Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/vzFMQCPtPEMnrxPzp2iR8e8VQow.roa
File: vzFMQCPtPEMnrxPzp2iR8e8VQow.roa (raw, json)
Hash identifier: Mfxz9Sy5RuNW5LaJwYAdZ9w7KxB6+cidHdOmeCpJsfc=
Subject key identifier: BF:31:4C:40:23:ED:3C:43:27:AF:13:F3:A7:68:91:F1:EF:15:42:8C
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0990
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/vzFMQCPtPEMnrxPzp2iR8e8VQow.roa
Signing time: Wed 29 Sep 2021 02:53:16 +0000
ROA not before: Wed 29 Sep 2021 02:53:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 27.100.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2448 (0x990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BF314C4023ED3C4327AF13F3A76891F1EF15428C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fc:bb:0f:32:26:79:f5:d6:dc:69:4c:a0:74:
79:b0:6b:f2:89:58:ab:68:cb:a2:e8:92:5e:eb:1f:
cb:c8:07:ae:be:76:66:d5:cd:2a:92:03:e3:0f:39:
67:63:85:47:82:e5:ce:3b:b6:f3:55:fe:34:c5:12:
7f:7b:33:b5:77:b1:d5:c0:d0:ec:d0:bf:2f:18:b4:
ca:bf:23:5a:37:6a:bc:e4:e6:df:0f:c3:dd:44:c3:
b0:73:9e:66:20:0d:f1:67:5e:95:93:d2:4a:e5:d6:
8d:d7:30:26:25:ed:06:b0:29:b9:e2:d9:64:c8:92:
07:e3:c6:d5:3b:a0:98:5c:af:38:1d:95:48:e6:ea:
62:9a:e2:fb:30:ce:ce:11:9f:d3:92:d7:3c:b5:48:
20:f8:f8:d8:be:3b:56:9c:2f:c3:7a:a1:f9:ac:35:
88:3a:6b:80:8b:af:2d:c2:95:94:f5:06:74:b8:da:
85:a8:73:df:b7:2a:88:dd:e7:9b:51:1d:83:02:45:
de:cd:e4:61:fb:1f:41:26:1f:c9:f9:6b:74:18:2b:
37:68:78:73:74:80:08:e7:67:3e:5c:c2:4f:a4:78:
d4:46:21:d8:57:41:c8:c7:bc:49:89:a6:aa:5c:a5:
8e:0a:a9:3b:68:b2:58:da:8c:35:cb:cc:b4:ab:cc:
18:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:31:4C:40:23:ED:3C:43:27:AF:13:F3:A7:68:91:F1:EF:15:42:8C
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/vzFMQCPtPEMnrxPzp2iR8e8VQow.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
42:b5:b1:c8:01:a6:a1:74:b7:04:d6:a7:c3:c4:7d:73:b5:98:
22:10:e6:05:11:29:52:d7:50:b4:df:13:ba:d6:e2:02:0d:e8:
c3:de:b1:56:1f:fb:db:34:57:89:72:dc:57:25:76:0d:ac:e0:
fe:42:0f:6d:43:7e:9a:ef:b7:45:86:39:d8:ef:73:1b:c7:d4:
67:55:9d:b2:34:f0:98:dd:d3:49:69:6a:92:ee:e0:1c:5d:f9:
25:d0:ac:65:68:c8:e5:be:3a:c6:8e:05:8d:f5:88:1f:d6:27:
d3:63:02:91:e8:58:1b:96:70:1d:80:4e:db:08:9c:cb:88:eb:
c7:4c:a1:4a:d7:3c:02:ef:e0:b1:32:b6:08:e3:45:73:13:09:
86:87:d3:7d:c2:91:e7:48:5f:46:f0:81:5b:e4:b4:b8:da:2a:
13:43:aa:55:e6:23:68:b3:ad:f6:a2:33:a7:36:af:99:2b:4f:
4f:95:0e:76:5a:39:09:3d:6b:da:db:3a:ad:fe:c7:6a:1e:ae:
1c:f2:09:f1:7f:69:52:40:36:c0:f4:b8:41:81:88:0a:73:0a:
14:47:35:f7:ef:4d:ef:23:a9:17:10:52:79:8b:13:f9:b7:06:
63:83:d1:f9:87:93:5a:88:26:31:e7:36:2f:30:02:48:19:db:
8f:95:a9:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org