Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/D2IKOSCq9lRK3ykBf6c0XsBtITE.roa
File: D2IKOSCq9lRK3ykBf6c0XsBtITE.roa (raw, json)
Hash identifier: 2k/GfoYAvxiQbiZueGLEEZDiXLUFipEtHi/ItaiesZY=
Subject key identifier: 0F:62:0A:39:20:AA:F6:54:4A:DF:29:01:7F:A7:34:5E:C0:6D:21:31
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 095B
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/D2IKOSCq9lRK3ykBf6c0XsBtITE.roa
Signing time: Wed 29 Sep 2021 02:42:39 +0000
ROA not before: Wed 29 Sep 2021 02:42:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18411
IP address blocks: 61.56.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2395 (0x95b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 29 02:42:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0F620A3920AAF6544ADF29017FA7345EC06D2131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:4f:bd:94:bb:8e:15:f7:a5:76:d6:8e:ae:
ac:9e:dc:1d:32:c4:50:13:b9:ea:7b:98:66:ca:a6:
e8:5c:94:59:c5:90:0a:0b:f1:b1:a6:a4:de:e3:63:
8e:55:02:51:4a:63:3e:2f:74:9a:8a:c5:ec:36:32:
4a:d7:b4:b0:d7:e0:9b:96:4e:12:2d:52:29:5c:30:
20:1c:41:53:14:d8:47:6a:da:e3:4c:8c:40:d1:3b:
e9:a6:51:c7:dc:43:e9:1c:97:49:4f:33:22:22:a1:
c0:3c:0c:c0:44:b8:2b:2d:9b:5a:a4:b4:05:f7:2e:
3e:7f:f4:6c:af:3d:a0:86:7c:21:8e:50:1e:b8:dd:
3c:cf:c1:2f:f4:bf:01:6f:61:bc:82:a6:e1:df:96:
02:0d:6b:2d:db:54:98:14:26:dd:96:34:37:10:89:
ca:71:76:c6:cc:b0:25:1e:16:5b:ac:23:ca:76:be:
a0:6e:7d:94:e6:66:c3:42:29:99:a0:2c:4d:71:46:
49:be:d1:f5:d0:37:61:d2:33:cf:05:07:16:28:e2:
3e:67:a2:20:a6:1a:4c:2b:5a:8a:b6:f1:4d:6c:14:
a3:b6:25:d3:55:33:7e:8d:5c:9b:c6:96:ff:be:ae:
8a:29:3d:89:eb:19:5a:3e:35:ed:8f:ce:b4:fe:c2:
6f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:62:0A:39:20:AA:F6:54:4A:DF:29:01:7F:A7:34:5E:C0:6D:21:31
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/D2IKOSCq9lRK3ykBf6c0XsBtITE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:20:c3:a6:df:c8:61:6c:0d:99:80:15:02:aa:49:fd:90:6d:
3e:82:52:11:54:40:95:5b:cf:a2:52:c6:98:c5:13:69:52:56:
46:22:eb:c5:97:06:07:c1:0c:0d:38:a1:89:88:8a:e8:0b:2c:
21:d4:97:ae:9c:63:df:88:33:5d:69:20:92:2d:9e:13:79:e9:
a0:d2:41:bd:7c:7a:0b:41:26:ab:ce:14:6e:b5:1a:b6:90:ae:
1c:aa:ac:7a:2e:7a:f3:97:15:68:5b:98:88:05:31:8e:ab:89:
9f:a6:74:3f:d6:c2:67:fc:88:8e:e9:5b:0a:17:fa:f0:74:53:
a9:7b:a0:97:18:37:ae:45:1f:ad:f3:c3:1b:7a:13:c8:e6:ef:
87:d2:dc:24:5a:3e:24:cf:a2:e2:43:30:b6:d2:46:3d:19:11:
3b:ab:df:85:09:6d:a0:02:e7:a0:ee:92:ad:e6:41:eb:04:9e:
2b:8c:dd:13:b7:ed:d7:9a:b5:15:71:2e:de:ac:5d:5a:7e:59:
a0:66:b7:dc:3e:75:bb:92:c4:72:72:b7:48:41:14:99:db:9a:
65:1a:67:5a:8a:c2:6c:3a:db:00:73:fa:8b:da:75:61:78:54:
cb:1f:f7:3d:c8:e9:bd:53:c5:6a:5e:7a:76:a7:d3:bc:bf:41:
5b:37:38:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org