Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Cvo3wAO2cwPpTZtdTYA6NkoJX7M.roa
File: Cvo3wAO2cwPpTZtdTYA6NkoJX7M.roa (raw, json)
Hash identifier: ZU0MuEIh0FAdlhBtnJWrXuW+n/wRLrV06sZV1QvJE7Y=
Subject key identifier: 0A:FA:37:C0:03:B6:73:03:E9:4D:9B:5D:4D:80:3A:36:4A:09:5F:B3
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Cvo3wAO2cwPpTZtdTYA6NkoJX7M.roa
Signing time: Thu 15 Sep 2022 02:51:01 +0000
ROA not before: Thu 15 Sep 2022 02:51:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 27.100.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0AFA37C003B67303E94D9B5D4D803A364A095FB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2f:1b:92:e2:57:56:78:a1:29:95:28:8e:db:
5a:7c:0c:b6:6b:a0:89:e4:d9:ad:1e:10:3c:53:eb:
e1:12:59:e1:df:13:d4:ef:69:36:b8:a4:3e:8e:4b:
5f:07:97:94:21:e9:18:da:3f:11:64:fc:26:10:54:
dc:0b:05:ca:19:8f:5f:6f:0d:45:ef:23:b1:6c:24:
13:ee:e7:47:e9:53:6e:1d:6c:c7:45:34:9f:f2:54:
c2:8d:90:6d:1e:c9:8d:28:f7:a8:75:40:3a:fe:f0:
94:20:c9:da:63:cf:cf:3f:4f:ed:0c:e7:df:40:e6:
7b:e3:20:7b:3d:79:bb:04:7e:25:13:5a:04:a9:cd:
3e:94:5c:af:6d:c9:0b:b8:bc:70:20:e5:c5:04:96:
b0:8a:f8:8a:89:00:b9:c7:51:8a:95:ce:c0:c3:48:
b9:ce:16:1b:72:c6:8e:71:ea:f8:53:3b:09:7b:30:
dd:06:a3:93:dd:41:3a:37:ae:5f:5c:aa:69:09:b3:
30:e6:7b:cf:b3:0e:de:e7:0f:4d:b6:e1:fe:b6:01:
39:c7:2e:d7:60:01:48:48:ef:dc:40:3f:af:74:ed:
1f:44:b4:f4:f3:37:f0:b9:e4:c9:06:56:6a:9c:d9:
39:26:c7:d5:0c:1d:af:4f:8e:a4:8b:21:4a:9e:61:
1f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:FA:37:C0:03:B6:73:03:E9:4D:9B:5D:4D:80:3A:36:4A:09:5F:B3
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Cvo3wAO2cwPpTZtdTYA6NkoJX7M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0b:04:c1:18:e4:82:50:4e:5a:dc:b3:d3:35:e6:f5:5a:78:91:
12:31:1a:58:04:75:c0:e9:2f:57:9a:bb:e2:39:c3:1d:e4:7d:
2d:37:34:cc:22:77:b9:00:1b:48:c9:e0:7d:36:8f:2d:4e:ea:
1d:40:23:6d:a9:d2:06:7c:5d:16:6f:23:a4:3f:b7:7d:4a:af:
c5:a6:10:7e:84:12:1b:7c:fb:b1:27:9a:c7:46:62:21:6f:cf:
e9:78:c3:20:e1:ca:5e:d7:9d:b7:69:55:f3:94:42:ee:1d:b9:
2f:86:d6:c4:3a:1d:95:1d:de:9c:00:00:12:2f:dc:31:29:39:
4f:0c:b3:df:90:00:8f:16:42:b2:f5:fd:a2:27:f9:1f:9e:b1:
b5:92:3d:fb:78:f4:51:4a:d1:86:d4:4c:50:15:36:b0:cd:28:
46:36:bb:9a:c2:02:33:0e:3b:b3:99:e7:18:0d:25:93:ac:50:
90:dc:34:6e:62:9e:85:b9:17:e4:30:c6:ab:e2:a5:b5:04:b5:
17:3f:9a:a7:17:34:02:d2:33:08:c0:6e:e9:95:11:cc:4f:dc:
7d:60:10:e4:1d:c7:6d:69:42:99:fc:f1:ff:17:a2:08:23:82:
1c:9f:43:ab:94:fc:98:eb:ab:b1:b8:a0:52:89:1f:12:6b:dd:
06:fd:16:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org