Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/_0aymSb5TLvuCEpdM3rRGDh6T7U.roa
File: _0aymSb5TLvuCEpdM3rRGDh6T7U.roa (raw, json)
Hash identifier: TqmcB5sSU9BYBlaCslB7iYGnkC5QjJe80OBJo/4HC3M=
Subject key identifier: FF:46:B2:99:26:F9:4C:BB:EE:08:4A:5D:33:7A:D1:18:38:7A:4F:B5
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0890
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/_0aymSb5TLvuCEpdM3rRGDh6T7U.roa
Signing time: Wed 25 Nov 2020 03:57:01 +0000
ROA not before: Wed 25 Nov 2020 03:57:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.58.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2192 (0x890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Nov 25 03:57:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FF46B29926F94CBBEE084A5D337AD118387A4FB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7c:f0:47:de:20:1e:a6:f5:e3:0b:41:af:83:
ac:42:14:07:98:c5:ca:49:68:91:c7:36:4f:ff:42:
0e:fb:3c:51:53:36:1a:96:f4:a6:a7:69:b4:90:74:
d7:8b:f6:38:87:88:91:4f:3f:6f:d0:15:28:e4:bf:
ef:82:c7:c2:94:1b:2f:bc:49:0c:03:03:0f:02:5b:
9e:b5:5b:a2:55:bb:6a:3d:71:26:3a:6b:00:21:8d:
37:dd:66:2c:ed:53:bc:aa:12:5c:5b:59:6b:61:d8:
88:ad:f7:3a:d0:21:4f:65:ca:fe:b4:d3:55:35:34:
1e:44:45:0b:b9:a0:b0:28:26:14:08:ca:32:e6:36:
a1:39:8e:ad:db:cf:99:0e:35:7d:63:55:31:d3:3c:
c9:63:4e:89:88:0c:4d:80:04:97:c5:d4:59:33:0a:
c3:fa:5a:02:bc:4d:cd:45:5c:e6:00:d6:d7:74:a4:
bd:00:bd:3c:6c:d4:df:b1:b2:f3:61:5f:a3:d3:84:
d5:90:a0:92:2e:ee:07:65:28:3a:e5:fd:b9:ec:cc:
ae:f7:48:fe:0a:bc:89:2c:68:38:95:ca:ea:41:c3:
f3:3d:ef:d4:4a:0d:4d:b0:66:8b:b1:31:1f:87:e1:
27:a7:1a:c4:85:d0:49:c4:e9:8b:12:5d:66:c3:f2:
09:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:46:B2:99:26:F9:4C:BB:EE:08:4A:5D:33:7A:D1:18:38:7A:4F:B5
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/_0aymSb5TLvuCEpdM3rRGDh6T7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.156.0/24
Signature Algorithm: sha256WithRSAEncryption
21:aa:43:fb:a9:dd:5a:7e:d4:1e:9a:d5:d2:83:f7:ff:e7:94:
12:4f:58:a2:48:a7:1e:68:7d:8f:02:b4:49:f6:d3:50:8f:e2:
3a:86:c7:82:04:7a:59:0f:41:97:13:36:7c:b3:1c:9a:2e:ba:
d8:b5:96:2e:76:b6:a1:dd:6d:d0:14:66:95:c8:fc:f0:ff:d7:
ce:04:bd:89:07:95:bc:61:9e:a6:b6:97:64:53:76:37:36:e3:
16:66:ef:48:bc:45:88:a0:a7:62:4f:86:eb:84:56:e4:05:2f:
60:99:97:c0:61:3c:e3:9d:28:83:8d:cd:9d:20:10:45:2e:ad:
c9:4c:e9:f7:bf:97:61:46:9d:26:e0:a3:95:2b:ad:f2:47:73:
a3:55:3d:0a:c9:80:f3:b9:76:a9:22:96:6d:6d:c7:16:84:60:
08:f9:2a:6a:6d:e9:1b:c4:19:d1:15:87:30:fb:0e:41:8e:88:
0a:e8:d0:6f:42:0b:e5:8e:07:d9:f6:0f:53:95:47:89:d3:a0:
aa:95:84:82:99:69:91:73:20:39:93:c4:12:53:32:e9:49:64:
96:97:e2:13:df:cb:64:b7:f3:72:de:42:1b:ed:5e:4a:e2:8f:
11:ba:91:fe:16:96:a7:71:8c:0a:05:2f:3f:e0:a4:9e:d5:9b:
bb:cf:4f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org