Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/ytBpKzhk4AMEo6Oe61ADF-cXynE.roa
File: ytBpKzhk4AMEo6Oe61ADF-cXynE.roa (raw, json)
Hash identifier: JDURUihAyPG48+jEE1MH8LUF8z+it+g1xIiKE5sK+Ro=
Subject key identifier: CA:D0:69:2B:38:64:E0:03:04:A3:A3:9E:EB:50:03:17:E7:17:CA:71
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/ytBpKzhk4AMEo6Oe61ADF-cXynE.roa
Signing time: Thu 15 Sep 2022 02:50:59 +0000
ROA not before: Thu 15 Sep 2022 02:50:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 58.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:50:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CAD0692B3864E00304A3A39EEB500317E717CA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6c:f7:56:ee:8f:e7:33:ef:e3:45:d3:5c:90:
77:fc:46:c5:d2:79:25:75:1f:e8:51:c6:a3:08:07:
94:d4:da:97:78:79:c2:5d:b5:88:ba:bf:31:14:64:
45:b9:13:60:ff:c9:ae:3e:62:ef:fd:03:c6:69:6a:
56:eb:69:e4:6b:80:e0:3d:89:c5:10:0b:a5:f0:26:
c9:c8:5a:47:a4:ee:69:59:ec:7d:61:24:a3:67:ea:
13:6e:19:e4:8c:cc:04:d2:ae:d6:a7:34:93:ab:9c:
74:24:7c:88:2e:e4:24:13:59:2c:4b:8e:3a:74:7f:
44:86:96:2c:c0:00:eb:19:c3:ff:cd:74:8e:25:62:
fc:cf:cd:79:cb:52:9e:49:98:72:ae:67:26:59:34:
a3:ad:5d:a2:57:77:a3:db:89:d8:9b:ad:a6:b5:71:
6b:f3:f8:a3:41:21:28:51:2e:9c:ad:d5:ef:21:ea:
ce:27:32:53:5b:2c:fd:74:ca:f7:20:87:90:6c:34:
8b:87:69:51:e6:19:a9:9a:88:bc:8d:69:1d:32:1b:
7e:5d:76:ff:fa:55:ae:1a:cf:03:1a:05:ff:91:3f:
9e:6a:46:87:63:67:63:60:fd:2f:a5:0d:e4:34:e2:
0d:ce:7c:18:ea:fc:df:0c:0a:39:59:56:0e:65:da:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D0:69:2B:38:64:E0:03:04:A3:A3:9E:EB:50:03:17:E7:17:CA:71
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/ytBpKzhk4AMEo6Oe61ADF-cXynE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
b6:88:c4:d4:4e:b9:00:4e:1c:fe:18:41:79:75:b2:47:db:6f:
1e:da:19:9e:7c:7a:e5:cc:63:eb:a1:c3:5f:e7:f0:84:b8:3e:
fb:5f:05:7d:07:e8:15:0e:c5:be:64:65:b4:0f:c2:3c:72:3c:
f1:dc:34:e7:b7:af:49:cb:5b:e3:0d:0d:17:ae:e2:b7:80:67:
02:02:7c:8d:4d:fd:7f:65:e5:fc:6a:5a:f8:a8:62:48:ae:b1:
0a:54:13:7c:10:fd:10:81:16:72:e3:a1:aa:3e:ea:ba:b6:38:
5f:61:58:dc:7e:53:80:dd:f4:0a:bf:e6:c6:88:0a:08:6e:e8:
6c:a6:47:78:25:54:63:72:fb:67:c9:f6:0a:83:87:b8:57:f6:
0a:85:bb:d1:ec:ff:a7:36:ca:75:00:11:96:55:2f:bd:a1:56:
5f:5b:b8:06:e5:14:55:77:43:ed:0c:73:70:ae:29:75:ea:89:
2c:41:bc:7e:5b:5a:63:73:b2:57:0b:ed:b5:bf:34:4b:02:a5:
4b:2e:2f:b6:a6:8a:21:96:41:b2:28:61:8e:ba:de:f3:09:8d:
f2:a1:ae:04:25:c3:38:66:6c:80:f4:c3:f9:56:b7:3e:fa:f4:
ef:4f:20:3c:2f:7d:9b:a6:89:5c:dd:12:55:f1:a0:43:f5:54:
8c:c0:89:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org