Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/YgjTGNHm1xT9FQRh1shP7vTyY0Q.roa
File: YgjTGNHm1xT9FQRh1shP7vTyY0Q.roa (raw, json)
Hash identifier: 1ELyTM9joLy3XV4cSozZL/yojTgBryjxe+Dq7taPk+0=
Subject key identifier: 62:08:D3:18:D1:E6:D7:14:FD:15:04:61:D6:C8:4F:EE:F4:F2:63:44
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/YgjTGNHm1xT9FQRh1shP7vTyY0Q.roa
Signing time: Thu 15 Sep 2022 02:51:02 +0000
ROA not before: Thu 15 Sep 2022 02:51:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 58.99.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6208D318D1E6D714FD150461D6C84FEEF4F26344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:9f:49:d4:ca:c0:43:2b:c8:94:4f:fb:5e:
2d:5b:a0:3a:bd:67:3c:38:fa:c1:48:8a:32:43:87:
2d:e2:2e:5a:dc:63:24:31:34:e4:b2:97:14:49:b3:
6f:d7:b9:37:2b:a8:52:b0:68:8a:cd:74:47:a8:8c:
15:8f:57:95:60:4d:96:7a:4e:93:1d:a2:6b:66:45:
da:b0:53:50:9d:db:ee:9a:96:80:43:34:48:de:bc:
21:57:ad:b2:2e:91:12:32:b0:72:7c:46:da:8f:85:
83:4f:d0:df:6d:43:d7:9b:98:d0:75:95:16:6d:43:
f7:15:06:91:2e:47:23:d4:67:3c:af:2e:f7:2b:98:
80:d6:ad:ca:d0:52:05:80:c5:ec:e1:b4:52:88:0f:
1d:fa:e3:54:96:66:15:8b:e2:0d:04:92:9a:f4:aa:
bc:d3:73:01:2f:ae:d9:68:e9:d2:64:1c:77:94:00:
fb:09:5d:33:3f:d0:2e:93:8f:49:90:8b:5a:01:60:
88:96:c1:e2:3a:81:f1:60:2b:c2:98:53:e0:e9:36:
ca:b9:f6:bf:96:e9:0a:32:f8:18:1c:01:fd:a4:e5:
b6:cb:70:ba:b3:9e:42:ee:8f:0c:cf:49:25:3d:e3:
3d:fe:0e:97:4c:fe:3f:14:12:ef:27:bc:0d:88:4a:
1b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:08:D3:18:D1:E6:D7:14:FD:15:04:61:D6:C8:4F:EE:F4:F2:63:44
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/YgjTGNHm1xT9FQRh1shP7vTyY0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.64.0/18
Signature Algorithm: sha256WithRSAEncryption
87:79:8f:0c:ea:38:4c:f6:d2:84:23:1a:f0:ef:76:8b:3a:d6:
3e:bf:35:c5:13:24:6a:e9:60:88:90:74:da:4e:50:ad:3c:20:
df:de:ca:3f:17:6b:ab:76:e4:17:8c:1e:6c:0a:2b:5c:31:6a:
73:ad:e1:11:be:60:4a:76:99:d8:86:ac:bd:eb:25:52:3b:72:
cb:20:49:53:00:69:f9:da:a5:f8:e0:06:f5:a4:c9:cc:70:c7:
74:61:07:80:4d:74:32:2f:b0:ce:10:30:47:05:56:6a:90:f5:
e5:87:1a:85:e6:00:61:c0:6f:0f:a2:5c:70:d7:5d:33:68:03:
e6:02:85:8e:66:c7:e1:a7:eb:89:bb:78:71:22:94:77:b4:f6:
81:ec:d3:60:a9:a7:0e:c8:ff:28:14:8c:df:75:5f:a4:6f:16:
20:ca:37:8e:43:5d:71:f5:82:8e:a7:e8:61:92:32:d3:50:3b:
08:e5:d1:be:15:b6:2e:79:14:f6:00:05:de:6d:6b:cd:5b:df:
56:cf:5a:00:b5:79:31:7c:48:3c:cc:a3:f5:88:4a:66:8f:39:
9a:57:b0:ec:35:cc:69:27:e9:e9:cf:86:0e:5e:3e:59:95:3c:
df:62:69:48:e4:25:07:04:b1:38:87:9e:90:ec:ae:af:51:f7:
fa:09:e8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org