Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/ZDssa2d-KE8NdZAkzeTTXMXWQqo.roa
File: ZDssa2d-KE8NdZAkzeTTXMXWQqo.roa (raw, json)
Hash identifier: LSRVNTdBTlDGUnZBhVTlmF3rdh3p1zDTCoWphEcTDXU=
Subject key identifier: 64:3B:2C:6B:67:7E:28:4F:0D:75:90:24:CD:E4:D3:5C:C5:D6:42:AA
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0779
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/ZDssa2d-KE8NdZAkzeTTXMXWQqo.roa
Signing time: Tue 29 Sep 2020 10:00:53 +0000
ROA not before: Tue 29 Sep 2020 10:00:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.58.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1913 (0x779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 10:00:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=643B2C6B677E284F0D759024CDE4D35CC5D642AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b1:03:ec:3a:1b:66:cb:ef:6d:f9:b9:90:e7:
1a:8e:c5:2e:b3:8f:40:84:bc:01:1f:c8:7c:3d:fb:
00:65:db:a6:cf:16:f3:9a:f6:e3:78:c2:bf:70:97:
bb:6c:e1:c8:82:02:17:1a:ef:db:0a:5e:39:32:14:
06:08:fe:f2:e4:eb:c0:ac:81:b4:0e:21:9b:a3:69:
73:a0:85:1c:aa:8c:89:6e:f5:e7:4a:16:48:12:d8:
5a:a5:34:e4:b7:2e:f3:53:8d:00:b3:56:5f:99:07:
ce:93:40:e4:5e:8e:a6:38:87:84:85:49:4f:86:0e:
c5:98:ef:61:5a:62:ba:b2:19:c0:f8:ba:aa:c7:ef:
2a:5d:f8:29:98:ef:c9:50:0d:0f:5c:e5:2c:71:b2:
f2:59:82:ca:b5:db:4b:24:e3:29:88:37:58:5f:9b:
ca:07:b9:80:ec:61:d5:9d:73:8d:c0:9e:49:b0:8a:
57:39:13:3f:25:5e:f1:b8:f3:64:19:3b:9b:c5:bc:
ca:85:88:2c:99:9c:9b:93:ae:a5:75:8d:2b:cf:70:
7d:50:5f:93:8c:f9:63:f5:2a:96:0f:37:47:f4:10:
73:f3:14:fd:6c:33:3d:bf:2c:06:45:28:d2:f1:43:
4a:1c:5a:74:24:96:41:90:73:86:2b:0c:a6:de:02:
02:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3B:2C:6B:67:7E:28:4F:0D:75:90:24:CD:E4:D3:5C:C5:D6:42:AA
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/ZDssa2d-KE8NdZAkzeTTXMXWQqo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.128.0/19
Signature Algorithm: sha256WithRSAEncryption
77:82:88:62:aa:5a:26:a6:33:30:bf:d2:3c:5c:78:ad:49:f5:
cc:97:2b:02:b6:d9:1f:c3:d1:25:13:6e:aa:93:cc:f2:c0:a6:
b2:22:72:82:bd:ce:17:0b:ca:c5:e5:34:71:26:be:1b:07:74:
21:cc:4e:c6:5a:69:a7:cf:d7:31:64:09:dc:20:0a:2a:00:41:
f6:fd:0a:51:40:25:63:1f:48:40:01:87:60:67:9e:a1:bc:49:
98:8e:82:df:92:6a:91:4b:f0:bc:6b:ad:ec:ca:ce:76:28:d5:
43:c5:cf:a7:9f:23:01:de:6d:b0:6f:7e:2b:ed:24:c6:07:c9:
d1:04:d6:75:eb:da:63:96:dd:52:fc:b8:e4:12:56:7c:a6:5e:
71:58:89:21:8a:77:14:84:5b:f7:0b:3e:71:fc:39:e5:30:1d:
b2:d8:1e:80:45:de:e8:11:3f:f9:13:74:17:ca:0e:ce:7c:ce:
a0:8b:d5:ba:18:9f:41:60:f3:81:ff:6b:3c:d2:e6:a2:7b:c3:
24:f2:cb:fc:d1:04:f5:89:4e:62:5a:67:2b:21:6d:d8:3a:93:
a7:6f:08:33:f8:79:3a:bd:b2:82:5c:31:47:d0:10:55:af:56:
51:51:5f:70:33:da:30:8a:4d:32:a0:9a:9e:fd:32:25:6c:d4:
34:59:2f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org