Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/6XPkA3tvFOX-UKl8vwhqdsJMzGU.roa
File: 6XPkA3tvFOX-UKl8vwhqdsJMzGU.roa (raw, json)
Hash identifier: q/BpTsme95KNIBnqzB5zu7juqOr/MrcDEnZJj7hZBrg=
Subject key identifier: E9:73:E4:03:7B:6F:14:E5:FE:50:A9:7C:BF:08:6A:76:C2:4C:CC:65
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08DF
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/6XPkA3tvFOX-UKl8vwhqdsJMzGU.roa
Signing time: Sun 07 Feb 2021 05:48:31 +0000
ROA not before: Sun 07 Feb 2021 05:48:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.67.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2271 (0x8df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:48:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E973E4037B6F14E5FE50A97CBF086A76C24CCC65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:df:76:33:1e:b7:93:06:3a:2d:db:b7:c5:e2:
13:95:6d:a4:7b:1d:2d:92:90:0a:9f:f5:f5:28:d2:
1a:99:a6:2c:f4:b6:52:21:04:ea:3a:9a:f6:2f:97:
13:25:c6:2e:08:d9:51:3a:7d:dd:8d:24:a9:f1:fa:
3f:16:fd:a3:e5:d1:40:22:5a:7c:2b:4d:ac:cb:18:
be:30:0e:51:00:1c:8a:2a:e1:4d:65:9a:d0:e4:ea:
4f:c1:51:43:aa:0f:e5:cf:df:8b:6d:28:ea:57:57:
17:ed:0c:36:86:3c:82:fa:5c:6a:1e:29:ac:14:6b:
a0:e3:7c:e6:c9:97:f9:7a:ff:27:71:94:53:f8:5c:
8e:84:98:a2:bc:c1:2b:77:be:fe:fd:ab:8a:1c:34:
18:bf:ab:50:9d:48:f3:b6:18:24:f8:0d:b4:e1:53:
32:57:48:88:10:42:78:95:d5:cf:8d:99:4b:a9:c9:
81:5f:73:50:56:2f:a2:89:fe:a0:39:90:3a:d2:c0:
3f:d7:ef:73:2a:3b:46:65:5e:de:7f:0e:3f:30:23:
3a:54:84:32:20:09:bb:60:89:d7:34:12:ac:bc:47:
ab:0f:6d:e9:2c:54:7b:60:1e:7e:70:1d:bf:0c:56:
da:94:27:01:98:4c:fc:99:a2:b9:bb:ce:dc:0f:4f:
86:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:73:E4:03:7B:6F:14:E5:FE:50:A9:7C:BF:08:6A:76:C2:4C:CC:65
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/6XPkA3tvFOX-UKl8vwhqdsJMzGU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.16.0/20
Signature Algorithm: sha256WithRSAEncryption
37:86:d4:13:93:17:6f:0d:d1:25:a6:ea:a6:c2:8f:f5:61:47:
7b:d2:b6:e7:a1:89:5c:24:73:67:d9:9f:f4:b1:7f:5a:52:33:
c3:36:72:f5:3e:36:9d:0a:04:84:a9:a3:fe:82:f9:64:a1:c0:
07:65:89:09:06:59:3e:b5:41:81:86:82:25:89:f6:56:88:73:
33:bb:20:b9:59:41:03:fd:8e:19:1b:94:31:50:a5:2a:82:f1:
5a:cc:c8:aa:9e:a6:10:96:4d:ea:66:4d:8f:43:cd:ad:81:8d:
c4:6c:bd:b8:13:b0:b9:0c:6d:f5:11:35:c3:0b:c2:26:f0:df:
22:0a:ef:ec:25:ef:84:85:ba:03:52:fe:a9:cb:e0:ed:73:cb:
1d:ff:81:80:55:0c:23:62:4a:7c:cf:ae:eb:72:14:20:fc:3e:
ee:ca:ad:97:2b:1d:f6:e0:21:77:e6:d0:21:d3:f7:a5:0e:9e:
0c:6c:8a:4a:21:77:93:7d:d3:c8:44:a7:eb:32:74:a1:ac:df:
aa:30:33:4f:80:6e:e3:ec:91:1a:f7:53:4b:88:d6:26:ac:e7:
15:0e:9d:87:4c:2b:72:2d:07:62:db:0e:11:19:88:41:5c:eb:
1e:43:68:b3:21:5a:65:5e:59:8f:e9:a3:ad:bd:d0:b0:f9:61:
4a:04:f5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org