Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/L1BCN5OgxmpNbzX204Uv6d23ZYc.roa
File: L1BCN5OgxmpNbzX204Uv6d23ZYc.roa (raw, json)
Hash identifier: H+0nYfgHczWvIwgHabKNI7MUFDxKBZjGY1c+X6sI1PU=
Subject key identifier: 2F:50:42:37:93:A0:C6:6A:4D:6F:35:F6:D3:85:2F:E9:DD:B7:65:87
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08DB
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/L1BCN5OgxmpNbzX204Uv6d23ZYc.roa
Signing time: Sun 07 Feb 2021 05:48:05 +0000
ROA not before: Sun 07 Feb 2021 05:48:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.58.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2267 (0x8db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:48:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2F50423793A0C66A4D6F35F6D3852FE9DDB76587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ba:e7:4f:28:03:63:3e:62:1e:29:24:37:c9:
b8:70:09:5b:5f:e0:40:db:1c:28:34:ff:7c:6d:34:
69:9a:6d:f9:d2:69:8d:e6:ab:ea:09:de:cf:ae:a9:
29:81:87:c1:d0:d2:d6:84:18:c9:5e:d9:08:ce:80:
ca:bd:e1:a2:ec:34:e5:48:93:db:31:ad:65:36:e6:
81:58:48:54:ff:43:c2:17:c3:6b:97:8d:6b:a5:58:
60:35:0a:44:ac:5c:c2:1d:38:60:2a:20:9a:c8:e1:
e3:5c:f3:f5:c4:b2:18:29:2f:8a:55:a5:2d:56:f8:
97:ea:2d:d7:45:ef:d5:d4:4b:8e:fd:8f:d5:02:e7:
d4:fd:1a:97:2f:a0:1e:cb:6a:56:42:61:74:ff:1e:
dd:fc:7c:9b:9b:b0:74:0e:bd:b8:9f:4f:14:d8:b7:
91:0a:d2:1c:7e:02:11:41:5b:88:52:4a:39:6f:fd:
28:ce:68:73:98:6a:dd:4d:56:a6:cb:48:03:95:6d:
1c:f9:fc:f2:2b:43:32:62:7c:58:92:b7:84:ca:e0:
9b:ba:4c:f5:e0:42:09:4a:74:2a:b1:5c:0f:05:cb:
6a:68:30:ca:3e:8f:89:9b:5e:0d:b2:57:1a:48:5a:
23:3e:4e:15:a9:c7:e6:8f:60:70:6e:06:7e:eb:92:
38:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:50:42:37:93:A0:C6:6A:4D:6F:35:F6:D3:85:2F:E9:DD:B7:65:87
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/L1BCN5OgxmpNbzX204Uv6d23ZYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.128.0/19
Signature Algorithm: sha256WithRSAEncryption
80:d2:df:a1:9d:9c:87:64:a0:95:7b:76:1a:78:29:be:3b:8e:
ba:d1:da:1d:e1:c8:c5:d3:de:15:81:d5:bd:47:27:8a:ed:e7:
83:ee:93:f2:84:4b:de:ae:ea:09:d0:bb:00:07:16:00:8c:8c:
30:cb:c9:19:08:15:66:ae:1a:98:36:d0:6b:44:56:0d:0b:22:
2a:39:ec:88:c9:2f:3a:d5:d7:25:ca:b9:cd:0f:48:a6:4c:ff:
86:d4:b8:bf:d4:fa:79:1b:97:a0:99:17:6a:77:22:82:96:db:
7e:a7:3c:1a:4e:2e:04:e3:45:54:ed:f0:35:2b:cc:0e:fb:13:
65:8b:a3:45:f5:3c:6b:2a:66:3f:3c:98:24:6a:0f:e0:ac:93:
64:8e:e5:46:8b:84:a7:d4:66:ee:56:e3:fb:30:0c:68:b8:75:
0a:b5:43:7c:d8:cb:60:ec:97:de:91:e9:4b:8c:99:b0:1d:0b:
d9:70:e3:cf:98:01:2f:07:7d:fd:77:11:5e:f6:f9:f8:39:b1:
6d:e2:26:ab:e4:f6:91:d1:b1:6d:01:2d:e7:a4:d3:5b:b8:d4:
2c:41:cf:04:6e:07:b6:7f:34:f0:d8:16:89:62:69:3e:50:f9:
26:47:df:06:fe:8b:0d:c0:39:24:88:97:01:28:d8:d7:59:fa:
9a:04:2b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org