Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/VZeTC00kZ_xR2LF2wUapXZlBuYI.roa
File: VZeTC00kZ_xR2LF2wUapXZlBuYI.roa (raw, json)
Hash identifier: nb9d3dpvJjfY6EE3NSiuGJwvfmEa0h2VvWMOPpeTjU0=
Subject key identifier: 55:97:93:0B:4D:24:67:FC:51:D8:B1:76:C1:46:A9:5D:99:41:B9:82
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08D9
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/VZeTC00kZ_xR2LF2wUapXZlBuYI.roa
Signing time: Sun 07 Feb 2021 05:47:51 +0000
ROA not before: Sun 07 Feb 2021 05:47:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 58.99.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2265 (0x8d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:47:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5597930B4D2467FC51D8B176C146A95D9941B982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ba:88:6b:32:b7:e0:ba:83:75:b0:c1:9e:64:
d5:54:42:44:0b:b4:3a:50:09:28:73:b0:bc:a5:93:
9d:58:9e:88:a7:d6:72:ad:c2:6a:98:64:f0:f0:09:
30:af:dc:1b:36:bb:36:e4:9b:de:86:f0:05:a1:0b:
ff:7c:8b:90:c3:72:60:9d:d0:59:40:31:a1:e7:d3:
25:75:59:94:50:29:0c:13:b6:f4:6d:86:2a:62:b0:
3f:10:c0:e2:36:20:4e:b7:66:c0:f0:92:cf:ac:c4:
a3:f2:2b:e0:cb:ad:16:cc:59:78:24:a4:d6:11:61:
00:88:db:87:f4:c2:8f:3d:34:8e:71:1b:ef:4d:98:
72:c4:e3:25:64:6c:c9:7e:3e:89:97:94:cb:0d:08:
de:72:73:11:b6:88:42:95:63:21:7b:98:a7:03:c1:
04:3e:7f:1d:07:f1:d2:9b:a2:92:37:41:ab:b8:a8:
b6:b3:0d:29:83:3e:06:db:0d:77:73:b4:1d:63:bc:
43:31:59:4e:07:c8:65:47:62:18:14:5e:d7:13:8d:
e3:23:d1:b9:ec:90:a5:8d:a5:5c:bf:b2:da:c5:a1:
1f:1b:ec:11:f1:50:4e:59:5e:5e:b8:23:f8:40:a7:
d2:b2:24:bb:98:b2:c4:0e:0f:26:63:94:0c:76:c1:
96:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:97:93:0B:4D:24:67:FC:51:D8:B1:76:C1:46:A9:5D:99:41:B9:82
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/VZeTC00kZ_xR2LF2wUapXZlBuYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7d:6b:6f:29:81:ac:d0:95:a3:fd:7f:7b:b0:6d:df:af:3a:dc:
05:5e:8a:2b:c3:54:62:1c:16:e8:ba:a9:83:64:00:a9:8b:b4:
6f:b6:03:32:b4:c3:2d:ec:4e:3e:b4:e6:20:13:02:0a:9a:1a:
c8:b5:7c:f6:72:f0:4d:28:df:17:90:04:af:ba:ed:bf:9e:19:
bc:e0:38:7b:07:bb:10:bf:c6:c7:9b:08:52:9a:f6:3b:5d:34:
13:88:48:fe:29:44:16:c2:8d:b6:d4:0e:df:b5:70:20:35:d8:
c9:f7:43:ed:83:30:6a:a3:e6:8e:bc:b0:10:2b:c7:9d:5f:8c:
c0:3a:78:63:f6:1a:c5:54:e2:4b:68:ca:df:d3:a8:2e:be:11:
cf:e9:52:85:e0:00:c1:31:a2:e9:1f:8f:3a:2d:ae:a2:7e:cf:
08:61:3f:83:02:6d:67:53:61:e5:78:7c:27:5e:bf:2c:27:29:
f8:00:e0:12:34:d5:03:a7:c7:72:00:4b:f4:f4:10:75:b7:79:
8f:d5:be:a2:84:69:b9:b2:16:e4:97:19:bf:0c:db:4f:1b:54:
2a:9c:f0:dd:63:4e:bc:a6:16:d2:d0:69:8d:f3:38:82:02:6d:
45:63:f9:50:4b:40:df:3d:5b:87:bc:8b:67:ea:9a:88:4b:2a:
1e:f4:79:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org