Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/IiraxlfizmG6xDKGGPp11RL0OLs.roa
File: IiraxlfizmG6xDKGGPp11RL0OLs.roa (raw, json)
Hash identifier: dAg4ZUNxOj3M/Fk/8VW88Gr8pKFxMx69dwIK0h1iVaY=
Subject key identifier: 22:2A:DA:C6:57:E2:CE:61:BA:C4:32:86:18:FA:75:D5:12:F4:38:BB
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0B4A
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/IiraxlfizmG6xDKGGPp11RL0OLs.roa
Signing time: Fri 01 Sep 2023 08:48:47 +0000
ROA not before: Fri 01 Sep 2023 08:48:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18411
IP address blocks: 61.56.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2890 (0xb4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 1 08:48:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=222ADAC657E2CE61BAC4328618FA75D512F438BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ed:c8:f5:4b:b6:85:b4:1f:f4:9a:06:47:88:
83:eb:17:b0:41:3c:41:4d:76:08:36:b4:86:ec:94:
6f:f6:8a:23:10:93:35:ee:1b:a8:00:55:a0:34:22:
e8:a3:4b:75:3c:ce:44:ea:eb:a2:aa:44:c9:6c:3a:
b2:43:cd:2c:f6:82:61:fd:26:7d:77:94:2b:92:b8:
c2:da:0a:be:24:68:f7:b4:67:bb:57:99:4c:af:e3:
14:17:e5:20:e0:e8:3c:a7:d1:95:7c:0f:e8:38:70:
2c:85:a9:ed:0d:44:a3:9f:fe:39:f7:f6:14:d9:c9:
27:49:fd:7f:cc:cb:90:f6:b8:77:bc:f3:f9:3f:65:
28:b1:26:ba:4e:34:99:d9:69:9e:b0:3b:80:4d:63:
b2:41:30:c6:df:58:25:5d:33:7b:07:87:11:35:21:
b9:b0:ba:c4:94:0d:ce:99:df:49:1e:03:f3:65:b8:
c3:dd:e1:35:f8:9f:76:b5:6a:6d:22:da:f3:d9:8d:
3a:ba:51:3c:65:76:2a:6e:cb:4f:f3:b4:c7:00:c8:
11:7a:e0:6b:8a:e7:58:fc:d5:14:f3:11:c8:d7:0c:
35:97:97:c0:59:2b:bd:5c:8c:3e:cd:b6:dc:0a:4b:
fa:dc:63:c6:d1:0d:4f:f1:b5:da:3c:4a:0a:5a:38:
f6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2A:DA:C6:57:E2:CE:61:BA:C4:32:86:18:FA:75:D5:12:F4:38:BB
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/IiraxlfizmG6xDKGGPp11RL0OLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.25.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:24:9f:86:05:20:9a:3e:27:e3:d2:84:54:31:8a:a4:0b:f3:
25:8f:81:cc:c8:8a:1c:d9:98:57:c5:7c:6a:2c:bb:eb:ab:fd:
1e:c5:2f:50:70:9c:fa:37:fb:87:a9:22:7d:a0:c0:50:b0:d8:
04:63:04:a9:ae:b2:c7:60:4b:cc:ad:00:d8:b0:3c:b3:ab:d7:
f7:77:e5:26:88:67:ae:0a:fc:30:96:c2:c3:cf:88:17:df:99:
94:fe:c6:04:50:34:ae:3b:2d:17:4d:d2:4d:56:c7:9f:d8:c4:
08:0c:55:8b:e5:1c:c8:33:ac:8d:a1:de:a7:5a:60:4c:33:72:
31:2a:67:31:61:8f:0f:5c:45:3c:61:77:14:9b:f8:c1:ca:6b:
53:38:e7:8f:81:50:9c:02:53:54:ea:8a:4e:83:38:d3:5f:39:
26:37:00:d4:47:51:0c:3f:f5:4d:cf:bd:3a:5f:07:1b:31:4f:
1b:67:bc:e1:b9:8a:94:4b:59:f7:fd:52:0d:39:f6:26:d5:5e:
22:9f:fd:0b:2e:c0:b6:01:13:ad:18:5a:42:7e:ef:b5:d9:bd:
73:02:92:6d:e4:df:b7:31:93:75:30:f4:4c:76:25:87:c8:dd:
31:03:3b:e6:0a:99:45:ef:ed:d7:77:85:ea:b6:90:a0:09:2c:
3c:56:77:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:48 2025 by rpki-client