Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/kOnTauzL-AgiCzg6cpOGMT6lMXo.roa
File: kOnTauzL-AgiCzg6cpOGMT6lMXo.roa (raw, json)
Hash identifier: QHM0CADRNlM3CHitS2WYY8SP8ixddjCHbHnBI5zyoy8=
Subject key identifier: 90:E9:D3:6A:EC:CB:F8:08:22:0B:38:3A:72:93:86:31:3E:A5:31:7A
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 095D
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/kOnTauzL-AgiCzg6cpOGMT6lMXo.roa
Signing time: Wed 29 Sep 2021 02:42:39 +0000
ROA not before: Wed 29 Sep 2021 02:42:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18411
IP address blocks: 61.56.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2397 (0x95d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 29 02:42:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=90E9D36AECCBF808220B383A729386313EA5317A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:28:bd:03:0d:34:3d:87:2e:5d:a0:f3:e3:9b:
d9:5f:0c:01:85:36:78:a9:df:12:a0:8e:51:a1:5b:
b0:7f:05:b2:7a:2b:2e:c4:bf:5b:bd:d3:f1:23:1d:
66:26:21:3f:50:9a:1e:75:52:88:0e:7f:81:74:f0:
72:1c:b5:56:3f:ce:d6:93:db:d5:ef:0e:67:ee:a4:
c1:85:63:91:36:44:55:44:36:15:41:dd:a2:ac:87:
1d:5d:7a:87:09:c3:23:20:bc:fe:b5:9a:71:f7:c7:
ff:c6:a8:7b:3f:e6:36:40:d6:0d:29:68:b6:68:e1:
8f:f3:51:8b:d2:cf:44:06:51:05:6d:f6:46:9f:7d:
20:dd:e9:09:40:7f:f2:61:55:8b:d0:7a:87:b9:bd:
e2:85:ac:c0:6f:88:52:b9:17:36:d5:7d:ab:f2:c6:
5c:b8:6f:1b:f2:e2:db:37:3c:84:36:a0:3f:f8:b8:
60:c8:70:c9:49:4f:9e:01:95:6b:65:67:c7:db:6e:
54:07:ff:9d:87:5d:e2:ae:5c:b3:81:e9:29:22:b7:
10:8a:44:9d:53:37:6f:b0:0d:d7:95:7b:b0:c1:09:
76:68:3f:24:44:fe:99:34:08:32:31:ed:db:35:e5:
da:64:dd:0f:f4:25:63:01:42:fc:50:90:46:83:b9:
5e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E9:D3:6A:EC:CB:F8:08:22:0B:38:3A:72:93:86:31:3E:A5:31:7A
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/kOnTauzL-AgiCzg6cpOGMT6lMXo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.25.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:36:db:fb:65:87:d0:f0:8c:a8:9c:d0:fe:5d:b7:16:04:8e:
58:71:3b:5c:07:72:7f:76:81:6f:16:8c:8d:8c:f9:8e:c1:5a:
ae:46:13:50:c9:c1:10:ed:98:a8:fc:e3:c0:81:0d:74:05:5c:
da:d1:7a:b1:0c:8b:7e:25:83:04:ac:76:8a:a9:16:1d:98:c5:
36:5b:6e:4d:d4:f0:79:5f:14:b0:e8:f3:97:31:4a:b0:10:ff:
07:85:54:60:1f:62:1d:95:dc:5f:ab:8d:67:05:27:1b:75:7d:
9a:59:e6:51:02:46:d4:f6:6b:81:30:e7:8a:a9:bb:8c:98:9a:
00:a4:6c:72:a8:93:7c:6b:e3:56:5b:86:91:94:22:a1:30:4b:
98:05:48:a9:ed:40:23:94:2e:1c:9d:a2:02:e6:cf:f0:bd:d8:
71:39:b6:4f:8c:af:86:b0:16:99:01:41:5c:c5:f9:1c:6e:0b:
4a:cb:c8:33:e3:be:3f:8d:26:da:a1:36:ea:1c:a3:cd:d1:a0:
8d:3a:b7:00:9b:8d:7d:80:0b:5a:59:0d:9d:24:e8:66:c7:b3:
a4:e7:d9:84:80:d8:8b:8c:95:62:1b:08:f3:59:2a:cc:54:51:
f0:85:f9:fe:dd:b7:21:df:c9:29:2e:0c:33:6a:0f:f4:b4:97:
d2:78:7c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:01 2025 by rpki-client