Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Xn6gLmyJ52zir3HSkbmn5VdoYZw.roa
File: Xn6gLmyJ52zir3HSkbmn5VdoYZw.roa (raw, json)
Hash identifier: gFvlHbP4WSmI1F0BPFJ/9AmuHPIlPkckUsUQx6m1elg=
Subject key identifier: 5E:7E:A0:2E:6C:89:E7:6C:E2:AF:71:D2:91:B9:A7:E5:57:68:61:9C
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08D5
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Xn6gLmyJ52zir3HSkbmn5VdoYZw.roa
Signing time: Sun 07 Feb 2021 05:46:14 +0000
ROA not before: Sun 07 Feb 2021 05:46:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 49.213.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2261 (0x8d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:46:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5E7EA02E6C89E76CE2AF71D291B9A7E55768619C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:90:76:d1:14:5a:c2:f1:07:23:00:56:6c:85:
7d:2e:67:d8:94:70:14:25:08:f9:53:ae:71:91:f5:
db:16:af:ad:3d:28:f4:c6:de:73:2d:62:4a:0a:03:
7f:15:d6:d4:3d:f2:e2:b6:4b:2e:97:ac:c9:1c:6a:
89:7d:db:57:84:ad:36:82:2d:57:d2:13:ee:38:fe:
19:f0:c9:56:18:17:d1:bb:1f:d2:88:63:b0:cc:4b:
70:8f:82:f7:6e:14:07:ee:b6:11:0c:26:f7:56:a7:
cf:d3:e6:47:1b:b1:09:69:34:89:7d:be:e3:66:8e:
48:30:42:71:51:08:8a:7f:ba:44:cf:f3:5e:1c:26:
e9:5c:17:94:87:75:37:5b:0f:08:07:66:db:b0:1d:
ad:c6:12:1d:48:71:56:22:91:da:dc:78:8f:69:a6:
11:7a:30:7a:24:ee:9f:bc:3d:0f:94:89:3b:fb:6e:
60:f4:52:07:bc:60:ff:14:48:dc:93:64:c1:dd:76:
79:89:30:f2:9e:fd:6a:24:98:48:d3:ea:5d:b8:10:
22:99:34:b2:e5:d3:73:bd:e8:88:4b:e4:36:e9:cd:
f6:64:ef:55:0e:53:4a:28:ce:36:59:c5:e7:64:6c:
c8:41:ca:05:71:bc:8e:80:9c:c8:85:10:e2:55:3d:
99:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7E:A0:2E:6C:89:E7:6C:E2:AF:71:D2:91:B9:A7:E5:57:68:61:9C
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Xn6gLmyJ52zir3HSkbmn5VdoYZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5e:79:23:0f:5e:b2:e3:cf:2c:64:7c:a6:03:22:45:cc:4a:85:
07:63:b3:23:25:d3:a6:bf:a1:fa:4e:80:24:aa:1e:da:a3:88:
50:32:62:d1:a3:fe:3b:6d:71:0d:ac:45:49:72:b9:84:af:9d:
86:db:92:3d:81:e8:4b:ce:02:0d:30:be:d2:8a:6e:5c:5d:f9:
37:3f:4e:8c:0f:1b:7b:b2:21:fb:4f:e4:1b:6d:8d:bf:4b:57:
63:e7:9b:99:56:4a:3a:9e:f5:21:54:3e:bf:d9:37:e7:ef:f6:
9f:81:4e:b6:c7:9e:46:33:ef:42:80:cd:c2:7b:26:73:10:2e:
18:d3:52:45:43:e7:40:47:b6:29:10:91:95:27:c7:e4:de:97:
d4:fc:42:48:a8:67:a7:b0:6e:fb:77:fe:b9:8b:79:6e:a3:8a:
c1:84:f6:56:80:93:da:0f:53:72:ec:6f:f8:e3:0e:eb:c7:84:
1d:3e:7b:3a:3d:78:35:c1:96:e0:3d:b9:8e:7f:c9:61:b0:50:
cd:8f:c1:b7:63:59:75:4b:12:45:97:2b:0b:2f:7c:ca:6a:15:
30:ad:5e:39:9c:38:45:67:21:67:03:2d:56:29:4b:a8:c0:d6:
5d:52:07:bc:48:78:c0:00:c9:7b:04:63:8e:08:fb:e2:4f:c5:
89:f3:63:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org