Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/KE-UrB45EO1hTwGVhf4nyDpxiUA.roa
File: KE-UrB45EO1hTwGVhf4nyDpxiUA.roa (raw, json)
Hash identifier: xhXJJl4sXebBw5x0fT/3H1at7H5hEw35SBXGsBNhNKQ=
Subject key identifier: 28:4F:94:AC:1E:39:10:ED:61:4F:01:95:85:FE:27:C8:3A:71:89:40
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 08B2
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/KE-UrB45EO1hTwGVhf4nyDpxiUA.roa
Signing time: Sun 07 Feb 2021 11:55:32 +0000
ROA not before: Sun 07 Feb 2021 11:55:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18411
IP address blocks: 61.56.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2226 (0x8b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Feb 7 11:55:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=284F94AC1E3910ED614F019585FE27C83A718940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:89:33:10:c9:75:42:c2:fd:ae:6f:58:66:30:
da:93:4c:0f:8f:39:d8:5b:54:0d:b4:7a:54:3c:44:
0e:c4:86:eb:53:cc:ef:b7:e0:ce:69:32:ec:8a:9a:
cf:65:30:bb:d8:49:44:d5:05:e4:dd:85:18:9f:5d:
0d:89:93:81:05:aa:15:80:4c:40:98:a2:4d:26:f8:
2a:20:51:44:68:01:07:80:4b:b4:0d:51:c8:15:3b:
2d:4b:a1:b7:47:71:67:e7:8f:59:bf:1a:a2:df:e8:
0e:8c:d8:6f:9e:5a:b8:17:1e:1e:5e:fc:ba:20:7c:
d0:2d:5c:68:a8:dd:c2:9d:90:b8:60:a8:66:c4:cf:
31:41:9e:d5:dc:ca:9d:7e:12:87:a9:69:4f:f4:c5:
19:4b:99:4b:35:a2:7b:3a:ac:05:4b:58:b4:06:82:
76:82:1e:37:9a:1f:0c:93:ae:0f:92:e5:51:a2:ec:
47:ae:19:d4:6f:09:2a:8b:68:c9:3d:fb:0e:8b:72:
a2:52:ba:04:25:43:7d:41:3b:f4:d3:17:56:ab:d6:
62:e8:a0:36:6a:1a:63:0a:39:63:80:34:18:f4:36:
a8:79:95:09:48:5f:ed:a7:e5:b6:12:b0:cc:68:99:
1b:34:89:97:d5:a3:df:62:cc:f8:d2:04:06:0b:0a:
f4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4F:94:AC:1E:39:10:ED:61:4F:01:95:85:FE:27:C8:3A:71:89:40
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/KE-UrB45EO1hTwGVhf4nyDpxiUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ce:fe:fc:13:f7:87:03:b5:47:91:b7:25:34:84:bf:f1:b8:f4:
3c:75:c2:f5:e9:e5:f2:24:b2:eb:0f:35:e3:39:4b:ec:73:26:
f7:11:53:c2:75:ea:45:58:7a:e7:02:fb:2d:d2:08:22:e4:cb:
86:13:9c:b6:7d:97:a9:6e:a0:84:07:1a:3d:b5:ff:fe:ed:7a:
5c:de:e3:8a:84:d7:20:9e:1b:07:ee:97:01:8e:9e:00:cf:77:
85:de:7c:13:4e:1d:b2:24:4c:88:77:5e:92:0d:61:84:99:72:
33:7d:cf:0c:b4:c0:7f:f9:91:4f:f7:d7:25:1d:80:08:77:2a:
ff:a7:ab:d9:2d:b6:07:09:4b:a7:91:a1:1b:fe:27:e9:0b:2c:
d6:8d:63:ac:2f:3f:c1:7e:95:b7:ca:fe:c1:3a:fb:0c:be:38:
11:2c:d3:6b:3c:cc:2d:6c:43:2f:58:44:ce:13:0e:76:30:31:
f8:38:2b:47:d1:62:41:b3:00:8f:37:e0:ab:8c:ad:e6:8d:7f:
dc:ad:17:89:25:45:5b:10:f5:1b:a1:e1:06:eb:ee:22:31:3f:
85:48:03:b1:7e:44:59:4d:79:b0:82:dc:b5:82:59:99:f5:3f:
59:9b:f0:08:49:ef:b8:6c:3e:59:f9:54:41:44:ad:ca:f0:68:
36:37:73:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org