Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/NiqFpseJ0sHlwDBjeQ6r8Kj3Ipw.roa
File: NiqFpseJ0sHlwDBjeQ6r8Kj3Ipw.roa (raw, json)
Hash identifier: rFGnGb4TzVSixAelBxsQe0ArJwo5INkUA3mLBk1scCY=
Subject key identifier: 36:2A:85:A6:C7:89:D2:C1:E5:C0:30:63:79:0E:AB:F0:A8:F7:22:9C
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08D1
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/NiqFpseJ0sHlwDBjeQ6r8Kj3Ipw.roa
Signing time: Sun 07 Feb 2021 05:45:33 +0000
ROA not before: Sun 07 Feb 2021 05:45:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 211.73.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2257 (0x8d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:45:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=362A85A6C789D2C1E5C03063790EABF0A8F7229C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:af:50:30:ed:2d:2f:aa:5a:63:35:e3:ed:08:
be:96:90:e6:05:d0:3b:a3:c3:e2:bb:22:46:92:b3:
5b:cf:65:a0:c2:9b:22:3e:a1:c8:4b:53:63:bc:22:
f5:16:01:e0:fc:98:83:d7:8b:63:4c:60:ac:58:21:
b1:d5:42:8b:7f:c6:65:e9:e9:9c:03:1b:a1:7d:9e:
bd:be:29:3a:ff:29:52:c3:05:29:59:b2:fb:3e:b9:
95:db:06:56:0c:9c:19:57:07:06:4f:5e:91:bd:dd:
ae:44:13:45:7f:a9:4c:b8:c4:bd:93:ed:76:ae:cb:
79:ae:27:b9:98:dd:de:32:12:5f:26:37:64:e4:a0:
0e:98:63:e6:fe:8e:0a:45:7f:77:9d:8d:0d:9f:64:
da:08:fc:3c:6c:2f:bf:e9:4d:be:46:30:70:4c:f1:
b7:ef:83:77:8c:a2:a3:22:8f:f9:0b:39:31:54:e1:
d6:9b:85:5b:21:91:dd:69:b1:5c:b8:52:e1:24:58:
2f:31:5c:7a:f2:b9:b6:f4:ee:46:d7:cd:3d:72:be:
18:f2:5f:91:83:fc:6e:cf:20:45:5f:98:db:76:eb:
c2:72:fd:09:17:02:b4:f0:3b:d2:06:e0:bb:69:4d:
f1:35:e7:6f:1f:ac:bf:83:ac:ee:24:80:4f:b9:12:
56:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2A:85:A6:C7:89:D2:C1:E5:C0:30:63:79:0E:AB:F0:A8:F7:22:9C
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/NiqFpseJ0sHlwDBjeQ6r8Kj3Ipw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b7:71:3e:f5:bf:1b:9e:39:80:5b:a0:8c:c8:46:79:45:4b:c1:
27:6e:b5:c7:da:00:18:04:fa:bf:6b:c0:a5:26:19:82:99:07:
71:e7:b0:08:56:51:e3:fd:af:42:a8:ea:24:23:ee:e0:05:27:
e5:bf:0b:9f:d7:69:e9:6a:0b:af:7f:b3:c0:9c:cc:ac:32:ba:
e6:2c:01:9c:37:49:4d:ee:8a:16:09:e2:b7:22:d2:8f:fe:43:
93:b8:1e:7e:c5:fb:64:4b:c6:a5:de:37:6c:6c:d4:b3:9c:4d:
f3:be:8d:fb:69:6c:94:c9:6b:99:58:84:42:bc:55:d7:9d:0a:
81:c8:cc:16:68:44:47:13:25:5d:6a:03:65:54:5a:41:db:e3:
11:38:29:8c:bb:76:79:4f:db:4d:43:8d:f3:e3:d2:d1:e6:37:
8e:74:87:9f:36:0f:a5:b2:bb:04:b3:2d:7b:a8:c0:cc:59:86:
1e:ca:e4:43:9a:5c:23:e3:ce:f1:c9:b2:a4:70:b1:2f:48:54:
09:be:32:da:a8:97:2f:ff:01:90:f3:67:3f:23:91:4f:0c:cf:
e1:d6:04:51:0d:cc:60:2e:96:26:1a:0d:61:32:e4:1d:a4:c7:
31:4b:a1:25:e0:72:bc:49:d6:a8:cf:5c:3c:fc:64:bd:55:df:
b5:7a:1f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org