Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/oQi9JLYzFjfhDgcS1AA-7ZTgt8Y.roa
File: oQi9JLYzFjfhDgcS1AA-7ZTgt8Y.roa (raw, json)
Hash identifier: CfAuhbE8LKQCG0Fg61MwiVnHZNC29xQOeP42mHXeiVo=
Subject key identifier: A1:08:BD:24:B6:33:16:37:E1:0E:07:12:D4:00:3E:ED:94:E0:B7:C6
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 095F
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/oQi9JLYzFjfhDgcS1AA-7ZTgt8Y.roa
Signing time: Wed 29 Sep 2021 02:42:39 +0000
ROA not before: Wed 29 Sep 2021 02:42:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18411
IP address blocks: 61.56.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2399 (0x95f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 29 02:42:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A108BD24B6331637E10E0712D4003EED94E0B7C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:03:d2:2a:f8:bc:54:72:45:af:76:ee:66:
b1:59:66:05:eb:fb:e1:f0:27:6c:8d:8b:d0:b4:74:
6b:7e:ab:e4:6b:0c:f4:50:a8:38:38:48:9b:30:47:
22:77:c4:44:2e:02:99:cb:92:d7:e3:17:fd:be:a2:
22:11:62:71:14:39:d8:8a:35:b7:ff:3a:0c:94:73:
f6:32:84:8a:67:ee:28:da:92:15:33:79:9a:7b:dd:
dd:20:09:67:75:a4:9b:47:c1:4e:3d:1e:54:3a:6b:
3d:ff:d1:de:e0:f0:70:d5:97:e2:7c:1b:81:ac:dc:
a0:e4:56:0f:b8:44:72:50:39:91:45:51:92:25:40:
72:08:f1:f1:1e:6b:36:a4:ce:d2:64:d1:1a:d6:6a:
a1:e8:b0:74:7a:42:17:07:d2:bc:3f:92:a4:bd:cf:
ef:f1:06:17:35:46:6d:ac:c0:40:c4:99:3f:c1:cf:
b1:c1:aa:41:5d:85:1c:a6:b2:5c:86:af:e0:46:2f:
16:84:06:16:5a:7b:d8:e8:7a:ad:30:c4:33:5e:66:
c5:02:fb:32:49:aa:f1:10:18:ac:47:1c:b5:87:8a:
46:26:7f:4b:f4:82:e1:4f:1e:49:cb:56:56:3c:ad:
f5:9e:e5:95:5d:b3:3d:8b:1d:eb:8f:22:1b:6b:ba:
ef:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:08:BD:24:B6:33:16:37:E1:0E:07:12:D4:00:3E:ED:94:E0:B7:C6
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/oQi9JLYzFjfhDgcS1AA-7ZTgt8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.16.0/20
Signature Algorithm: sha256WithRSAEncryption
e2:ac:72:91:c4:45:31:a4:c9:d6:f4:46:c7:a2:be:e2:3a:93:
10:7e:88:2e:e5:fd:b9:72:2e:66:74:33:ee:7a:f4:69:ee:28:
52:4c:75:07:ab:32:a1:4e:1c:69:a1:21:15:55:6a:1d:15:02:
60:75:7e:d6:fc:8a:03:50:b9:46:95:2b:e0:f1:e7:83:bf:69:
e5:47:86:ca:fd:c9:2b:9d:f3:0f:65:65:92:d3:76:85:88:f9:
a3:27:a9:a4:b3:a9:c4:24:91:d8:7f:34:35:e1:af:0b:8f:ea:
19:e3:f6:d4:8e:9e:0a:71:99:24:e6:af:12:55:0f:30:24:0c:
0a:ab:cd:81:ef:3d:24:0b:f1:89:02:b9:bd:3a:e7:3a:88:9e:
90:09:b4:7f:a4:f0:a2:a2:70:8e:47:55:72:61:b5:b5:f5:79:
e3:5c:cd:4e:6b:1a:e5:4d:e4:1e:e7:c3:01:0f:2e:dc:f4:ed:
b3:a2:0d:e4:63:b1:f7:42:6a:6a:52:03:36:bf:f5:7a:07:ac:
70:9b:b8:b6:d3:49:69:ec:bd:ee:56:6b:c5:9f:13:41:f4:81:
e1:64:aa:52:eb:86:c1:bc:f2:2b:55:c0:55:57:55:4b:ce:6f:
4e:6c:8b:a7:96:27:cf:18:22:99:fd:21:a0:a9:6e:4e:61:d2:
74:a1:c8:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org