Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/3FlIZyC20Qm9aTv1JqOblMND2N8.roa
File: 3FlIZyC20Qm9aTv1JqOblMND2N8.roa (raw, json)
Hash identifier: EQH4Z/mjC6OvPaxdJT8RKzEKDYhGp1Z/I5odd3rfbIo=
Subject key identifier: DC:59:48:67:20:B6:D1:09:BD:69:3B:F5:26:A3:9B:94:C3:43:D8:DF
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/3FlIZyC20Qm9aTv1JqOblMND2N8.roa
Signing time: Thu 15 Sep 2022 02:51:00 +0000
ROA not before: Thu 15 Sep 2022 02:51:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 58.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DC59486720B6D109BD693BF526A39B94C343D8DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:0f:34:dc:b3:69:dc:3f:4b:bc:e8:1a:04:76:
3b:ce:a6:94:48:75:11:e2:bb:b7:6f:dc:f7:68:13:
09:3c:98:7c:6c:b6:0d:b7:a9:ef:9d:ab:4d:db:68:
3b:fa:75:3c:8d:1e:e3:e0:36:65:a7:85:71:71:ec:
6e:f7:f6:29:c8:8d:a4:b5:94:ad:f4:90:0b:4f:0c:
c0:c9:d6:04:4a:64:8f:3d:8e:3c:b5:38:5a:0f:c8:
e9:98:4d:4b:06:27:75:fe:94:8d:28:3e:ca:41:7c:
02:aa:59:8f:35:5b:be:bf:52:11:74:31:11:31:f6:
56:0a:da:05:d3:24:62:21:63:de:3d:0c:ad:94:9d:
d1:b9:94:8e:49:07:1e:c4:4e:49:19:c4:bf:8c:d8:
de:32:a2:78:89:40:7a:3b:ac:df:38:1a:1b:d9:6e:
e7:ca:ec:4b:20:1e:26:b7:57:ba:43:e9:ad:3c:8d:
9b:f9:03:3b:72:04:c6:07:79:4e:1c:bd:06:d4:6f:
bb:3d:f5:2f:d3:1e:2f:e0:27:9d:30:01:64:e5:d7:
e0:29:0d:e2:a1:4a:e4:04:63:51:7e:5b:14:f7:9d:
a2:7e:b6:33:0b:d4:f3:8c:42:39:81:74:bf:dd:81:
4f:a3:3f:6a:43:ff:da:17:3a:e5:1f:24:c3:05:5c:
5b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:59:48:67:20:B6:D1:09:BD:69:3B:F5:26:A3:9B:94:C3:43:D8:DF
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/3FlIZyC20Qm9aTv1JqOblMND2N8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
87:2d:5c:b4:0c:bf:37:4d:55:3a:f8:a7:55:9f:5b:ee:cf:dd:
13:bb:ff:30:8d:4f:37:83:16:ef:96:44:68:3a:b8:21:19:67:
f1:af:47:0c:b0:23:10:73:85:96:e7:2c:44:8a:d9:c9:db:cc:
ce:53:c7:a5:0e:c1:5b:54:c8:8f:d2:8d:83:ca:d5:e8:74:81:
7e:43:19:87:13:5e:83:e4:ea:0a:2e:ca:1d:2d:a5:8d:e7:da:
d8:ff:ef:ff:f8:f0:ec:a2:be:c6:ba:e2:2c:43:5f:ad:a9:94:
02:ac:75:9e:ac:34:b9:03:55:20:b8:f2:a1:19:2e:58:a3:c9:
4e:0a:86:bf:58:bb:20:e9:d2:56:1b:86:1d:77:5b:65:fc:99:
a8:77:a4:00:e6:0a:43:94:1a:52:fd:c4:87:8f:c9:b8:ab:53:
77:28:6e:80:d1:02:e3:72:e1:69:d7:34:59:8a:4c:13:10:9c:
c4:58:93:5d:99:4e:7e:c8:2b:b3:a8:72:18:cf:00:7b:4c:0d:
1c:66:90:bd:bf:a8:21:8c:09:8a:6e:be:e0:ec:b1:a1:2e:27:
51:c1:b6:d4:54:8c:9d:8e:6d:29:8a:6f:43:6f:e0:fd:dd:da:
2d:64:08:59:85:c9:3d:a6:4b:98:d8:71:12:0f:f2:6c:9e:35:
6a:b0:1a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org