Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/7lDVhRh1Lhhm_PUMgTrb5C1707o.roa
File: 7lDVhRh1Lhhm_PUMgTrb5C1707o.roa (raw, json)
Hash identifier: YcZwVNR/PAC9Ato8+m1GpSRGi+VIgU6CrFM0wRvaQoQ=
Subject key identifier: EE:50:D5:85:18:75:2E:18:66:FC:F5:0C:81:3A:DB:E4:2D:7B:D3:BA
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0A51
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/7lDVhRh1Lhhm_PUMgTrb5C1707o.roa
Signing time: Thu 15 Sep 2022 02:50:16 +0000
ROA not before: Thu 15 Sep 2022 02:50:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 61.57.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2641 (0xa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 15 02:50:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EE50D58518752E1866FCF50C813ADBE42D7BD3BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:16:3d:48:96:6b:f7:e2:e3:7d:32:3c:fa:c7:
cb:3d:ff:ad:5b:e6:4e:bb:49:74:ef:a2:d2:b4:da:
a0:46:cf:bd:2c:9a:b6:ef:d8:e5:8f:d2:61:28:2f:
47:db:ff:3c:d2:cc:ae:e0:19:f3:06:4b:5f:fc:7f:
41:5e:1d:f9:92:25:96:34:aa:dc:6a:85:de:27:90:
83:43:c4:fa:f2:a5:6a:72:85:df:30:f1:92:b7:99:
ed:7e:a7:9e:91:c8:17:67:1c:8d:df:d3:95:e1:08:
77:55:f8:2b:9c:05:5f:14:9b:c9:d5:75:a2:8c:2b:
d2:4d:21:61:50:25:26:95:3a:fd:2c:5d:73:e6:be:
30:ef:b9:87:64:ca:a5:dd:88:ac:ef:f5:d0:7e:c7:
10:ba:8d:78:1d:a5:60:5c:a2:ac:58:53:a1:fa:43:
1a:84:9b:36:4e:82:e2:fd:b1:61:82:6f:38:eb:2b:
27:da:b7:16:05:d7:77:5a:00:83:6d:ae:dc:20:d5:
be:83:9e:dd:34:bf:65:c4:91:9e:c4:57:45:73:8e:
d6:d0:87:34:98:b6:7d:fd:7e:76:6e:9e:d8:25:7d:
d5:3b:b4:34:9b:79:a2:65:d5:f3:92:c9:68:3b:df:
a1:24:9c:32:ff:96:34:0a:b4:d9:c5:fa:4e:f9:9c:
f5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:50:D5:85:18:75:2E:18:66:FC:F5:0C:81:3A:DB:E4:2D:7B:D3:BA
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/7lDVhRh1Lhhm_PUMgTrb5C1707o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.208.0/20
Signature Algorithm: sha256WithRSAEncryption
be:b2:02:f1:36:83:26:b1:2c:8f:84:f7:f3:cc:66:72:06:e7:
b2:f9:be:a0:f5:9a:19:33:a7:88:e4:d3:58:35:a8:22:ad:df:
5b:71:47:3f:17:3e:47:98:3b:fe:a9:bf:2a:e8:20:2d:a1:62:
91:88:92:2c:c1:6d:ff:9d:2e:83:a7:9a:1a:68:ec:12:8f:a4:
27:f0:ee:22:30:08:7c:0a:0d:88:9e:dc:f9:b8:08:83:25:d0:
9e:c6:da:94:03:dd:83:de:e6:aa:f9:73:6d:10:3a:c7:25:94:
94:7e:e3:10:ae:2c:39:0b:a5:2e:3d:a4:45:88:c5:e4:5c:f4:
63:6e:67:fe:38:25:69:fa:67:92:47:c7:ab:5b:cf:4d:3a:22:
45:7b:50:8d:38:f4:18:62:61:50:11:da:de:8e:20:f6:8f:2d:
d3:70:79:3b:52:bb:5b:3d:73:f0:05:24:76:e6:88:d0:ef:b9:
92:1c:58:e9:9c:4e:5c:16:8c:fd:7a:34:07:6d:09:bc:e3:68:
46:ab:ed:48:a6:3d:2b:01:cf:f2:d5:25:cc:ed:3c:84:18:2a:
10:a8:e3:64:f1:ff:1e:21:eb:5f:a7:ac:d1:89:78:10:1e:94:
b2:f5:04:26:11:94:07:b6:0f:d4:ff:ac:75:20:9c:f8:65:a9:
5c:c6:9a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:55 2025 by rpki-client