Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/mKf_Y-C2jccVK19A8lxe_CQUM6c.roa
File: mKf_Y-C2jccVK19A8lxe_CQUM6c.roa (raw, json)
Hash identifier: NTtlf93BqbHCFDzatVHhChkrtkvBkbOwfiEr355VNL0=
Subject key identifier: 98:A7:FF:63:E0:B6:8D:C7:15:2B:5F:40:F2:5C:5E:FC:24:14:33:A7
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08E7
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/mKf_Y-C2jccVK19A8lxe_CQUM6c.roa
Signing time: Sun 07 Feb 2021 13:07:00 +0000
ROA not before: Sun 07 Feb 2021 13:07:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.58.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2279 (0x8e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 13:07:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=98A7FF63E0B68DC7152B5F40F25C5EFC241433A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:46:cc:23:25:0a:2a:ea:5c:83:77:ef:8d:3f:
ff:f2:73:21:9a:89:27:30:cf:b8:bb:c1:ec:a4:de:
b0:1b:ea:5c:a5:83:0a:fd:bc:94:fe:a4:6e:0e:d3:
a5:f7:fa:6d:f0:3a:55:26:cd:4b:76:83:f0:1c:96:
59:2a:fd:94:7a:8b:64:82:0a:4e:e2:6a:a5:fc:54:
1d:20:d7:57:e2:a1:68:97:71:14:89:90:59:6f:88:
f6:d4:df:1d:43:6d:0e:37:17:59:4d:78:42:e0:79:
9a:49:a4:2a:dd:35:79:92:08:cc:dc:75:eb:da:08:
1f:7c:07:2c:42:33:0a:88:4b:0c:3b:72:54:b9:bc:
f1:d4:aa:3e:94:74:3a:25:98:64:be:75:4d:76:9f:
14:eb:36:e0:82:d1:e1:01:a3:2d:53:57:55:47:3c:
71:cf:02:ab:71:28:5b:64:68:26:a8:fd:61:db:3e:
3e:3b:5c:9f:63:22:9f:32:16:f3:2d:0b:25:0b:9c:
65:33:57:ee:ee:77:74:b6:19:82:3f:64:53:36:b2:
4b:e7:6c:f1:12:8d:71:17:60:6c:9e:66:34:b4:d6:
c8:f5:1d:68:29:c5:c2:28:06:57:f7:f6:df:ed:bf:
21:1e:e5:66:20:65:00:6e:91:f6:f7:25:fe:1f:8e:
c7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A7:FF:63:E0:B6:8D:C7:15:2B:5F:40:F2:5C:5E:FC:24:14:33:A7
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/mKf_Y-C2jccVK19A8lxe_CQUM6c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.159.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f9:21:df:3c:8a:e9:52:f2:ed:4d:99:35:99:c1:89:29:d1:
08:ce:81:c4:07:b1:89:1f:96:57:84:04:0f:d8:37:0b:96:c3:
df:93:15:55:6d:e7:e8:63:95:59:84:58:5c:a5:d9:3c:d8:90:
85:b2:2a:d2:13:c8:99:cb:97:2d:b1:84:ba:54:d6:cb:b9:f0:
4d:d5:cf:81:41:57:97:be:23:54:c6:60:79:ec:64:de:0e:a4:
ba:97:58:28:ef:3e:53:1e:5e:f7:a4:57:f3:ab:69:e3:4d:0b:
8f:c9:74:c6:0e:61:a8:f6:de:79:06:21:9c:a6:a7:be:46:02:
19:39:8c:94:e2:e7:99:b8:44:28:03:94:b5:1e:cc:4b:c9:3b:
be:7e:7c:63:10:ad:ff:4b:ef:5d:59:c6:6e:2e:c0:30:cc:70:
4a:89:9e:99:a8:22:a1:6d:2a:af:5a:df:dc:ba:42:4d:07:b0:
25:c8:68:93:67:d5:5f:e5:8d:5b:4e:12:c2:25:dc:2d:fa:75:
f0:c4:2a:07:83:d2:f4:59:9f:0d:69:1f:84:f7:de:5e:44:4e:
73:0f:0e:42:0a:b4:a0:c1:a3:06:27:65:4c:10:e8:5a:70:bf:
48:1c:ae:01:5b:d8:d1:dd:ad:3e:55:7d:ab:41:44:95:51:17:
40:6a:ae:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org