Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_MVbG14MmMZqRgaoJVJDNyv27KQ.roa
File: _MVbG14MmMZqRgaoJVJDNyv27KQ.roa (raw, json)
Hash identifier: MVsDzVB04TbOcGFu3B5svO7ms8xzdsW+ArG2pzRXv1k=
Subject key identifier: FC:C5:5B:1B:5E:0C:98:C6:6A:46:06:A8:25:52:43:37:2B:F6:EC:A4
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0A6D
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_MVbG14MmMZqRgaoJVJDNyv27KQ.roa
Signing time: Thu 15 Sep 2022 02:50:47 +0000
ROA not before: Thu 15 Sep 2022 02:50:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3949
IP address blocks: 61.58.41.176/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669 (0xa6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 15 02:50:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FCC55B1B5E0C98C66A4606A8255243372BF6ECA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:66:f8:36:25:92:6f:bf:2c:d1:b3:ca:c5:51:
19:04:d5:77:17:fa:32:c1:56:ac:ea:3a:ec:b2:cf:
0c:d4:a8:38:ba:ec:3e:96:c7:0b:7a:a9:8c:f1:d9:
ee:30:2f:20:d6:ed:c6:2c:2a:84:39:0f:ad:33:00:
b0:9a:d6:ca:b4:62:95:a1:1b:12:7c:c6:b0:d5:e1:
6b:6c:46:30:60:1e:be:77:23:a3:09:b7:bf:2a:18:
b6:25:22:0c:03:ad:4f:80:7a:33:cd:1f:38:e5:1c:
ed:7a:9e:51:83:4d:5b:fa:80:64:1a:d8:b9:12:fd:
d1:93:95:54:51:07:19:f0:a0:dc:c7:0b:18:76:af:
13:3e:c3:26:e7:14:c2:db:71:79:50:7c:03:28:e7:
15:95:42:16:07:c3:4d:45:46:46:24:c4:7a:ad:49:
c0:f5:58:b1:4c:85:98:c8:b6:1c:9b:c9:20:b4:56:
11:74:c5:66:cd:cd:9f:f4:22:4f:d6:38:9c:1a:3a:
1d:82:c5:62:96:bb:79:3c:63:ac:eb:ce:af:0a:6a:
1a:aa:ef:1b:71:a3:52:a0:e2:f5:57:28:ec:1b:3c:
20:a3:3d:c7:34:77:2e:31:0f:79:16:57:48:92:51:
ed:72:cd:bc:e3:61:3b:7c:02:8d:a1:e4:ad:b1:68:
3b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C5:5B:1B:5E:0C:98:C6:6A:46:06:A8:25:52:43:37:2B:F6:EC:A4
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_MVbG14MmMZqRgaoJVJDNyv27KQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.176/28
Signature Algorithm: sha256WithRSAEncryption
63:c3:9a:99:f8:59:31:ba:74:c7:ac:10:0f:71:7a:31:ec:18:
ca:24:58:ee:03:bf:87:1c:bb:6e:cd:7b:99:33:5b:34:b9:9d:
17:f9:42:22:fe:68:94:fb:14:bf:1d:97:ae:37:4f:d9:d6:c3:
75:b7:77:e9:30:47:6d:fe:dc:49:38:56:af:38:0f:9c:bd:77:
3b:7d:64:b0:ac:ea:86:3f:a9:3f:98:07:0f:cf:85:13:4c:01:
71:98:68:c7:c4:2e:f1:2d:25:2d:50:1f:95:d7:78:bb:3c:39:
3a:76:51:94:7d:e9:25:3f:79:c5:6f:17:0b:45:6a:74:ba:69:
ae:d8:29:a4:9a:df:0a:2b:8d:3e:7c:c0:17:25:fc:ed:b7:c8:
50:61:91:22:e3:e0:91:6c:05:1c:0c:2d:9c:9f:00:85:54:7a:
2c:7c:2e:7e:3c:38:bb:75:31:2f:f0:fc:d5:02:5e:bf:3d:fe:
37:ea:24:cf:01:9e:21:25:e4:99:93:bd:87:2f:18:2c:4a:73:
81:2b:36:72:05:09:3a:5f:71:59:a1:26:86:f9:58:d9:c0:cf:
72:e7:84:be:ad:95:04:4a:fa:63:b3:49:e4:02:18:25:56:17:
ca:4b:64:17:cf:b6:b7:ed:a8:90:fc:db:ed:2c:dd:68:06:09:
23:82:cb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org