAukyvho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:90:59:e4:48:5f:35:cc:41:e0:8b:bb:39:2b:18:41:18:4c:
a8:90:61:28:a2:e0:22:e1:4f:4d:97:13:4e:90:82:bd:08:2c:
7e:96:53:83:1d:50:f4:22:70:c6:8e:f2:f7:29:aa:7f:69:47:
5c:80:b8:ac:4e:71:45:8b:5d:20:e7:c2:3b:a8:11:96:e1:a7:
f0:a2:bd:d1:cd:7a:91:38:17:d1:ff:f0:9a:57:9c:3a:ef:56:
56:48:21:af:8c:c3:d6:ab:f4:50:61:72:4c:da:f9:92:5a:19:
40:d0:61:22:2c:45:24:02:91:71:cd:51:99:c8:b6:f6:89:fb:
7d:bd:ea:3f:5c:6d:05:15:bc:b9:49:5c:4d:95:76:17:9a:e0:
1a:7b:d6:9a:fb:97:a1:7d:66:f9:67:00:40:c8:42:13:3e:a9:
40:81:8e:8e:6b:c2:5b:bc:51:44:38:f1:8a:66:26:d1:66:03:
3a:65:cf:30:b6:47:29:57:68:ad:c1:05:2a:87:81:ee:e0:62:
2f:78:ce:1c:1b:2b:41:ff:20:9d:c2:8b:df:a4:55:cc:0a:8c:
f8:93:55:f4:cf:c8:9a:45:6c:92:60:90:ff:1a:12:75:99:9f:
43:29:dd:d0:f6:83:49:87:ce:4f:c1:56:8c:9b:bf:48:5f:c5:
66:b0:a3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org