Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/u_B57Csvt09XC-ebXT07xuUtpoo.roa
File: u_B57Csvt09XC-ebXT07xuUtpoo.roa (raw, json)
Hash identifier: FrRQE4y35ebr2+rWeJEdfFjAzxQgNvCq9JviOn/ZufM=
Subject key identifier: BB:F0:79:EC:2B:2F:B7:4F:57:0B:E7:9B:5D:3D:3B:C6:E5:2D:A6:8A
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0884
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/u_B57Csvt09XC-ebXT07xuUtpoo.roa
Signing time: Wed 02 Dec 2020 02:26:25 +0000
ROA not before: Wed 02 Dec 2020 02:26:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 61.58.41.128/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2180 (0x884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Dec 2 02:26:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BBF079EC2B2FB74F570BE79B5D3D3BC6E52DA68A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8b:a9:0b:43:3a:28:fe:38:d2:1f:14:73:f9:
37:6a:7d:07:e2:21:04:f0:28:b0:5f:ed:0d:ae:67:
2a:0c:d0:f1:3c:2e:cb:59:f0:2e:44:38:bb:4e:cc:
45:3b:1e:0d:33:b9:03:65:10:86:25:c2:0a:e4:a0:
cf:13:b6:2a:3d:dd:33:c7:e8:9a:12:a6:41:e4:8f:
3e:df:af:41:fb:44:0d:53:b6:db:f9:46:bf:71:96:
ec:ee:a9:57:d5:8b:06:7e:8f:4f:ff:10:a4:6a:d2:
58:ff:fb:e9:89:66:b6:27:5c:0e:03:0d:13:e1:fa:
41:db:36:67:16:8a:2a:8c:df:08:e5:4d:32:ea:86:
4e:4f:5f:2f:77:15:46:e5:a0:73:17:b9:99:70:ad:
f6:ec:65:02:66:76:04:74:4e:18:c4:80:d3:00:09:
22:22:28:d2:e4:20:45:72:94:a4:c2:9e:ae:6f:32:
16:e3:b1:73:47:37:1b:91:48:08:5e:ea:64:12:09:
8b:6e:05:da:87:51:3b:4a:3b:5a:ce:e8:b0:fb:40:
7b:97:11:72:7d:94:59:cb:91:55:25:ac:2b:0b:12:
3e:1b:30:0f:ab:14:29:77:b1:b6:82:bd:a1:27:5e:
4f:8d:26:75:2b:ab:c5:be:1c:c9:b1:7f:45:70:bb:
f1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F0:79:EC:2B:2F:B7:4F:57:0B:E7:9B:5D:3D:3B:C6:E5:2D:A6:8A
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/u_B57Csvt09XC-ebXT07xuUtpoo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.128/29
Signature Algorithm: sha256WithRSAEncryption
3a:30:f8:c4:1b:9f:a4:f1:21:95:03:88:21:53:1a:41:c3:c3:
66:a0:5c:ae:05:ca:9f:9a:2e:4f:89:d3:ce:d3:b8:41:36:52:
f9:de:2f:70:44:78:00:e4:53:71:22:40:41:9d:6c:a8:fd:2f:
41:ef:ba:f4:06:e3:e7:63:1e:a9:68:5f:5d:ae:d5:50:0e:d9:
54:d9:c6:00:90:81:b2:f2:55:40:e2:77:02:e9:3b:24:2a:16:
e2:ca:15:55:80:e9:f0:7f:db:69:17:76:4e:f1:b2:77:5e:b7:
e2:20:bf:a9:e7:3f:21:38:bf:1d:5d:d3:e2:2e:e5:e5:2f:6b:
a7:16:39:97:5f:64:8c:38:25:0f:eb:f8:e0:34:a9:de:0f:d3:
88:16:ae:11:1b:07:cd:61:19:b3:6f:de:3c:e0:17:fe:56:52:
67:29:78:b1:98:c6:71:87:83:0b:69:cf:d9:da:2c:1f:d1:60:
97:d5:f6:5f:ab:d4:26:39:4f:39:38:28:71:3b:06:f6:96:e6:
fd:5c:dc:c5:8a:a4:e8:24:9e:66:e1:b3:9c:4c:b6:f7:3b:9d:
ad:51:b1:c3:b6:df:3b:09:e6:56:12:8b:25:66:a1:a7:05:03:
14:81:21:d7:59:d9:d5:91:b5:77:56:ff:bc:04:c6:4b:47:c9:
10:68:77:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org