Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/qAS5HPOKbVYzLmw8gYSj5i5jwv0.roa
File: qAS5HPOKbVYzLmw8gYSj5i5jwv0.roa (raw, json)
Hash identifier: L5xJaAejBPErug5UuipfNOTt9AaHJjaPgyszFqg9E1s=
Subject key identifier: A8:04:B9:1C:F3:8A:6D:56:33:2E:6C:3C:81:84:A3:E6:2E:63:C2:FD
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 08CB
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/qAS5HPOKbVYzLmw8gYSj5i5jwv0.roa
Signing time: Sun 07 Feb 2021 13:07:52 +0000
ROA not before: Sun 07 Feb 2021 13:07:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 61.58.34.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2251 (0x8cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 7 13:07:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A804B91CF38A6D56332E6C3C8184A3E62E63C2FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4b:b2:12:d5:0b:62:49:d6:37:01:90:87:f6:
84:a2:0f:4e:c7:00:be:0f:2d:9d:b5:83:5b:61:e4:
19:a7:e0:5a:91:8b:5b:eb:ef:e0:d3:0b:a1:fe:44:
a8:07:92:17:89:c5:2b:8b:12:e9:11:c7:59:e9:d2:
61:85:bc:a6:23:57:45:e0:02:ce:41:44:f8:38:e1:
d1:76:f0:89:46:99:80:a4:d0:72:2c:9f:cf:91:f0:
f3:55:13:6c:4f:99:2e:ae:75:0e:c2:2c:31:4f:44:
68:da:d0:6f:a7:ca:94:59:b1:e6:99:f5:2e:49:9b:
a9:72:92:00:d6:15:62:73:71:c8:27:3c:70:9d:24:
af:49:f7:5b:19:8f:6f:2e:ee:67:82:a7:9e:52:fe:
68:6d:69:aa:1e:30:01:a4:87:d3:ed:c6:f6:81:05:
fc:fe:1f:3c:23:91:8d:3f:6c:9f:e8:09:43:e1:bd:
71:90:03:3f:6a:28:de:2a:a3:69:c0:f1:07:2f:f5:
fa:44:0a:c5:4e:e1:ba:b3:1f:7e:3b:77:72:f1:6d:
e4:7a:68:56:bc:9a:ab:ec:a9:03:b9:dd:78:a8:78:
e7:75:ea:53:5c:13:f4:28:ea:ac:f8:7c:0a:04:3c:
12:a2:fc:b6:1e:31:ee:d6:8a:5e:b3:e6:eb:8b:5c:
35:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:04:B9:1C:F3:8A:6D:56:33:2E:6C:3C:81:84:A3:E6:2E:63:C2:FD
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/qAS5HPOKbVYzLmw8gYSj5i5jwv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.34.0/25
Signature Algorithm: sha256WithRSAEncryption
5e:bc:24:50:98:ee:1f:07:73:03:d8:98:d3:a6:2f:57:3c:57:
40:0f:3d:a7:fd:c7:cd:72:da:a2:3c:1e:71:a8:42:a5:97:0f:
99:62:c0:9b:7a:4a:c6:b5:9f:26:53:57:6d:ce:98:ff:55:fd:
be:d0:3f:68:63:28:1b:15:42:73:28:a7:15:0d:19:3e:94:b2:
4b:57:76:b2:d3:cc:97:1b:cf:f5:49:8a:13:67:5c:44:59:9c:
0e:dd:f8:87:95:ed:72:63:5a:8c:6f:73:01:41:e1:3d:09:68:
23:cf:ec:3e:e7:07:fb:2f:0b:60:32:83:37:21:b4:bf:2a:c9:
81:59:03:b6:7c:ec:aa:79:99:ff:b5:28:90:68:ed:4d:f1:39:
ce:f9:98:8a:ab:64:bd:5c:9e:ba:a4:3e:15:20:06:cd:f0:ed:
56:7a:e2:5c:52:cd:ac:1a:c7:8c:0b:ea:4b:53:3a:d6:13:f8:
2d:4d:92:16:18:42:8f:ae:40:eb:96:7e:ac:09:38:27:96:9f:
7d:f1:3e:33:9a:ae:65:57:d3:36:02:4e:86:15:9a:bd:29:4e:
30:5b:09:6b:61:89:92:68:8d:f3:9d:48:51:83:86:85:5e:0f:
94:36:6a:11:29:c4:14:74:32:1b:fc:db:fa:71:85:19:d8:59:
11:9b:8e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org