Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/rBPNGRUPEtGfOvNrr9B-5byWZv0.roa
File: rBPNGRUPEtGfOvNrr9B-5byWZv0.roa (raw, json)
Hash identifier: UaouAG1Zm2RSEjqnbHLB5o3E0sdREBZj1nKv0W/Y5tM=
Subject key identifier: AC:13:CD:19:15:0F:12:D1:9F:3A:F3:6B:AF:D0:7E:E5:BC:96:66:FD
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 098F
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/rBPNGRUPEtGfOvNrr9B-5byWZv0.roa
Signing time: Wed 29 Sep 2021 02:38:07 +0000
ROA not before: Wed 29 Sep 2021 02:38:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 61.67.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447 (0x98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AC13CD19150F12D19F3AF36BAFD07EE5BC9666FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b4:d7:10:95:c8:fb:92:ce:1c:dc:ef:4f:71:
31:7a:8e:12:76:83:94:ea:ae:4d:61:cf:32:d5:a8:
9b:a1:ec:ba:b2:e0:94:5e:00:75:47:85:66:cd:89:
0b:20:ae:f6:3a:73:0a:91:00:d5:c9:8d:7d:cc:38:
91:ea:4b:fe:3d:f3:2b:a3:46:e2:80:44:8d:e8:53:
6e:a9:ca:80:49:93:3c:4b:80:7d:24:59:7e:8a:ce:
9f:24:20:6c:a9:97:5b:2f:ca:e6:50:93:ad:b5:cd:
b8:4b:db:75:d8:15:e6:09:a9:74:32:db:3d:d0:43:
8e:35:cc:3b:c4:35:2e:74:9c:4c:bc:52:93:52:95:
6b:a9:3b:a1:0e:66:bc:ac:fe:0c:2d:c6:8a:5d:7d:
06:5b:89:5f:09:49:46:09:d1:71:f2:3a:b9:89:5a:
f1:64:71:d8:ba:a3:c5:a1:20:22:97:38:7b:af:14:
d8:f9:af:90:68:7c:88:73:2e:70:c9:a9:a7:dd:4c:
a7:d1:3e:59:0d:02:4f:7e:71:df:bf:55:cd:77:10:
4c:f1:3f:1a:ab:b1:b2:d1:91:0f:c1:43:39:ee:b6:
51:39:38:05:c7:af:e8:4b:51:cc:82:39:ee:22:14:
0d:5c:2f:06:57:1c:7f:f9:53:4f:fa:b8:51:ab:78:
64:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:13:CD:19:15:0F:12:D1:9F:3A:F3:6B:AF:D0:7E:E5:BC:96:66:FD
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/rBPNGRUPEtGfOvNrr9B-5byWZv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
14:79:0c:d6:e2:87:96:8d:3a:73:4a:54:2d:56:92:06:a1:71:
4a:ca:36:7a:d3:79:92:d9:6d:a2:16:0a:26:73:b0:b1:57:1e:
28:38:ab:32:2e:58:04:e9:8f:71:e4:b2:0b:02:ec:44:a2:19:
88:3a:75:97:cf:60:9e:a2:b7:d9:c0:69:0a:ad:e8:77:ae:e7:
3a:dc:fb:ab:83:7e:4f:7c:cd:64:10:1e:0f:6e:e2:9d:a9:38:
4a:9a:c2:0f:24:2b:94:71:fe:4c:ec:c4:20:dc:7a:88:b5:9a:
d0:68:c4:0a:8b:0e:ec:6f:86:b1:fe:ad:89:93:49:d0:42:f2:
df:49:b5:7f:d9:8e:64:11:d3:4f:4a:c5:58:f2:ba:0a:ad:b0:
23:c7:85:33:e8:b9:23:01:24:c7:9e:d3:b5:48:28:6f:0e:af:
30:be:c8:15:f9:51:af:c6:df:d0:55:c7:c5:f4:9c:40:17:6b:
e5:44:35:3d:6e:d1:21:52:fa:39:b1:b2:5d:db:cd:63:f4:ee:
93:c5:57:93:04:17:e1:ae:13:a8:c2:2d:cb:7f:34:4a:68:b1:
26:2d:ed:b9:43:89:95:43:4e:15:bf:8d:19:53:a7:ed:f4:96:
57:7c:02:9a:ff:28:9e:ec:78:e2:78:c5:fd:77:82:aa:79:2f:
59:11:b4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:11 2025 by rpki-client