Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Mvurt116pU4imaIicKXg2jBNM6c.roa
File: Mvurt116pU4imaIicKXg2jBNM6c.roa (raw, json)
Hash identifier: ynlaZvPGANpcQJktIJ18lqgIw8IUgqQfJeoAktIG0Qg=
Subject key identifier: 32:FB:AB:B7:5D:7A:A5:4E:22:99:A2:22:70:A5:E0:DA:30:4D:33:A7
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 08C7
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Mvurt116pU4imaIicKXg2jBNM6c.roa
Signing time: Sun 07 Feb 2021 13:07:49 +0000
ROA not before: Sun 07 Feb 2021 13:07:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 132819
IP address blocks: 61.58.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2247 (0x8c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 7 13:07:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=32FBABB75D7AA54E2299A22270A5E0DA304D33A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:64:72:45:70:d2:a6:2e:9a:7f:85:d6:db:bd:
85:ce:13:b7:8c:2e:dd:9b:38:3b:2e:a5:4a:8d:ad:
2d:83:98:f2:5a:6c:d2:b3:b3:10:12:35:8e:a8:ac:
53:06:5c:47:6f:f8:d3:1a:04:d1:5e:ef:67:6a:0f:
ac:03:1a:13:ee:de:4a:ef:49:32:d6:28:1c:46:55:
3a:f4:97:3c:ac:33:3c:81:16:83:17:35:a2:af:b1:
e7:d8:c3:4c:d7:6b:9b:4a:40:2a:9e:e4:28:46:b6:
1d:78:81:75:f4:8e:54:02:ba:bc:8c:39:36:fc:2d:
64:bd:24:c2:06:98:7f:c3:25:82:94:3f:a8:cf:a9:
7b:0c:43:5a:be:6a:1d:3f:69:31:23:54:62:71:e5:
f4:c2:98:fc:7f:14:4c:94:c2:e1:6c:3b:aa:a3:1f:
b5:7d:55:9f:01:65:57:2e:81:4c:64:84:0a:f2:72:
3e:aa:34:14:49:e4:14:2c:7a:78:d0:1e:82:53:e2:
6a:75:6e:25:e5:f7:f8:76:81:57:e7:32:95:3e:5b:
c6:69:3c:b3:08:76:a1:87:5a:95:68:64:f8:6b:4c:
86:be:9e:1c:3d:18:7e:bc:fb:5c:cf:30:e9:00:17:
6d:85:45:c4:2d:7b:32:b2:38:8c:c3:0e:77:54:d3:
46:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:FB:AB:B7:5D:7A:A5:4E:22:99:A2:22:70:A5:E0:DA:30:4D:33:A7
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Mvurt116pU4imaIicKXg2jBNM6c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.38.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:4e:32:6d:ac:5f:ce:dc:85:b6:0e:c1:a4:21:93:51:69:c5:
68:31:18:26:ed:3b:a0:d0:6d:0a:4b:3e:0f:bb:93:40:fa:db:
67:47:c5:bb:97:58:0c:ae:2d:ee:f9:a6:b4:2a:9c:2d:88:05:
66:8e:57:d7:94:3e:42:44:a8:ff:cd:3f:9d:7a:04:05:0d:49:
30:fe:a6:c8:43:fd:f0:ee:39:b7:60:df:f7:be:cc:15:18:38:
58:c5:09:f6:ff:7d:96:b8:b0:b1:91:2f:7b:8f:3b:d8:6d:47:
ff:b8:8c:47:19:05:e0:f1:fa:d9:b7:c7:bc:38:13:ab:c1:5d:
a4:a1:76:c7:82:e1:e8:e0:c9:44:97:77:80:48:3b:99:1d:6f:
21:e5:b3:c6:70:d0:bd:3f:23:b4:bb:9a:a2:76:bd:b2:ed:95:
3f:3c:61:f2:64:02:0f:6f:bd:66:69:51:18:2c:a7:dd:4a:b9:
1a:b1:f8:ea:07:29:66:c2:b6:7f:31:d2:63:72:59:42:70:da:
2e:e7:72:ae:38:10:e3:38:16:b0:c6:36:30:8f:bf:b7:ad:30:
78:95:15:5a:ac:dc:15:99:8d:e0:22:c2:8a:f3:f3:48:85:47:
a6:5a:5d:eb:63:8e:99:21:8d:0f:8d:c6:64:26:5f:1c:d4:cf:
cf:3a:19:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org