Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/vfnxuED-S6oReVwCvM-hQEWU0Lg.roa
File: vfnxuED-S6oReVwCvM-hQEWU0Lg.roa (raw, json)
Hash identifier: YGOlH7T2zAYfMvSTcx6OxkBFBzm/EAroeo/+hk1H2LQ=
Subject key identifier: BD:F9:F1:B8:40:FE:4B:AA:11:79:5C:02:BC:CF:A1:40:45:94:D0:B8
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08EE
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/vfnxuED-S6oReVwCvM-hQEWU0Lg.roa
Signing time: Sun 07 Feb 2021 11:53:42 +0000
ROA not before: Sun 07 Feb 2021 11:53:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 61.67.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2286 (0x8ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BDF9F1B840FE4BAA11795C02BCCFA1404594D0B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c2:66:c1:4f:50:0b:4f:8c:50:22:6a:3b:01:
f9:ba:ad:47:18:58:3e:18:15:d6:29:c3:a4:79:b3:
5f:e9:d5:5a:44:fe:98:7f:cc:fd:44:a9:b8:2b:9b:
a6:02:53:d6:4a:64:c0:1a:51:36:e5:b8:9d:d4:80:
94:53:59:44:9a:e5:60:ef:10:fa:8a:9f:fc:38:f5:
4f:9f:da:1f:a1:28:41:f2:74:09:92:38:ec:6e:4d:
d7:4b:d3:ec:28:5f:fa:c0:44:3e:f9:3a:13:cd:bd:
32:3c:da:06:e0:16:0b:39:6a:b5:b4:f4:a7:b6:60:
bc:24:2c:16:00:a5:d2:1e:0b:83:49:37:b6:3a:de:
49:43:aa:6b:56:29:f1:b2:3f:86:2c:96:49:00:38:
d3:2d:f3:11:0e:35:03:37:71:62:95:04:65:0d:79:
dc:1e:53:8f:f1:85:88:e6:32:27:8e:df:bf:cd:73:
92:77:5e:14:42:37:34:b7:2c:db:cb:fa:9a:f3:51:
aa:de:69:d1:29:17:b2:d5:7c:f9:12:bd:81:67:bc:
fa:78:2c:74:7e:69:80:ea:2d:ff:d5:72:e2:d3:20:
21:fd:5f:7a:01:9b:74:a8:48:b3:99:51:23:28:b2:
fb:db:3d:35:86:42:57:34:d6:17:1a:b1:e9:8b:25:
1e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F9:F1:B8:40:FE:4B:AA:11:79:5C:02:BC:CF:A1:40:45:94:D0:B8
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/vfnxuED-S6oReVwCvM-hQEWU0Lg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
cd:23:8d:56:ad:5d:24:c3:2d:46:26:b8:ea:5e:ae:b7:41:b4:
83:44:5d:86:a1:b2:71:eb:6f:a0:ae:83:58:4a:6b:df:f7:21:
d4:8e:7d:2d:9d:39:46:65:a0:3c:91:92:63:c6:50:53:d1:c4:
41:6f:18:82:4f:eb:e9:65:9f:21:3e:bb:82:29:77:7e:04:a6:
5b:bb:ce:e4:57:47:a1:f9:83:f4:f7:62:cb:ad:f3:fe:c9:ca:
6f:73:d6:ce:b7:8f:15:92:6b:e1:a5:1b:87:cf:25:9c:39:5e:
be:09:dd:6e:a8:e2:ed:0c:6c:f4:cd:9f:dc:c7:0e:75:bc:09:
2a:0e:54:c3:c8:8c:39:20:40:fb:e9:5b:ca:ab:74:9a:d5:ad:
cf:61:c4:5f:65:bd:1a:29:44:67:1b:1a:f4:24:78:11:b5:9f:
21:ba:f2:39:31:e9:72:9b:7f:c7:0e:56:57:2b:02:14:bc:06:
fe:04:31:07:83:a4:0d:8d:14:76:d0:cf:d8:2b:b6:54:6e:83:
8b:4f:8f:bc:dd:28:3f:05:62:7b:84:10:70:cf:04:a9:41:34:
8e:57:a9:98:83:1c:8c:a7:d7:98:cf:bf:3a:af:41:0b:ac:a9:
83:b9:4d:9b:b2:6f:f2:fc:40:17:f1:f3:a1:83:f3:23:2e:c3:
8e:10:55:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org