Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/5tt87lNav7iysh2-me9PDrqhUTM.roa
File: 5tt87lNav7iysh2-me9PDrqhUTM.roa (raw, json)
Hash identifier: WVnyv4+LRdCLNNX24mwYli0Dg1sHEic9l8XO3lcBx2E=
Subject key identifier: E6:DB:7C:EE:53:5A:BF:B8:B2:B2:1D:BE:99:EF:4F:0E:BA:A1:51:33
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 08AA
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/5tt87lNav7iysh2-me9PDrqhUTM.roa
Signing time: Sun 07 Feb 2021 11:52:35 +0000
ROA not before: Sun 07 Feb 2021 11:52:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18413
IP address blocks: 61.65.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Feb 7 11:52:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6DB7CEE535ABFB8B2B21DBE99EF4F0EBAA15133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:46:6d:db:b4:4c:42:e6:70:c6:45:1b:12:
10:4e:47:10:7d:e6:8d:ff:bd:25:3c:7d:6f:2d:72:
6b:d1:a1:f6:0e:6a:26:ab:79:79:1e:2c:9a:5e:6b:
4e:7a:d9:f5:70:7b:ce:73:12:9d:c9:1c:87:44:bc:
3c:c8:1a:de:a5:10:71:3e:4c:9c:43:e1:b8:4f:e5:
6b:2c:81:35:cf:10:e3:bd:79:af:36:54:09:9e:0d:
eb:04:a2:7f:b5:00:0a:40:17:03:1d:01:05:d6:e5:
a4:06:0f:5e:ab:7f:07:ba:4d:0f:64:9b:a0:88:cc:
23:44:7b:d1:69:dd:32:53:39:af:3f:20:04:ac:53:
08:a0:6f:2f:88:0c:79:88:f2:07:1f:a1:27:59:8c:
6d:82:b4:97:c1:ad:21:3e:ec:05:b6:07:58:03:80:
2a:87:10:05:f7:70:9c:ec:de:10:e1:e9:78:53:8a:
61:f5:6c:55:fa:7a:58:6b:d1:4f:d0:89:ae:6b:fa:
26:74:e0:6b:21:a7:db:c8:96:27:45:61:f2:0d:e8:
6d:a6:91:32:b3:8e:2d:19:2d:f8:80:90:b3:a1:a7:
73:f1:26:e3:bb:ce:7a:ff:92:d6:96:15:25:9b:19:
ab:52:7c:af:3e:aa:45:b6:54:39:20:70:94:db:bb:
97:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DB:7C:EE:53:5A:BF:B8:B2:B2:1D:BE:99:EF:4F:0E:BA:A1:51:33
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/5tt87lNav7iysh2-me9PDrqhUTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:17:a5:42:67:6f:54:ce:a7:48:95:75:39:cb:ea:94:b8:8c:
31:10:71:0f:7f:d1:2c:2f:21:5b:0e:9b:b7:a2:b0:c8:0f:8d:
e4:00:0c:ed:f5:f0:37:85:f3:7a:3d:f7:fc:d1:50:2f:11:e9:
10:92:16:cf:3c:5b:2e:28:2c:79:66:98:50:c0:98:a7:02:93:
a1:7e:21:96:dc:f4:b1:4e:ca:1e:03:48:a6:ef:1e:85:52:ac:
6a:e0:6d:9e:d7:9b:bb:09:c4:f4:6f:df:ba:df:0e:55:36:b4:
fc:0d:6e:c3:31:5e:ca:47:ae:9a:db:da:af:44:57:f8:42:52:
88:23:a5:78:50:c7:06:1e:1f:cf:5f:e5:24:ce:c9:90:ac:b2:
82:38:fb:da:21:99:e6:2b:5d:7e:57:93:c2:9c:95:d9:61:e0:
01:4d:28:3f:d0:9e:54:33:5d:2c:57:2d:29:bc:a3:24:de:49:
42:a7:22:9b:ed:45:0a:7a:bf:ea:7d:f7:77:b4:67:2e:87:e3:
78:8b:c8:27:13:7b:24:ed:3a:8a:b3:93:1d:99:46:18:cb:ed:
9d:35:90:78:04:59:da:b0:26:14:2b:ba:a3:ae:d2:e6:8a:d0:
dc:21:cd:6d:6c:10:86:46:94:d6:f6:f1:10:db:b2:13:c2:95:
84:0d:51:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org