Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/WYTjZBCzzuMHQVmlX2xazoBrY0Q.roa
File: WYTjZBCzzuMHQVmlX2xazoBrY0Q.roa (raw, json)
Hash identifier: 2Fc6B5srbSBhIfE2fiLbOANtshrap4bD0cZyUSADUkI=
Subject key identifier: 59:84:E3:64:10:B3:CE:E3:07:41:59:A5:5F:6C:5A:CE:80:6B:63:44
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 08B6
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/WYTjZBCzzuMHQVmlX2xazoBrY0Q.roa
Signing time: Sun 07 Feb 2021 12:40:42 +0000
ROA not before: Sun 07 Feb 2021 12:40:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18411
IP address blocks: 61.56.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2230 (0x8b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Feb 7 12:40:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5984E36410B3CEE3074159A55F6C5ACE806B6344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:69:87:16:f6:c8:d3:99:eb:28:4e:7f:df:32:
65:71:4a:bb:51:dc:d7:ac:8a:72:84:81:91:80:80:
ee:ea:d8:34:64:20:e1:06:39:1c:27:7d:4b:d1:ab:
df:60:4f:9b:70:cf:ac:bf:07:9f:ba:62:4d:cb:a7:
95:99:59:4c:c2:c0:d5:9a:9e:49:ae:90:d2:07:f8:
b2:4c:0c:02:62:45:76:1b:e2:0e:e9:03:4c:51:f5:
66:fc:d6:d6:30:b2:a0:3b:ca:9c:7f:9c:92:b9:2e:
8a:b3:f8:80:b1:a6:58:1b:24:2b:35:e4:36:33:7d:
54:e4:22:37:ce:b8:03:91:bd:82:f5:fa:40:0a:ed:
20:89:64:81:e0:bc:78:d4:5d:37:b0:61:76:43:a2:
bc:8b:7b:d2:23:66:e5:c7:80:de:c0:d5:09:c1:24:
83:88:27:25:ee:8a:e4:a4:0d:9a:34:e9:69:44:b2:
50:dd:a7:b4:6a:53:ca:86:3d:91:a2:8b:b8:67:a6:
66:30:c0:f6:a7:67:63:4c:77:2f:e5:b9:cc:49:27:
6a:3a:b8:bc:6b:6e:37:9a:37:8c:e8:e6:f4:d5:b3:
eb:73:a5:16:34:7a:1b:b9:2b:2d:59:c6:ff:34:0a:
fd:5a:8e:a0:1e:53:d6:60:74:28:bf:42:8d:45:53:
2b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:84:E3:64:10:B3:CE:E3:07:41:59:A5:5F:6C:5A:CE:80:6B:63:44
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/WYTjZBCzzuMHQVmlX2xazoBrY0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.25.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:4f:05:ba:9b:47:ee:97:06:1b:6a:8a:89:66:f9:07:4b:29:
d4:3e:8e:71:aa:02:c6:a1:47:ab:91:b3:87:39:c6:78:f1:96:
9b:f6:ad:62:da:ff:60:35:7d:29:05:fc:63:4e:88:0b:95:80:
dd:e1:37:16:1e:55:60:18:eb:71:dd:31:eb:be:0f:c3:4e:7e:
72:6f:f2:60:72:1d:6f:2c:04:9a:2f:f4:d2:ec:39:3a:15:e9:
8e:92:a1:76:eb:e4:dd:43:61:e3:71:6d:9c:65:72:24:81:cd:
8c:cf:0a:e0:c6:74:d6:30:c2:69:b7:01:ad:21:ed:8d:6c:f8:
f0:de:cf:dd:4b:b8:54:af:6c:c5:dc:10:62:4c:86:21:00:46:
a4:91:93:71:04:53:1a:79:00:90:ba:d5:9d:ef:44:da:6f:0a:
dd:ab:58:28:9e:5e:0c:4c:4c:38:89:cd:72:7c:d1:3e:6f:a2:
c1:28:ef:85:d3:05:38:15:d3:d6:30:5e:c1:bc:50:3d:e6:37:
e1:70:f1:ae:86:90:c2:8d:ea:31:68:72:fb:a1:74:99:18:90:
b6:14:67:36:d3:f3:31:0d:3b:10:9e:81:d4:1e:42:07:9c:a2:
5d:b7:ef:eb:14:b0:e5:8f:25:5b:45:f3:98:0c:8e:74:53:2b:
60:11:ff:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org