Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/GKiRBkdH4LUt1UEgwTjmCmaJvpU.roa
File: GKiRBkdH4LUt1UEgwTjmCmaJvpU.roa (raw, json)
Hash identifier: ON72hQkiwQXBFGkO+IVR45H0E/1uUf4CPbuWK4J0Ze4=
Subject key identifier: 18:A8:91:06:47:47:E0:B5:2D:D5:41:20:C1:38:E6:0A:66:89:BE:95
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0880
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/GKiRBkdH4LUt1UEgwTjmCmaJvpU.roa
Signing time: Wed 02 Dec 2020 02:11:05 +0000
ROA not before: Wed 02 Dec 2020 02:11:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 61.58.34.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2176 (0x880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Dec 2 02:11:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=18A891064747E0B52DD54120C138E60A6689BE95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fe:b1:29:f4:e8:97:ae:50:1c:bc:2d:bd:91:
3d:97:a7:48:6a:67:b3:0e:65:3d:7f:92:7f:91:69:
a8:c4:15:9c:3b:33:f4:de:39:26:bf:9f:1e:8e:d6:
3b:a4:22:35:1f:51:da:95:99:f6:f8:8d:84:1c:99:
2b:cc:3b:66:f3:9d:e4:3f:be:7e:54:c6:10:1d:69:
37:55:6d:60:0a:0f:33:d3:2f:66:62:c1:5c:50:ce:
3b:d1:b1:cb:05:51:d4:75:20:00:28:e7:8f:ff:cf:
80:87:87:ad:2c:19:a9:ac:f4:46:37:15:bf:f4:32:
df:c0:5b:1e:5b:2e:8f:4b:aa:a7:29:24:a6:0d:75:
13:c8:80:ff:c1:19:b7:33:27:d5:75:3f:84:cc:de:
f3:d9:66:e5:d8:d5:80:88:58:5e:aa:80:3b:6b:21:
c9:1e:62:23:ad:ba:67:1f:ab:3d:d8:5b:2e:cf:e5:
76:f6:12:3f:cc:e0:d9:96:a6:1f:95:50:fe:8a:c2:
dc:b9:98:de:8e:51:0a:f6:f4:08:ff:65:d7:db:7d:
df:f2:03:7c:c6:fb:a9:55:cf:45:46:b1:cc:25:71:
c0:40:17:8b:fd:4b:3b:ad:13:85:5f:bd:bc:b4:12:
5c:2f:f9:0d:d9:47:8b:44:dc:06:4c:78:02:03:d3:
3e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A8:91:06:47:47:E0:B5:2D:D5:41:20:C1:38:E6:0A:66:89:BE:95
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/GKiRBkdH4LUt1UEgwTjmCmaJvpU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.34.0/25
Signature Algorithm: sha256WithRSAEncryption
58:fc:7e:22:a1:fa:42:2c:36:09:be:b0:22:ba:5d:ed:d4:e0:
3d:04:1a:d2:3f:db:3d:5d:d7:95:ff:05:65:ff:e6:3d:98:fd:
62:f6:80:76:56:60:a6:c5:d0:80:e3:8f:30:bd:27:ba:78:90:
8d:04:05:2e:28:f0:8f:9a:fc:7e:2f:2f:d9:11:83:1b:b2:ab:
fa:e6:d9:b9:68:a0:06:74:5a:55:2e:40:52:15:c7:ff:db:9b:
b0:75:6a:b5:20:27:3d:ff:56:60:09:fd:08:b8:cc:98:af:7d:
a1:f0:14:9b:d1:8b:ad:50:43:d5:4a:48:4e:c5:fd:60:fe:10:
51:d3:60:63:a6:17:e7:c5:70:df:04:50:15:33:cc:08:18:a6:
e4:e3:82:73:4b:29:c7:d0:da:8f:92:2d:c0:4c:b1:c9:dc:a5:
84:67:5a:11:d7:68:9f:eb:17:19:56:2e:79:d5:41:47:58:7f:
34:ae:81:08:24:b6:0c:db:f9:ad:dc:0b:b6:a7:80:39:87:14:
e0:c5:88:4e:fb:cf:02:d2:b9:8b:cf:b8:77:3d:b5:33:82:50:
8c:33:6f:8b:77:a8:01:9c:fe:70:a8:48:96:bf:7d:08:6b:c5:
ce:56:27:f3:c6:4d:1f:ab:36:98:51:50:bc:02:c0:06:c1:d4:
e4:ae:f4:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org