Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/a-_v7p4dOUtApGH2RqrIdZ8CVFg.roa
File: a-_v7p4dOUtApGH2RqrIdZ8CVFg.roa (raw, json)
Hash identifier: rWUb3wIW5uPnmN6OdEsAQiYPnKtEPfLKugUviwvAMTE=
Subject key identifier: 6B:EF:EF:EE:9E:1D:39:4B:40:A4:61:F6:46:AA:C8:75:9F:02:54:58
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 08CD
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/a-_v7p4dOUtApGH2RqrIdZ8CVFg.roa
Signing time: Sun 07 Feb 2021 13:07:54 +0000
ROA not before: Sun 07 Feb 2021 13:07:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 61.58.41.128/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2253 (0x8cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 7 13:07:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6BEFEFEE9E1D394B40A461F646AAC8759F025458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:72:4f:33:02:bd:6d:29:a6:83:02:cc:aa:
18:1c:d3:1c:d8:74:8f:86:32:e4:e3:3d:68:2e:96:
04:e5:c6:b1:90:28:b5:fc:dd:d8:6e:6c:69:43:2b:
39:8a:e8:72:6e:d1:2e:9e:5c:4b:fb:b9:2f:d3:61:
86:eb:95:16:6a:37:54:53:48:21:3b:31:b6:78:9d:
9f:08:bf:1a:11:b2:06:3d:e6:55:8b:e4:32:cc:a1:
bd:7a:db:62:50:19:74:c7:0c:f1:56:18:51:2a:96:
93:b6:8a:c9:7a:e7:f0:83:6f:19:a1:88:87:bf:a8:
73:9b:c7:42:ce:db:90:02:87:b5:10:a9:94:aa:ed:
95:76:87:b9:04:9e:4c:f3:8b:cb:11:0a:1c:5c:dd:
92:f5:f8:1b:17:b4:0b:ff:e5:24:57:ee:57:e8:8a:
87:9d:31:36:98:67:2e:33:a3:af:60:c6:69:0a:64:
e6:36:90:ac:d3:36:55:ba:9e:35:8c:f7:77:41:78:
62:4e:84:c4:0c:cf:d2:9e:94:ab:15:f5:71:c0:e8:
54:65:91:c5:92:3e:83:f8:08:2e:f4:e0:bf:37:f0:
41:87:2c:88:cc:4f:14:ea:d6:2b:fb:4b:be:cf:30:
78:8e:be:f3:fa:25:71:bd:5b:d6:f5:2a:c8:76:f8:
21:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EF:EF:EE:9E:1D:39:4B:40:A4:61:F6:46:AA:C8:75:9F:02:54:58
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/a-_v7p4dOUtApGH2RqrIdZ8CVFg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.128/29
Signature Algorithm: sha256WithRSAEncryption
a6:42:b4:27:67:f6:2c:26:ab:93:bc:28:61:41:c2:ca:ad:60:
b8:5d:e0:92:7d:e0:98:a6:75:89:a2:3c:f4:83:d8:db:38:f7:
cf:95:de:30:88:e3:20:d2:06:a2:c8:55:47:c3:9f:53:83:f5:
57:bf:0d:9e:35:57:16:c7:31:82:47:3e:ee:15:fe:f1:19:f7:
fe:3f:53:cb:aa:df:b4:d2:76:7b:1a:99:91:a8:ac:ae:3c:c9:
85:ab:9e:36:50:6e:be:5d:cf:28:7f:67:01:e5:5c:20:06:0d:
6d:a7:6f:fc:e2:f7:63:f5:40:74:68:40:ff:2c:8b:40:d3:8f:
d5:ee:c1:32:d2:de:de:46:b9:bc:c4:7f:7c:75:b2:83:53:33:
a8:f1:d2:6b:70:bb:29:64:4b:db:ab:fa:1a:ef:7e:7d:95:07:
98:2b:53:e8:cd:ab:fc:cd:18:2a:1a:2d:fb:d0:d4:46:26:e9:
c4:65:ae:41:c6:aa:e7:bf:ac:25:5c:e0:cc:1f:f6:94:df:88:
1d:7b:10:e8:42:a6:2d:4b:84:42:ca:2c:50:3d:5f:11:fb:80:
40:2a:c3:23:9b:fa:fe:95:97:f8:b4:ca:12:ea:64:1c:44:74:
30:28:b2:ae:10:86:6f:77:ae:13:8d:e7:6f:3d:66:9f:0f:5d:
85:52:72:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org