Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/QcIkzw_r1Oq82kCUuF91OMgSwYI.roa
File: QcIkzw_r1Oq82kCUuF91OMgSwYI.roa (raw, json)
Hash identifier: llaZEA/1Xj7d6gqYXdUL1vANLITOm3rbH2Y+WuERGkE=
Subject key identifier: 41:C2:24:CF:0F:EB:D4:EA:BC:DA:40:94:B8:5F:75:38:C8:12:C1:82
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0A51
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/QcIkzw_r1Oq82kCUuF91OMgSwYI.roa
Signing time: Thu 15 Sep 2022 02:50:16 +0000
ROA not before: Thu 15 Sep 2022 02:50:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 61.60.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2641 (0xa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 15 02:50:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=41C224CF0FEBD4EABCDA4094B85F7538C812C182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:35:15:41:4d:cf:60:c7:df:e0:2a:33:0d:26:
84:28:fd:61:92:70:ee:10:d4:97:01:ff:8e:88:ea:
c2:3b:a9:02:bb:2b:3d:3d:42:2e:0b:48:a7:62:b3:
27:29:79:4d:89:4d:66:cf:64:e6:73:8d:27:5d:11:
db:46:4c:b1:1b:87:fa:4f:3b:b3:63:f0:4a:89:7a:
b7:6b:a0:d5:29:ec:86:cd:48:66:1f:92:84:39:99:
b9:70:59:47:07:49:29:87:50:a7:0c:b9:f9:e5:dd:
ab:6a:51:a7:90:a1:73:a9:5d:dc:bf:c4:ba:c3:b2:
c2:30:18:57:7b:c6:45:f0:a3:76:09:17:76:7a:9f:
cf:e6:ee:d0:9a:00:ac:13:ad:fe:41:ae:72:6a:73:
f0:55:f5:f2:40:67:73:e8:44:63:ea:ad:a6:88:b6:
48:4d:72:1a:cb:cc:59:03:a8:e5:f1:b0:1c:a7:dc:
75:ad:b1:45:4a:c7:d0:4e:39:69:5f:d6:26:f2:bc:
46:b6:2c:03:61:7d:06:45:fd:c0:e5:95:43:bd:50:
b0:23:1f:35:32:18:8e:c6:24:27:f0:58:20:32:88:
6d:db:8e:a2:f3:8f:79:42:5c:92:7c:fa:51:6a:14:
85:16:40:d8:8b:38:c6:55:60:1c:3b:73:36:6f:fa:
cb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C2:24:CF:0F:EB:D4:EA:BC:DA:40:94:B8:5F:75:38:C8:12:C1:82
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/QcIkzw_r1Oq82kCUuF91OMgSwYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.240.0/20
Signature Algorithm: sha256WithRSAEncryption
87:87:74:d3:ac:a6:83:f8:3a:61:be:c6:22:b8:3b:b3:76:a0:
d5:33:58:d7:11:be:6b:d9:57:59:11:6b:67:94:2d:0e:ab:52:
15:69:ef:26:02:41:f0:a9:4b:60:a9:9e:70:ce:97:06:c3:c1:
d4:b5:82:a2:50:9a:37:a9:c2:0c:31:8d:35:54:e9:bc:1a:37:
bb:c7:b0:84:c5:83:71:dd:a0:d5:f8:32:3f:81:ff:ea:ac:6f:
bf:3a:19:e3:bc:30:3b:f2:b2:ae:e0:71:d7:9d:03:b3:3a:d3:
6a:d2:b0:74:88:7e:1a:a9:3d:a5:be:bb:b8:05:c6:51:17:25:
79:cf:cd:a9:12:fa:ba:d4:35:51:33:b7:fa:20:8e:72:eb:ac:
a1:cb:da:9d:13:b1:65:bb:fd:b4:8c:16:30:20:7e:d5:a4:95:
56:9f:a0:c6:05:86:9d:fc:c6:51:86:cd:d2:6a:38:28:38:ef:
23:6f:7d:42:fa:13:ba:73:6b:c7:e8:01:59:5c:e6:58:92:d8:
9a:49:1f:8b:b3:9d:1a:12:32:4e:6c:0c:da:9c:95:f1:67:db:
0c:8b:7e:e6:23:c9:1c:01:79:75:06:43:ac:1a:71:fa:04:b6:
54:a6:c9:e6:ac:d5:8f:b6:85:4d:85:4e:93:80:84:00:59:e5:
12:a7:c4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org