Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/qfCmq4IQhOAuADUDGcE4Rx4Ws3I.roa
File: qfCmq4IQhOAuADUDGcE4Rx4Ws3I.roa (raw, json)
Hash identifier: OiHDHW4+GXP6mFoA3wF0YOaMwhx8o62JkHmAE0gh5cQ=
Subject key identifier: A9:F0:A6:AB:82:10:84:E0:2E:00:35:03:19:C1:38:47:1E:16:B3:72
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08DD
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/qfCmq4IQhOAuADUDGcE4Rx4Ws3I.roa
Signing time: Sun 07 Feb 2021 05:48:18 +0000
ROA not before: Sun 07 Feb 2021 05:48:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.60.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2269 (0x8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:48:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A9F0A6AB821084E02E00350319C138471E16B372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:18:8d:48:9b:1a:b1:b6:07:f0:dc:7e:17:85:
01:00:17:26:1a:27:aa:7b:af:b0:94:05:bb:ad:06:
30:b5:f7:75:6b:91:c1:d1:96:02:07:3b:5f:66:51:
8d:95:2f:10:31:38:e0:f9:5d:d1:5a:3c:04:36:f5:
5c:c5:a3:c1:1e:e2:23:32:3e:25:63:d7:95:41:01:
03:28:89:51:e1:f3:c5:b9:31:a1:da:7f:2c:76:40:
3d:db:9e:54:7c:e5:62:d8:ff:b7:0e:73:2f:3c:fe:
49:7a:8e:a1:e0:84:c1:ad:f9:c5:8f:fc:77:7b:13:
1c:5d:38:fc:7b:54:9e:a5:a2:30:48:fe:88:44:85:
0d:fb:cb:6b:aa:02:6d:7a:c8:da:a0:8e:cb:e4:4c:
85:3e:2a:40:d5:17:36:eb:e5:e2:0f:af:ef:4c:b6:
54:8c:71:ee:e5:51:65:95:45:8a:de:8d:63:ea:11:
c5:14:7e:ea:65:0b:bc:3e:01:0e:67:03:aa:15:58:
f0:b3:b7:fe:85:d4:48:e2:7d:23:c5:ae:b7:50:74:
d7:cc:dd:e7:fa:c5:03:21:f5:c5:ad:a0:a1:f3:17:
bc:c1:39:c4:2e:65:c9:ab:74:59:a5:b7:30:84:a5:
bb:01:62:68:5d:2c:5e:51:d1:ed:6a:40:23:18:ff:
1c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F0:A6:AB:82:10:84:E0:2E:00:35:03:19:C1:38:47:1E:16:B3:72
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/qfCmq4IQhOAuADUDGcE4Rx4Ws3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.224.0/20
Signature Algorithm: sha256WithRSAEncryption
07:0c:bb:ed:56:ba:91:2a:a4:ec:2d:27:61:ef:7e:70:06:55:
a3:e4:28:df:0f:08:6b:90:2a:59:dc:bc:81:6b:2d:0d:9d:5a:
68:f9:7e:b3:99:d0:19:bd:8a:b0:02:8e:2c:73:a4:d4:49:cc:
de:07:cd:87:f1:64:e5:a0:dc:5d:c8:5c:0d:31:93:86:e5:99:
9c:5a:cd:99:06:69:04:a0:36:da:b2:23:74:65:ff:01:32:4b:
ef:fe:e5:95:0d:83:52:5b:0b:27:63:b3:a5:a4:e7:65:81:66:
81:0b:49:4c:16:0f:70:e3:b4:e9:b9:de:c0:ac:48:8e:a3:ce:
dd:b3:e2:6b:35:f9:52:c4:53:a1:bc:40:42:27:86:ed:dc:6a:
14:2c:03:a6:21:64:45:0d:c4:60:98:97:dc:e6:1f:eb:4a:9b:
90:cf:3c:56:c5:1f:40:84:a3:03:78:ee:fa:a4:0f:51:dd:b6:
77:f9:d9:2a:13:31:29:4d:a8:30:c6:9c:31:d7:ff:e2:83:df:
66:42:8f:93:7d:ab:7c:da:98:9e:af:3d:d6:e2:b0:3a:c4:4c:
16:fa:7c:e0:b8:48:1b:d8:3d:15:26:69:23:c8:9f:c2:41:85:
82:99:7f:48:37:53:c0:d9:44:ac:a4:f9:eb:5d:ef:0f:10:68:
0b:de:b0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org