Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/6j-uguT2rGcgjmim83pKkdytpx0.roa
File: 6j-uguT2rGcgjmim83pKkdytpx0.roa (raw, json)
Hash identifier: 2X87CrJnfpuL1L8LtlKIFPO6/enG6qOupHq3db5zY3Y=
Subject key identifier: EA:3F:AE:82:E4:F6:AC:67:20:8E:68:A6:F3:7A:4A:91:DC:AD:A7:1D
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 099A
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/6j-uguT2rGcgjmim83pKkdytpx0.roa
Signing time: Wed 29 Sep 2021 02:53:19 +0000
ROA not before: Wed 29 Sep 2021 02:53:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 58.99.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2458 (0x99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EA3FAE82E4F6AC67208E68A6F37A4A91DCADA71D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:29:85:ac:61:1c:3f:86:4b:bb:22:cd:97:fe:
97:8a:26:07:20:c1:eb:c7:9c:67:8f:74:85:d9:c9:
2b:c6:87:50:8a:e3:d2:35:9a:c7:1c:ad:0f:8a:97:
f1:c7:00:0e:5c:44:0e:88:b0:d9:f6:b7:ab:6e:87:
f8:6c:62:f2:c7:5a:3e:4f:de:44:bf:e7:ae:88:34:
e8:f1:b3:af:cb:f2:8b:32:c2:37:5b:b3:94:60:77:
9e:01:c8:7d:a9:78:3b:5f:ab:ba:10:4d:07:23:27:
49:9d:be:07:6b:fb:3c:45:8d:ba:25:a4:e7:d4:4a:
92:b2:da:aa:40:da:3e:67:94:bf:b9:a5:7a:6e:7d:
c4:43:3e:4d:1c:e3:ad:c9:77:84:36:87:ce:c3:d9:
85:b9:c1:f5:d9:12:b6:ac:f5:94:6a:69:ef:fc:f2:
ab:92:40:98:d4:13:cf:c0:61:38:58:28:65:ed:49:
6a:f0:4b:e3:53:31:51:a7:8b:f7:27:b3:0c:c2:d2:
37:35:87:c8:b2:74:18:69:7b:a7:f0:65:aa:51:eb:
c2:82:b8:e5:0d:9a:85:fd:e0:98:5c:cb:52:9e:75:
6e:fd:33:97:6c:6f:04:92:ed:cf:67:43:73:68:dd:
52:4c:d0:83:a0:f1:65:84:da:36:02:d2:36:cb:57:
ff:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3F:AE:82:E4:F6:AC:67:20:8E:68:A6:F3:7A:4A:91:DC:AD:A7:1D
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/6j-uguT2rGcgjmim83pKkdytpx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.64.0/18
Signature Algorithm: sha256WithRSAEncryption
86:5f:44:68:03:66:a6:7c:9c:48:f5:d0:59:d1:12:1d:d1:1e:
06:a5:e8:81:d1:c0:7c:2c:49:4b:05:d3:c4:0b:d7:93:0c:49:
f8:c1:ac:c6:80:3f:58:d0:de:9d:c5:51:5a:cb:c3:0d:6f:0e:
97:60:e9:73:b6:89:8b:4e:ac:f9:eb:4b:1d:3a:70:b6:83:24:
5b:6c:16:35:44:ca:c2:2d:c4:f9:91:8a:c5:d5:e2:ff:04:79:
74:93:60:84:ab:1a:d2:99:fa:4d:49:16:6a:0c:df:02:c5:0f:
f2:13:24:dd:71:b7:89:bf:c7:5b:32:2f:2a:42:df:cf:63:31:
93:e1:99:64:22:c4:a2:35:20:e1:19:75:d4:db:32:10:6a:7b:
4d:91:e6:5e:9e:88:42:2e:39:0f:3c:43:ca:bc:01:e1:90:2e:
a9:72:e9:c8:5b:1f:f3:a5:ea:c7:56:3b:4a:6c:8d:8b:63:62:
80:e9:36:6f:a6:ea:d5:3a:69:ab:59:48:b7:d9:02:99:ec:fb:
85:19:80:44:a4:68:f1:64:c7:89:39:a5:bf:ce:b4:68:5c:04:
7a:73:69:d5:4c:ff:1f:ab:e9:f6:94:e9:bb:c8:8e:48:91:bf:
e9:a1:ee:bc:31:17:30:65:28:c2:09:be:9a:02:2a:9e:e0:84:
70:b9:ea:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org