Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Yj37FVKaEuFLWo5Kv1tjEyv4cyQ.roa
File: Yj37FVKaEuFLWo5Kv1tjEyv4cyQ.roa (raw, json)
Hash identifier: Qdg8bc4YLjlVvJ1kuKU9tLLdgZhU95rHsP97I5dJ7vM=
Subject key identifier: 62:3D:FB:15:52:9A:12:E1:4B:5A:8E:4A:BF:5B:63:13:2B:F8:73:24
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A00
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Yj37FVKaEuFLWo5Kv1tjEyv4cyQ.roa
Signing time: Wed 16 Feb 2022 06:35:31 +0000
ROA not before: Wed 16 Feb 2022 06:35:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 49.213.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2560 (0xa00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 16 06:35:31 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=623DFB15529A12E14B5A8E4ABF5B63132BF87324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6a:47:22:e3:41:64:c6:e4:4f:71:3f:bc:db:
15:c4:fd:71:c8:e7:11:d8:df:9e:c3:43:54:3c:2c:
8c:e0:7e:66:0c:fa:bd:4e:f5:08:b2:48:ef:c5:db:
31:af:2c:f9:80:15:fe:c3:d5:bf:8b:12:82:12:ed:
1a:bc:d9:1b:b4:ee:3b:91:26:49:a3:86:25:15:77:
0c:60:04:6a:d1:cf:f3:11:76:45:13:2d:b7:48:b5:
2a:88:2f:98:2a:52:2a:2c:3f:0c:5d:1b:78:23:82:
7a:21:34:e9:18:f0:91:30:0a:dd:07:e9:c4:eb:c8:
91:50:38:8e:a0:1d:9e:f9:e8:d1:a1:de:b2:96:1a:
2d:41:70:ce:ef:3b:7b:28:e5:64:f7:bc:2c:40:46:
66:d5:d2:a3:e1:56:1c:e1:36:8a:9e:99:1c:e9:0b:
da:c7:53:3a:a3:3b:24:94:8b:97:00:27:ec:6e:68:
46:fd:63:53:92:b1:2a:e5:01:12:12:97:c1:0f:a3:
9e:da:16:f4:68:a9:4a:c3:24:a2:eb:63:d7:5e:5e:
80:97:49:51:eb:13:7a:6c:37:c4:cd:6f:22:8c:73:
12:d0:fc:0b:2d:19:78:ca:25:2e:99:a2:76:81:bc:
62:ee:65:6e:f5:ff:d9:7a:85:8e:97:e2:ca:49:3b:
08:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:3D:FB:15:52:9A:12:E1:4B:5A:8E:4A:BF:5B:63:13:2B:F8:73:24
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Yj37FVKaEuFLWo5Kv1tjEyv4cyQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.175.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:13:d7:69:52:00:71:fd:9c:07:09:29:1b:98:f7:21:7e:06:
af:3d:76:b7:36:cf:a6:53:de:7c:99:fe:73:67:2e:26:9e:0c:
63:cd:04:fd:65:64:79:cb:5b:ae:84:e9:a6:15:57:ef:75:3b:
38:30:e7:9d:8d:10:a7:87:55:fe:fe:c2:2a:47:bb:1b:9d:76:
c7:ca:a5:85:a9:47:c7:41:98:fa:9f:aa:05:63:8c:ae:79:dd:
4f:63:2b:10:93:dd:dc:aa:3f:34:d8:5a:94:6c:41:0f:53:54:
91:cb:2e:bd:d6:da:bd:58:9d:3b:8a:02:e9:09:0f:c5:99:b5:
8a:75:e1:b2:f6:bf:0d:29:e4:95:59:dd:78:d7:ec:7e:01:4b:
aa:13:9e:15:b9:77:e9:34:e0:98:e5:00:71:ec:e7:0f:a5:74:
60:38:57:4b:3c:5f:70:fd:23:2d:39:40:46:87:50:43:bf:0e:
2e:bf:8e:9f:c7:4e:3f:32:3f:65:aa:6e:39:e0:d3:7a:45:d0:
bc:47:c5:cf:39:0a:73:6f:c9:c5:ce:3c:e8:e2:65:ed:7e:c0:
b1:ec:a0:87:db:13:e0:3c:41:8e:3b:dd:f6:62:7c:97:dc:65:
ab:ca:c0:95:cd:5a:2d:d5:1e:3e:01:6e:40:d6:0a:8f:4e:68:
e7:34:6a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org