Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/TKT5bRVUyoiB2ZfThORRDV1eXLY.roa
File: TKT5bRVUyoiB2ZfThORRDV1eXLY.roa (raw, json)
Hash identifier: /K5YcDQhuMMv5c45xScX68s2ENQqnft9v+Chxe68AIM=
Subject key identifier: 4C:A4:F9:6D:15:54:CA:88:81:D9:97:D3:84:E4:51:0D:5D:5E:5C:B6
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 077B
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/TKT5bRVUyoiB2ZfThORRDV1eXLY.roa
Signing time: Tue 29 Sep 2020 10:00:54 +0000
ROA not before: Tue 29 Sep 2020 10:00:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.67.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1915 (0x77b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 10:00:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4CA4F96D1554CA8881D997D384E4510D5D5E5CB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:50:91:59:2d:ae:c1:46:d6:88:f0:a1:80:9c:
c0:e5:8e:cf:b6:a9:1c:d8:c4:80:d2:dc:a5:a5:a6:
89:63:ee:58:df:32:c2:f3:28:d5:74:a2:de:5f:84:
0f:19:81:41:4e:0b:43:f1:d5:60:5f:d7:eb:3e:69:
2e:3d:13:7e:6e:79:a8:90:20:ba:ca:00:08:0a:e7:
f7:e4:f8:48:04:90:96:a6:34:34:fb:37:ea:25:d7:
a7:1c:47:40:e0:64:cf:ce:73:fc:d5:ce:57:15:95:
6b:4f:6b:f6:28:b6:48:69:5a:b3:17:10:1f:2a:5e:
d9:2d:a7:bb:7d:62:7d:db:c5:00:a5:c3:d6:a2:f5:
99:63:58:db:ed:d5:2d:0a:2b:39:38:6f:3c:cd:a7:
9d:c6:b0:ae:8c:a9:15:88:f0:c9:8c:9b:a0:45:d3:
29:01:3c:35:0d:bb:23:ba:10:98:af:0c:a4:ed:3b:
db:56:31:cf:bf:5c:92:47:32:56:b6:b0:01:16:4b:
ff:71:92:2a:f6:9a:49:fa:e3:4f:a5:77:da:0b:d0:
f3:d0:f9:91:1d:69:ce:aa:66:56:db:d2:5d:03:67:
05:3e:04:c2:7d:7c:73:fb:0d:da:ed:f7:1e:f4:35:
df:da:5d:5a:90:04:64:14:0e:79:69:20:3c:a7:6b:
27:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A4:F9:6D:15:54:CA:88:81:D9:97:D3:84:E4:51:0D:5D:5E:5C:B6
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/TKT5bRVUyoiB2ZfThORRDV1eXLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.32.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:e3:e4:35:53:87:86:b7:96:96:57:7b:6c:de:6a:6d:6f:40:
c0:04:ab:54:69:2e:52:74:04:14:a6:1f:a0:ca:48:7a:cd:53:
ec:e2:02:37:26:a2:a4:dd:ca:ed:e0:2c:ef:51:57:2c:84:e3:
a4:70:6b:d1:86:9f:59:c9:6a:75:1a:d1:ea:2b:21:ef:f4:36:
9d:3e:4c:11:74:3c:a6:a7:42:9a:62:43:3b:70:73:9f:ba:a2:
d8:07:33:9b:b5:16:a0:9e:fd:ce:eb:3b:66:93:b5:c8:df:e0:
75:0c:d1:71:3c:32:e5:9b:31:dc:c2:34:96:30:2b:03:22:f7:
6f:c4:71:f5:81:1b:8a:fa:f4:98:8c:1d:b9:68:b0:eb:31:51:
00:40:e3:d9:9d:8a:70:9b:06:59:07:da:c1:59:92:27:ec:8c:
d9:dd:4a:6a:74:33:02:8c:12:ed:db:87:41:ab:cd:23:88:df:
0e:88:f9:b9:59:f2:25:b3:0c:f7:ef:6c:99:ba:6c:14:a1:61:
f2:5d:92:9b:39:8d:87:cb:74:10:91:85:77:39:8e:a1:c3:5a:
1c:a3:5b:62:aa:8e:97:ca:70:60:ab:a5:4b:bf:3f:3f:97:04:
52:1d:94:80:c5:c2:8d:48:81:01:58:be:f1:a8:93:bb:ae:8a:
11:a9:47:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org