Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/s4UWH4-Ury-Nz4NM6Dvlbkx--GM.roa
File: s4UWH4-Ury-Nz4NM6Dvlbkx--GM.roa (raw, json)
Hash identifier: G/1JSrSm+Pi3E2KElVpOgxgNM5DlblMpFDs4uyVRNBg=
Subject key identifier: B3:85:16:1F:8F:94:AF:2F:8D:CF:83:4C:E8:3B:E5:6E:4C:7E:F8:63
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 097A
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/s4UWH4-Ury-Nz4NM6Dvlbkx--GM.roa
Signing time: Wed 29 Sep 2021 02:53:07 +0000
ROA not before: Wed 29 Sep 2021 02:53:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3949
IP address blocks: 61.58.41.176/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2426 (0x97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 29 02:53:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B385161F8F94AF2F8DCF834CE83BE56E4C7EF863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:dd:a4:5f:89:c0:e8:27:72:35:6a:c5:19:74:
d0:7d:0e:eb:df:07:11:e6:fd:0d:42:87:86:e8:9e:
c2:4b:b3:16:47:b1:1d:09:c6:ef:fe:cc:96:66:7d:
2c:fb:81:ba:2f:cc:b9:fe:6b:fe:bc:8e:6c:65:01:
6a:18:8a:97:f4:1d:5e:d1:8f:a8:57:b9:27:ce:d0:
35:f5:cc:74:db:3d:dc:f5:c8:84:b7:69:e9:49:e3:
8b:67:4a:a9:f5:ec:e4:24:61:ac:21:cf:d2:1c:ae:
f4:1d:ba:04:c6:c1:4d:43:48:6e:aa:cd:ea:24:4c:
5c:df:04:0e:11:34:77:41:ff:f8:dd:72:10:ed:fd:
d0:6d:b4:6a:93:bf:9f:6c:00:64:d8:99:5a:a5:de:
88:9a:bd:4e:69:e4:25:14:97:23:30:01:af:79:a1:
8a:18:88:8c:5c:3e:09:56:14:3c:8e:23:8e:a5:21:
bd:18:fb:50:03:1f:86:76:3b:d9:4a:37:cb:52:72:
4f:b8:b7:77:0d:fd:18:96:58:4e:aa:1c:59:20:81:
06:e7:a1:bb:39:61:25:4a:dc:82:5a:92:d0:7f:4c:
24:ed:7e:54:a1:a1:f3:3d:5c:b5:50:23:20:fd:20:
1d:f1:ed:df:52:b1:f6:5f:a3:60:46:be:05:1f:49:
ae:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:85:16:1F:8F:94:AF:2F:8D:CF:83:4C:E8:3B:E5:6E:4C:7E:F8:63
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/s4UWH4-Ury-Nz4NM6Dvlbkx--GM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.176/28
Signature Algorithm: sha256WithRSAEncryption
45:bb:22:d1:51:fb:23:eb:c7:88:e1:28:9d:45:e3:06:57:1c:
8f:f0:77:36:87:83:08:68:27:7f:be:8d:8d:72:c1:22:0c:e2:
81:c9:e2:9d:47:62:bb:2d:80:ba:02:4d:1f:44:8e:20:ad:e3:
10:8c:ce:52:31:cf:f5:f5:43:a6:2d:1e:49:c4:fc:59:6f:f1:
ae:2f:1b:67:86:4e:cc:44:18:9a:a2:53:d0:ed:8d:8f:4a:4b:
e0:15:63:a8:c1:a1:95:1c:fd:d3:7d:4e:a0:81:3f:dd:55:bf:
85:81:83:fe:39:a3:e0:89:71:11:a8:e7:95:b2:7c:4a:b2:d2:
0c:52:ea:c9:35:b1:92:68:15:6d:13:a1:eb:30:f2:e4:ce:20:
34:30:3c:ee:92:ce:61:1a:58:4f:a4:2d:67:38:34:16:ff:b6:
9d:ea:26:51:81:97:28:fd:40:04:2f:74:5b:9a:c1:20:df:6b:
a9:bf:cb:6d:52:97:04:21:33:1d:a3:a5:f9:82:e6:63:3b:c0:
6b:b5:74:7a:16:a7:13:f6:db:84:f1:7a:65:f6:02:51:4f:f7:
68:9d:13:66:ac:52:6d:28:56:56:09:88:b3:a1:9f:b5:d0:28:
9d:45:8e:46:dd:8c:14:60:9d:47:f4:72:20:f1:05:0c:4f:ae:
7b:6e:56:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org