Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/Z-Dxb7xFGCd7uQ7lCMomnaO-QjQ.roa
File: Z-Dxb7xFGCd7uQ7lCMomnaO-QjQ.roa (raw, json)
Hash identifier: anG4oUQKG0WKtYPGEeJP4gSWNbgNM/tMGhaAoIbcmpk=
Subject key identifier: 67:E0:F1:6F:BC:45:18:27:7B:B9:0E:E5:08:CA:26:9D:A3:BE:42:34
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0A49
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/Z-Dxb7xFGCd7uQ7lCMomnaO-QjQ.roa
Signing time: Thu 15 Sep 2022 02:42:00 +0000
ROA not before: Thu 15 Sep 2022 02:42:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18411
IP address blocks: 61.56.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 15 02:42:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=67E0F16FBC4518277BB90EE508CA269DA3BE4234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2a:e7:96:46:6b:a6:93:9d:db:d9:01:c0:64:
e2:59:19:49:2a:41:08:61:f1:b4:da:8b:6a:74:5c:
4f:6a:4b:5b:91:ae:28:41:5d:dd:b2:51:6e:c5:1e:
db:ec:11:7c:d2:30:20:1e:b8:37:e3:93:bc:27:07:
4c:3d:b4:92:6a:45:94:ca:64:2c:4e:f4:55:36:bd:
39:79:1b:43:ea:ca:5f:51:52:37:9e:f1:80:9b:f5:
9e:c0:a5:82:9f:4a:85:05:2c:5c:61:c7:ea:59:16:
30:34:e6:eb:fb:60:b1:3d:aa:fb:40:6a:0e:14:de:
6b:b0:c8:b3:3f:4f:7a:b0:b4:8b:a4:98:a5:e6:d4:
85:4b:4e:ec:da:c9:d9:c5:02:f7:b7:87:d8:8c:0a:
59:0d:0b:63:a8:e2:c2:00:74:91:c0:07:5b:c0:63:
76:9e:9b:d9:50:50:b5:bb:84:94:97:87:c5:8b:37:
5c:b9:5d:89:d2:99:b8:60:41:c3:63:2a:92:1b:fb:
72:51:e6:2c:f9:f6:d8:32:d3:f0:6d:6e:43:79:f7:
3d:83:8d:f9:a8:47:25:28:e8:ab:cf:ba:c4:01:bc:
58:81:d3:4c:00:92:83:ff:c8:69:96:a0:9f:e3:5f:
68:77:91:c2:3b:0f:8d:48:86:56:f0:d0:d7:89:57:
97:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E0:F1:6F:BC:45:18:27:7B:B9:0E:E5:08:CA:26:9D:A3:BE:42:34
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/Z-Dxb7xFGCd7uQ7lCMomnaO-QjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.25.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:7a:79:cb:f6:ab:21:3c:f1:44:30:4d:95:be:6d:b2:d9:bb:
a7:46:73:07:5e:9e:c5:6c:df:76:9d:ed:92:b0:7d:01:19:9c:
59:51:7b:6d:14:da:4b:fc:93:b8:41:e0:7b:4a:fd:b6:8b:50:
38:ed:24:83:2d:46:9f:3d:00:78:3b:04:d0:cd:5e:f9:da:01:
77:ef:62:53:61:a9:50:f4:5e:95:65:a7:cd:63:e6:6a:48:86:
1b:4c:e9:14:78:3c:44:93:8f:f6:d0:96:3b:28:5c:60:42:23:
63:50:65:c4:a0:b8:69:23:f0:a1:0a:57:08:1c:fd:8b:0d:a2:
d3:98:f3:bf:41:c7:bf:bd:6b:c5:e4:82:87:ad:87:85:e8:cf:
dd:dc:a8:98:e2:ed:6a:25:9d:1a:d1:c4:75:8e:7f:ed:0c:c1:
bd:c5:d9:95:48:22:98:7b:df:e1:a6:0f:db:b6:77:f8:8a:a3:
80:8b:6a:72:15:48:4b:88:42:df:bf:01:2b:61:ce:bc:74:72:
dd:47:ec:78:97:49:6f:08:77:83:c4:e2:1c:99:32:cd:37:a8:
80:7b:fe:41:27:b9:18:b9:56:66:71:f5:b8:e9:83:09:a8:7f:
b5:36:f7:7d:1c:ee:fb:13:bf:42:5c:30:62:a1:0f:45:49:ec:
72:a6:40:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org