Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/8l2mn_l3O6bB50vaacBbpqbA0pA.roa
File: 8l2mn_l3O6bB50vaacBbpqbA0pA.roa (raw, json)
Hash identifier: E/hNxLqAbKnAr/hOx4iQS29oUny1Vz7fp3rVYjJwKi0=
Subject key identifier: F2:5D:A6:9F:F9:77:3B:A6:C1:E7:4B:DA:69:C0:5B:A6:A6:C0:D2:90
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 099C
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/8l2mn_l3O6bB50vaacBbpqbA0pA.roa
Signing time: Wed 29 Sep 2021 02:53:19 +0000
ROA not before: Wed 29 Sep 2021 02:53:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 49.213.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2460 (0x99c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F25DA69FF9773BA6C1E74BDA69C05BA6A6C0D290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f6:ce:12:f8:3c:8a:eb:ce:2b:8b:b8:79:d7:
7f:e4:bd:bf:98:65:07:24:78:30:6f:ad:2f:67:79:
a1:18:a3:c0:09:8c:63:d9:37:ee:6a:13:f2:87:07:
4d:92:e4:6e:9d:e2:39:cc:f0:46:a6:06:54:ac:df:
45:fa:f0:eb:80:d9:1f:5c:b1:d7:d7:3d:6a:ff:63:
4e:bd:f9:74:c8:41:bc:99:f9:9d:35:15:66:4f:ee:
76:d1:b6:99:88:cb:61:66:60:52:0b:43:20:32:7c:
34:5e:93:ca:70:ab:ad:0f:5b:99:55:36:9a:b3:08:
e2:ea:7e:f9:14:f1:78:d4:01:91:a8:4f:c9:ba:02:
67:62:ee:5e:5f:9c:b7:9a:c9:30:93:a2:6a:00:29:
2f:13:a1:70:0f:3d:72:50:a1:6f:a0:80:3c:4f:5e:
a3:67:30:25:f4:f5:e6:58:92:b2:25:1a:69:4c:86:
41:18:8b:26:de:6d:ca:88:53:f4:6e:e7:58:13:2e:
5f:81:7d:77:9f:b2:a2:7e:a1:61:bb:08:a9:04:02:
4e:4f:8d:f1:8b:f7:c7:6b:b0:77:69:5a:76:4c:ed:
3b:62:e3:fe:f7:d5:3c:65:73:14:60:69:2a:c9:69:
d6:b7:f7:80:8a:57:0e:bd:c1:95:c2:2f:30:1e:d8:
12:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:5D:A6:9F:F9:77:3B:A6:C1:E7:4B:DA:69:C0:5B:A6:A6:C0:D2:90
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/8l2mn_l3O6bB50vaacBbpqbA0pA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.128.0/17
Signature Algorithm: sha256WithRSAEncryption
22:e0:fb:82:c2:f4:fe:ad:96:81:32:b8:c2:e0:b4:99:6d:ea:
99:3d:03:1b:a0:a4:74:5c:f3:f9:f0:3b:a6:21:ec:72:3f:f3:
8f:a6:13:e0:dd:ac:1f:66:1b:0b:f0:1f:3b:61:cc:7c:0b:36:
70:49:ed:ef:55:21:9d:dd:f8:55:fe:ec:5d:7a:c8:3c:72:d2:
89:81:12:14:de:02:b9:ef:e7:85:58:f5:97:91:f5:1a:9f:9f:
de:e4:d1:b7:a8:0a:78:87:16:c6:79:f1:f6:d3:6c:ce:4c:39:
d1:84:06:cd:44:f3:3e:1f:38:f3:42:15:78:f9:2a:92:e7:76:
22:29:54:db:4d:79:af:0f:b2:40:12:46:5f:42:7f:0b:38:2d:
c8:73:c8:fb:ac:98:7c:19:b6:56:ed:bd:01:d4:fb:2b:bc:18:
16:27:40:3c:9c:c8:7e:df:ac:8d:ae:e2:ec:07:bb:de:93:ba:
8a:45:11:2a:d0:cb:b4:3c:2a:1d:0b:72:02:6a:09:e3:25:42:
90:43:ac:26:45:00:90:a5:23:bb:58:e2:57:ad:95:ec:57:8b:
97:f4:d9:9f:5b:71:09:99:6d:52:54:40:f3:7e:b8:9d:cf:9a:
85:59:55:0e:58:ae:a3:9a:c0:57:f4:ea:c7:09:3b:1f:fd:5f:
79:d5:5e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org