Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/9v9deK1gxCVZJpfRX9agjDylR9c.roa
File: 9v9deK1gxCVZJpfRX9agjDylR9c.roa (raw, json)
Hash identifier: TX+4IGBdoSJxW6h+MB4JPsvC58w0/p/ZJIaUTzvY8Pw=
Subject key identifier: F6:FF:5D:78:AD:60:C4:25:59:26:97:D1:5F:D6:A0:8C:3C:A5:47:D7
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0782
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/9v9deK1gxCVZJpfRX9agjDylR9c.roa
Signing time: Tue 29 Sep 2020 10:00:56 +0000
ROA not before: Tue 29 Sep 2020 10:00:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.67.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1922 (0x782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 10:00:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F6FF5D78AD60C425592697D15FD6A08C3CA547D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:84:67:de:b8:b0:e9:65:cc:56:93:7d:7e:64:
9b:a3:f2:3b:3a:da:cc:b5:64:d6:ab:6c:d7:fd:6b:
e0:87:5f:51:66:f2:61:80:d6:09:36:f2:1b:3e:b1:
d5:ed:52:c3:bf:c9:8d:fc:7d:11:61:86:7c:5f:2b:
c7:71:e1:7d:4e:8f:e5:04:99:c7:90:3b:22:fb:46:
63:6f:46:9a:36:09:1e:30:62:d7:06:d9:6c:38:94:
23:27:87:1a:d5:ea:07:d7:d3:fb:3a:95:ac:59:f2:
d5:87:c8:ca:c8:bb:ea:2f:40:b1:f3:f7:bf:e6:c0:
aa:88:cf:d9:a7:76:0f:a2:ed:39:c1:a9:47:1d:e9:
94:cc:b4:2c:67:f6:fe:4e:74:3c:d2:66:ef:14:1d:
23:59:a0:e1:f6:dd:5f:ff:6a:d2:93:7b:c9:66:1e:
1e:c0:26:0b:5c:69:ea:1c:2a:0a:61:85:d3:20:21:
9a:fa:f2:e9:8e:ea:09:3b:d5:a5:55:36:d6:7f:e5:
75:a3:bd:04:5f:43:d5:13:61:12:c5:85:85:82:81:
47:97:5f:a6:ff:93:93:09:ec:11:52:2c:24:70:b1:
84:ae:6e:fb:84:82:ba:1a:75:1b:12:ee:bd:c3:76:
f2:72:55:fb:bc:21:59:e3:c6:ec:54:e0:cf:65:3a:
23:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FF:5D:78:AD:60:C4:25:59:26:97:D1:5F:D6:A0:8C:3C:A5:47:D7
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/9v9deK1gxCVZJpfRX9agjDylR9c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.16.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:dd:bd:9b:75:e3:07:5b:b5:4d:73:ef:41:a3:8d:d7:56:0c:
fa:4b:03:bb:cd:72:51:40:d0:47:b2:91:47:b9:73:d5:12:5d:
c8:18:d6:cf:f9:58:9a:8a:25:d1:15:11:55:4c:f9:b5:24:04:
56:7e:18:51:7f:73:39:ad:2e:35:63:2d:ea:47:c8:90:eb:35:
6e:dd:0b:53:bc:4f:24:5f:63:eb:20:9a:0c:ba:3a:37:73:9f:
bd:fa:d8:b1:93:e2:d3:e9:5e:b7:a4:67:2e:a1:82:70:0b:7d:
49:38:26:af:e6:92:b9:96:89:aa:5b:d9:27:a5:21:40:76:a1:
e7:76:73:20:a3:05:be:34:7a:d3:11:8e:0f:eb:26:6d:14:13:
e6:dd:47:31:7e:07:ae:3a:9f:c1:d7:7e:8c:0e:02:f2:0c:77:
42:2d:d9:3a:d3:f2:da:a2:0b:77:73:58:c3:9b:a8:2c:dc:88:
5b:0f:a6:98:01:52:c2:99:00:6c:fb:1c:50:b9:75:de:6d:df:
ce:44:29:68:a5:e5:35:01:03:a7:87:bc:8e:3d:67:0b:95:5d:
86:81:b5:8e:ae:92:ef:21:32:d8:ba:b8:4f:f4:31:b1:5e:09:
dc:66:63:33:67:5f:5d:1f:20:ab:bf:d5:4a:2d:a0:85:1f:f6:
0c:f3:22:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org