Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/2iZziHGsUETZc4enjOG_nTZMDfc.roa
File: 2iZziHGsUETZc4enjOG_nTZMDfc.roa (raw, json)
Hash identifier: VZMhjLtSArmH6xjIlfXYzkts5gjNtWZrFbEMbvP2/+M=
Subject key identifier: DA:26:73:88:71:AC:50:44:D9:73:87:A7:8C:E1:BF:9D:36:4C:0D:F7
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/2iZziHGsUETZc4enjOG_nTZMDfc.roa
Signing time: Thu 15 Sep 2022 02:51:00 +0000
ROA not before: Thu 15 Sep 2022 02:51:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.67.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA26738871AC5044D97387A78CE1BF9D364C0DF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ce:79:e5:c7:be:b6:ac:ae:28:42:49:1e:b8:
2a:92:cd:0c:72:52:9f:d7:79:4e:5c:2c:c1:d6:bd:
ce:04:09:34:b7:fc:b1:e0:72:33:1c:03:5d:6d:e5:
84:75:20:7c:18:c3:7d:30:8a:11:b7:59:11:56:03:
98:47:c2:8d:70:b2:82:90:32:af:cf:90:5d:1d:c0:
1b:af:51:4f:c2:16:ab:98:99:c2:39:ef:c4:4f:0f:
f6:fd:64:87:f9:9b:8f:68:3d:38:f2:ba:3c:cb:9a:
42:f6:52:75:99:e7:a8:3a:66:67:e2:d8:dc:af:b0:
4b:35:d7:8f:d1:0b:fe:0a:97:17:89:2a:b1:8c:08:
22:56:51:5d:c0:46:2d:f9:ad:f7:3f:69:31:60:08:
4a:c6:c5:93:d2:6b:76:a3:d0:bc:79:c2:24:2a:00:
55:32:50:34:ad:9a:f2:0f:73:27:77:c2:4f:93:4a:
f3:d7:d4:f7:2c:7b:91:3a:68:34:1b:55:32:bb:af:
54:95:27:11:7e:86:5e:7b:52:ab:e6:0b:c9:59:47:
47:66:23:1c:06:d1:85:f9:81:73:af:ce:45:ff:d5:
f2:c1:c7:2c:b4:42:a0:71:41:e5:14:a3:dd:90:12:
5b:db:d8:f2:c2:3d:2f:27:f9:d2:d6:14:c3:fa:5d:
c1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:26:73:88:71:AC:50:44:D9:73:87:A7:8C:E1:BF:9D:36:4C:0D:F7
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/2iZziHGsUETZc4enjOG_nTZMDfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.16.0/20
Signature Algorithm: sha256WithRSAEncryption
5b:ef:fc:e5:3c:e4:78:64:4c:a0:d2:f4:9a:1b:cb:6e:f2:2e:
e4:c3:65:86:a3:ca:4d:78:fd:01:b8:ea:e6:04:a7:9e:2b:7f:
25:4d:c6:e0:f9:69:46:bf:ce:6b:12:ce:1c:94:e9:af:f6:61:
cb:80:64:1f:98:88:82:86:88:67:7d:ec:8d:79:53:9a:4e:1c:
53:fd:39:20:55:35:89:63:0d:e0:4c:37:3b:22:98:3b:b7:d5:
00:16:74:f7:ef:d0:eb:e9:66:3a:dd:53:af:d1:1c:74:cf:f7:
8c:f3:51:ad:58:0d:94:4a:97:54:5b:15:1a:1e:b6:3b:c1:ca:
2f:21:e2:a0:46:ad:62:f3:1e:c1:72:59:e3:96:e5:2a:51:1f:
2e:f0:1f:91:8c:a8:00:d7:52:fb:7d:09:11:a4:40:42:42:e3:
a0:5e:40:ee:cd:c0:9f:5a:f8:2b:ff:c2:bf:29:45:a8:b4:82:
76:8b:e6:3d:c9:af:c9:bc:5b:82:69:01:d0:a2:68:3d:5a:57:
e6:ac:ae:95:50:56:c7:96:06:8d:2b:b8:06:cf:fe:fb:27:9a:
10:31:a3:a3:39:ab:52:f4:1e:f9:e3:69:e4:30:41:ea:56:ae:
06:34:c1:46:0c:f1:88:6f:83:15:e0:16:55:82:7e:95:c4:d4:
d2:41:5c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org