Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/yVYUI_lZXPDns8Cl14A5s_jp0xE.roa
File: yVYUI_lZXPDns8Cl14A5s_jp0xE.roa (raw, json)
Hash identifier: WXYbuwcDMo8RSZQnK66cv4UqCMBV19ZSSYyQYBo24+s=
Subject key identifier: C9:56:14:23:F9:59:5C:F0:E7:B3:C0:A5:D7:80:39:B3:F8:E9:D3:11
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0996
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/yVYUI_lZXPDns8Cl14A5s_jp0xE.roa
Signing time: Wed 29 Sep 2021 02:53:18 +0000
ROA not before: Wed 29 Sep 2021 02:53:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 61.67.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2454 (0x996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C9561423F9595CF0E7B3C0A5D78039B3F8E9D311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:46:e1:71:90:9f:70:88:9f:f4:14:23:a4:3d:
fe:24:ed:68:44:e6:a3:0f:e9:c4:54:d7:85:09:ca:
b2:72:99:e9:34:62:42:58:9f:5a:36:bb:f9:77:9f:
af:4d:fe:4a:ea:72:a2:2f:25:06:86:39:f1:b7:14:
36:f5:db:b0:ce:fc:6c:a7:04:bb:10:05:7b:8a:8e:
2b:70:04:c7:00:55:ce:03:67:b4:1a:d1:d2:34:45:
17:84:a0:75:01:db:08:3f:8a:b6:24:72:8d:35:57:
f0:96:29:30:41:a1:10:a1:a4:4a:67:6a:20:16:e4:
cf:f4:5a:c1:d5:4c:0a:e1:34:e6:4a:c2:9d:60:fd:
3a:a1:14:8b:b6:29:ab:4e:93:6f:a9:6e:af:7c:ea:
d1:64:27:37:05:69:87:2b:7c:04:49:4d:37:d7:21:
bc:46:6a:3c:b2:4b:1a:d5:d9:0f:b1:f3:6a:1f:3e:
62:46:03:8b:48:f6:49:d6:47:5d:4f:db:64:e9:22:
d9:48:6a:2e:2d:cd:7f:23:98:e1:92:02:69:61:5f:
e0:e7:72:e1:9b:42:34:e9:df:f6:29:87:59:13:55:
b8:4c:aa:4c:bc:d2:60:5f:43:e3:b4:c6:f7:33:e4:
44:19:f5:cd:50:4e:8e:4f:1c:1d:92:cf:39:aa:09:
1f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:56:14:23:F9:59:5C:F0:E7:B3:C0:A5:D7:80:39:B3:F8:E9:D3:11
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/yVYUI_lZXPDns8Cl14A5s_jp0xE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.32.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:9d:3d:fd:00:35:75:c5:c5:ba:66:e9:05:f6:db:67:cf:fe:
89:30:d7:d0:df:16:df:2e:bc:3a:67:cf:9d:a5:46:98:e5:73:
36:28:2d:c1:29:2f:14:0c:d9:f3:ee:05:55:f5:63:0b:86:ed:
1f:96:a5:bf:ff:ec:55:3f:4d:d0:e2:e5:e9:a1:97:a6:c0:86:
a0:b2:fc:b4:83:11:1e:ae:14:1a:89:c9:71:4d:10:05:c4:91:
99:29:f1:45:fd:6d:52:ac:47:ec:37:51:fa:7b:be:c0:1d:47:
28:23:36:94:41:c3:b2:9a:f4:ff:f9:4e:88:9c:ff:fb:b5:2d:
bf:9a:7a:8a:19:5c:a8:55:2b:d5:13:b4:fa:7f:7c:aa:8b:17:
2d:03:f1:1a:22:f1:6b:dd:c1:46:da:54:78:73:76:6f:00:01:
b7:58:d4:bb:81:a8:f1:ab:c4:66:1e:96:7c:bb:2a:94:3b:5e:
d3:18:e6:0c:8c:5a:b5:f8:b3:a4:71:aa:a5:1b:39:54:2e:4e:
9e:3c:17:49:07:ac:0b:46:5e:b3:4b:4f:be:af:77:71:04:e1:
35:4e:fb:4c:0b:a8:45:43:fa:c0:74:2e:6a:e8:f3:b4:30:13:
69:7c:c2:6c:4b:8b:66:02:68:36:9a:a4:54:54:5a:95:8a:0f:
ad:99:fd:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org