Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/W6sRsSUUNHSGITa6WnfXBpk1SL0.roa
File: W6sRsSUUNHSGITa6WnfXBpk1SL0.roa (raw, json)
Hash identifier: AdX3W2EDAH8BLgSun6o/6txjGUf77rAlSK9i7sf8tiw=
Subject key identifier: 5B:AB:11:B1:25:14:34:74:86:21:36:BA:5A:77:D7:06:99:35:48:BD
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0992
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/W6sRsSUUNHSGITa6WnfXBpk1SL0.roa
Signing time: Wed 29 Sep 2021 02:53:17 +0000
ROA not before: Wed 29 Sep 2021 02:53:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.58.157.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2450 (0x992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5BAB11B125143474862136BA5A77D706993548BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:6a:d4:b8:5e:d8:7e:28:1a:79:e9:21:26:
6c:1a:84:2d:5f:58:fe:c3:ae:db:f4:5d:86:c5:b3:
51:d1:0b:55:ee:c3:7e:ec:df:96:a8:db:85:28:cf:
4c:07:5d:71:e1:d1:f4:e6:dd:8f:f0:31:d6:a3:14:
4c:a7:53:3a:7a:ce:15:44:60:45:1f:d9:bc:61:cb:
e2:12:e4:1c:f7:ef:c0:60:3b:53:3a:d4:83:3a:18:
58:b3:b2:25:b8:8b:4b:c3:38:28:82:d8:e8:f0:76:
b2:23:9d:0e:e1:c4:36:d9:23:89:3a:5d:ee:12:29:
77:3a:ae:7b:ca:6f:5d:1c:6b:f2:03:b2:32:67:5e:
6c:50:2e:d3:48:ee:f2:9c:8f:89:01:0c:b7:de:62:
4c:c6:90:8c:97:da:14:cf:16:3b:d8:7b:24:24:c9:
00:f4:ac:f8:ba:e6:c7:50:2d:49:95:5b:4d:57:37:
1d:1a:f9:e6:5b:44:c4:a8:15:7d:30:c1:ce:1e:71:
25:ee:52:70:8d:4b:b2:42:80:e5:9e:af:da:d6:cb:
fc:a9:1e:b3:6c:0a:62:c5:f4:20:5c:7f:f7:c9:35:
92:79:ce:3b:b5:af:35:4e:5c:1c:42:97:00:23:37:
37:9d:2d:d1:ee:e2:59:e6:1b:50:94:83:d5:5c:40:
5f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AB:11:B1:25:14:34:74:86:21:36:BA:5A:77:D7:06:99:35:48:BD
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/W6sRsSUUNHSGITa6WnfXBpk1SL0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.157.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:f8:b3:65:a4:01:5a:88:2e:72:40:c8:ee:4f:8d:c1:17:04:
e3:97:02:62:e8:9b:bc:18:43:6c:4d:07:aa:1b:ef:22:5a:5f:
85:5f:20:51:0e:7d:e5:16:81:c2:bd:5e:1d:25:c6:ad:90:b4:
1d:3d:46:d5:fa:7b:39:c8:4a:7c:2b:77:25:fe:33:26:5c:f9:
c1:f6:24:7e:04:70:2f:5c:e3:f6:b4:8d:00:6c:5e:cd:66:19:
95:9a:a1:ea:e2:58:fc:58:cc:b3:5b:83:d1:13:7e:00:41:44:
91:3c:2d:5b:74:59:7f:b2:3f:f0:0a:38:5e:61:1e:15:29:46:
e3:c1:5d:ed:9d:bc:54:c7:69:c8:36:0d:c0:57:8b:60:4d:4a:
3f:e1:69:24:40:1b:77:6e:9d:95:20:fa:5c:6e:84:3b:5d:1e:
81:e4:5d:f6:eb:dd:6d:1f:8e:03:1b:dd:9d:9c:fe:27:85:d4:
d1:4a:48:96:1d:58:c3:ba:68:ba:70:40:97:36:7a:c7:e1:02:
e2:84:2f:a7:be:7a:f5:73:fb:24:95:46:72:e5:af:2b:49:24:
3e:ac:09:01:4e:fe:c7:68:ef:77:80:fb:cf:a9:37:4a:ff:71:
14:a1:52:81:b1:e2:49:ce:3f:50:9d:a5:38:6e:03:bd:5c:c4:
81:bb:77:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org