Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/0VaJ3l4zWT83MeekcirTsaOGC1U.roa
File: 0VaJ3l4zWT83MeekcirTsaOGC1U.roa (raw, json)
Hash identifier: Yl4UpdfnVucBDIPLZ7VuS9YP3kq8ZfAQ4OQOxuEAPNk=
Subject key identifier: D1:56:89:DE:5E:33:59:3F:37:31:E7:A4:72:2A:D3:B1:A3:86:0B:55
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 0B24
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/0VaJ3l4zWT83MeekcirTsaOGC1U.roa
Signing time: Fri 01 Sep 2023 08:55:15 +0000
ROA not before: Fri 01 Sep 2023 08:55:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18413
IP address blocks: 61.67.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2852 (0xb24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Sep 1 08:55:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D15689DE5E33593F3731E7A4722AD3B1A3860B55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:db:5f:82:88:a9:fe:ef:4b:ad:e0:db:d5:d7:
57:a9:6b:99:1b:f9:4b:5e:99:86:81:61:a7:ec:0c:
a4:7c:99:fa:89:3d:49:56:80:62:b7:6a:71:ab:b2:
23:37:03:d3:f9:ca:bb:41:9f:6f:48:9b:58:36:90:
eb:f4:3f:65:7c:94:ff:9b:11:50:ee:11:f0:09:f3:
6f:12:f8:54:bd:dc:ea:3e:70:5b:bc:43:a9:46:67:
22:7a:14:c3:3f:cc:61:ce:71:96:89:0d:1a:a9:71:
17:29:a9:87:2d:2f:92:7d:19:5b:fc:72:6d:57:6f:
d5:8e:43:e3:15:67:82:6d:1d:a5:41:8d:90:27:01:
8c:7e:7c:2e:d9:bf:8d:c1:22:3c:58:36:69:1a:fc:
8a:ee:60:9b:3e:d7:ca:9b:54:6a:a8:8a:db:25:e2:
73:87:99:7c:23:6c:7b:00:d5:71:23:9a:29:f3:a9:
e2:ce:2e:7f:40:bf:f8:7b:a8:30:01:52:62:2d:ef:
d3:a7:46:a2:c6:8c:72:0f:1e:56:94:d1:a5:ed:ad:
7a:89:2b:ad:45:c8:cb:33:33:8f:dc:99:38:64:ee:
59:0d:2f:5d:88:65:b0:d9:f8:a0:8e:06:fa:ab:47:
85:61:73:1e:60:47:52:27:3a:7a:c8:6f:cb:aa:91:
a4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:56:89:DE:5E:33:59:3F:37:31:E7:A4:72:2A:D3:B1:A3:86:0B:55
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/0VaJ3l4zWT83MeekcirTsaOGC1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.0.0/20
Signature Algorithm: sha256WithRSAEncryption
7b:f5:b5:1f:aa:b3:06:f8:61:55:48:21:03:b6:ff:a0:14:ae:
7e:35:3f:48:15:5b:12:7e:84:81:67:bf:84:fd:04:34:19:21:
41:ff:ff:dc:84:08:10:b4:5b:85:9d:27:27:9e:8d:2d:b1:65:
db:a5:cf:0e:49:1d:fe:13:0e:86:c2:24:46:c0:15:20:03:ea:
c9:73:a1:41:14:5a:e2:8a:dd:26:cb:50:91:b6:e2:1a:e0:0d:
87:9a:bd:06:ad:66:4c:b9:cb:e3:63:e3:a7:fe:4e:28:ad:e4:
f2:28:24:1a:1d:96:1f:51:3a:51:cf:68:0c:a2:b8:76:39:7e:
56:2a:a6:cc:f6:67:5b:cc:3d:e3:83:56:0a:a1:4a:2b:54:d3:
c2:e0:1f:6f:e1:7f:46:b4:3a:66:34:76:06:ca:06:37:66:d0:
17:9e:4d:a0:90:e1:7c:05:85:0a:1e:73:26:dd:ec:9e:54:a7:
10:25:c2:76:53:92:3e:f0:98:bd:31:0b:b3:43:65:ab:d2:3e:
44:10:d4:58:db:4c:c4:b9:a8:89:97:f1:95:8f:8f:cc:2c:a9:
23:ee:ec:ea:3c:7b:a0:fa:a0:76:2c:81:00:cf:85:ef:6f:e7:
44:98:13:90:b6:66:f2:dd:59:2b:ec:88:7e:02:77:5a:45:f5:
a9:fe:eb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:13 2025 by rpki-client