Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/2Ocvx8G3VTpzXml72KdYbF-145k.roa
File: 2Ocvx8G3VTpzXml72KdYbF-145k.roa (raw, json)
Hash identifier: AbXtAP14qW5j1pE1Uq6XOczEzTuBlfMDXrR5Q1gF0+g=
Subject key identifier: D8:E7:2F:C7:C1:B7:55:3A:73:5E:69:7B:D8:A7:58:6C:5F:B5:E3:99
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0963
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/2Ocvx8G3VTpzXml72KdYbF-145k.roa
Signing time: Wed 29 Sep 2021 02:52:38 +0000
ROA not before: Wed 29 Sep 2021 02:52:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.57.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2403 (0x963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 29 02:52:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D8E72FC7C1B7553A735E697BD8A7586C5FB5E399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:48:48:93:4f:36:09:f7:05:d0:df:1e:79:
b4:d1:89:75:ee:69:28:02:c9:b6:00:94:69:bc:f6:
d4:17:97:dd:eb:03:4a:86:11:e5:42:ee:48:86:8b:
26:b8:4c:08:ca:7e:1d:46:ca:f3:16:91:71:c3:9c:
8f:ba:6b:89:b5:d6:a7:b9:72:90:8e:e6:9f:7c:e1:
4a:ca:3b:ea:03:b4:1f:c8:6b:be:f1:72:ca:f2:ae:
42:d3:63:ef:ae:16:29:3e:d1:7e:85:bd:f2:98:ed:
78:d5:22:08:e0:87:da:fa:37:19:91:05:8f:c7:be:
5b:db:04:f7:7f:61:c5:bb:c8:cf:68:4a:50:af:84:
e3:37:db:39:04:3b:32:5b:2e:d4:bf:24:c0:fc:30:
e9:49:c2:9c:7c:d2:7a:85:4a:76:2f:32:da:53:e7:
93:b8:75:03:19:d2:02:46:04:50:98:6d:fd:16:d4:
0d:c1:22:99:bb:64:2d:e2:83:0f:92:bb:71:8d:6f:
64:be:57:87:c1:81:4d:ff:37:85:da:9e:7d:c0:5a:
12:f6:9f:f4:98:00:d7:b2:ef:be:d4:f4:71:e2:6c:
10:1a:a6:de:86:3a:59:b0:6f:54:4a:7c:81:31:1a:
41:a4:51:93:33:01:5b:13:8a:4a:b3:71:06:69:1e:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E7:2F:C7:C1:B7:55:3A:73:5E:69:7B:D8:A7:58:6C:5F:B5:E3:99
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/2Ocvx8G3VTpzXml72KdYbF-145k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.208.0/20
Signature Algorithm: sha256WithRSAEncryption
80:1c:76:57:73:84:35:b4:9f:2c:bf:ae:4b:d2:e7:96:b6:b5:
2f:1d:f1:03:95:14:d9:cb:9c:bb:3d:0f:97:75:37:f6:00:72:
95:ba:a0:1a:28:e8:ec:7e:39:df:6a:02:35:ff:fa:3b:30:e4:
6d:2c:61:44:2a:06:2e:be:ff:b4:dd:26:2a:41:2b:a9:22:71:
76:bc:53:20:e2:f3:5d:05:20:06:f7:8e:6f:61:cc:a5:66:d2:
2f:b5:ea:0c:73:e3:8c:be:b4:4e:ea:35:08:f1:d0:8f:e5:c4:
40:7f:d6:23:56:0c:e3:d3:02:53:d9:68:c3:e3:76:ee:d9:ff:
fa:2c:b0:f2:a0:47:e8:0c:e3:4c:f7:6c:cd:a4:36:24:07:72:
b1:d6:ac:d2:63:ad:b4:a8:65:86:ef:5c:75:4d:7c:98:36:c0:
16:ea:2b:ef:0c:3b:bc:9a:20:26:d1:8d:cf:cb:fd:c3:6f:b3:
c3:38:e6:c8:38:7b:47:1e:28:db:2f:1a:7a:d0:18:d5:1b:0b:
1e:b9:43:18:f4:da:52:0a:60:b4:89:29:1b:03:9c:91:df:da:
25:3e:2f:87:24:9c:39:bf:ad:43:65:d4:ea:53:70:7a:08:ba:
dd:c8:8b:62:1a:35:e4:bd:23:81:82:b1:1d:7b:8a:6d:05:9d:
5e:06:96:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:54 2025 by rpki-client