Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/UAd0z3dLKsKfD6rQs2W7fJg-CUU.roa
File: UAd0z3dLKsKfD6rQs2W7fJg-CUU.roa (raw, json)
Hash identifier: 1NbuP/5tbNL2xcfCU8Zb6TN6StKTKSQYChJJkx+qewc=
Subject key identifier: 50:07:74:CF:77:4B:2A:C2:9F:0F:AA:D0:B3:65:BB:7C:98:3E:09:45
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 095C
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/UAd0z3dLKsKfD6rQs2W7fJg-CUU.roa
Signing time: Wed 29 Sep 2021 02:42:39 +0000
ROA not before: Wed 29 Sep 2021 02:42:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18411
IP address blocks: 61.56.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2396 (0x95c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 29 02:42:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=500774CF774B2AC29F0FAAD0B365BB7C983E0945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:09:27:8a:4e:ab:17:c0:c7:fc:96:0d:f0:c6:
8b:87:99:85:9d:99:8a:ae:1f:42:e9:d7:8e:b2:6a:
6c:76:66:3d:44:ef:e2:56:c6:6d:b0:0c:04:a0:da:
2d:18:dc:23:f7:5b:a2:a7:d5:95:0b:79:a9:da:82:
43:af:fd:c9:72:1d:a8:57:79:c1:6d:2d:3e:cf:3f:
88:40:0c:11:21:df:81:97:30:cd:b2:16:97:f0:f7:
d0:15:a6:32:79:b9:f6:76:b7:50:b7:dd:cb:ef:38:
8d:59:ff:bf:41:76:bb:72:6f:27:8b:40:52:4b:89:
96:4b:fc:70:ad:81:d2:b1:d2:39:84:eb:5e:e2:66:
cd:06:3c:a5:98:3c:42:94:ff:60:53:28:50:23:d0:
3e:bb:f8:6b:3c:4e:fa:f9:be:f4:45:a2:58:fd:33:
81:e2:94:c7:f9:0a:23:02:ea:70:df:14:f1:6a:30:
06:02:c3:be:3f:be:51:43:5e:ce:ba:69:95:d9:2a:
47:a3:04:7a:07:50:e7:7f:9d:d0:df:28:96:03:16:
c9:7d:05:aa:60:19:8f:cc:5a:72:0f:26:67:2b:38:
f7:29:b1:7b:49:08:f3:da:b1:da:3b:ff:a4:49:de:
5a:47:06:c5:a1:92:f1:5a:53:e9:58:01:36:71:6a:
15:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:07:74:CF:77:4B:2A:C2:9F:0F:AA:D0:B3:65:BB:7C:98:3E:09:45
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/UAd0z3dLKsKfD6rQs2W7fJg-CUU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.24.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:fc:dc:90:b6:52:d3:3e:75:8b:7f:6c:ea:84:cf:94:cf:83:
95:78:81:0e:66:f6:6b:08:70:4a:ca:c7:cd:51:f9:22:7f:64:
10:c5:39:9f:d4:c6:35:d4:8f:89:39:7e:65:4d:56:da:6a:1b:
c3:f9:4c:b7:91:97:f9:d1:e6:1a:e4:1e:3e:86:fc:93:8c:3d:
3e:78:d8:87:80:2a:5b:38:5e:76:14:96:89:6d:c9:86:59:7f:
41:35:2d:5b:fc:4b:a0:a7:e8:45:8f:8c:f7:0e:bc:11:bb:b1:
d6:55:31:59:c8:44:34:81:48:31:b6:91:7b:66:7a:3c:29:f4:
a4:5e:00:06:95:c0:0e:de:fe:2a:67:71:68:4e:ab:f3:c5:0b:
60:3a:e1:28:c0:9f:4c:3a:9e:01:f7:32:50:d9:57:3d:0d:9c:
c7:8a:cc:50:bd:03:f1:fb:c7:9c:ec:53:a7:fc:a8:11:fd:d1:
fb:d7:f4:7c:89:74:06:fd:80:69:e5:47:21:50:b7:57:ad:90:
c6:30:a3:4c:3e:64:13:cf:bd:80:ce:43:c5:5c:4c:86:ac:50:
92:c5:a1:18:2c:73:a1:19:29:54:ed:7f:c0:e1:16:4a:06:79:
43:66:b6:e1:d8:77:6a:f7:8e:fc:e6:c4:f7:7b:2f:3f:a3:88:
fa:db:5b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:22 2025 by rpki-client