Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/LsX2izYpQJC1nKN2X-hLq6RsnqY.roa
File: LsX2izYpQJC1nKN2X-hLq6RsnqY.roa (raw, json)
Hash identifier: zVOAmjWfiUukE1XctK0GwtkgvRmZ7TF7kBEyrv0zZ5s=
Subject key identifier: 2E:C5:F6:8B:36:29:40:90:B5:9C:A3:76:5F:E8:4B:AB:A4:6C:9E:A6
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 0770
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/LsX2izYpQJC1nKN2X-hLq6RsnqY.roa
Signing time: Tue 29 Sep 2020 09:53:49 +0000
ROA not before: Tue 29 Sep 2020 09:53:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18413
IP address blocks: 61.67.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1904 (0x770)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Sep 29 09:53:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2EC5F68B36294090B59CA3765FE84BABA46C9EA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ac:c5:1a:07:84:67:de:58:8b:cf:10:0c:b6:
64:3d:1f:a6:cf:0c:ad:b4:fc:ea:ce:4a:11:42:49:
7c:6e:38:b6:52:7f:0f:56:de:15:d6:d8:78:28:5b:
e4:74:03:38:22:ca:4f:50:a9:f9:47:5c:33:eb:6b:
0b:62:4b:d1:7d:ec:2f:de:a4:5b:79:3e:07:01:26:
5f:ca:d4:55:66:e8:9a:54:c2:5c:46:9d:09:44:04:
a6:4e:5c:dd:80:b7:8b:ea:2a:b4:67:91:e0:9d:de:
e1:21:5f:4a:50:42:63:d5:0f:8d:a2:5e:59:c2:17:
af:da:a5:76:96:23:a0:dc:b2:33:92:f6:44:81:a1:
a9:cd:b3:29:7c:9f:56:b5:eb:4d:6e:4c:2b:7c:3c:
78:21:43:4e:87:d1:aa:3b:41:ad:f0:a3:59:29:7d:
7f:bd:de:47:b6:9d:ad:f7:25:e1:57:5e:30:55:5a:
d0:e0:ab:75:ba:b9:52:1c:22:55:25:8d:39:3b:e6:
b1:eb:c6:d4:ca:0a:bf:4a:0e:4f:6e:45:61:fe:a6:
84:21:1d:78:a9:82:2a:74:1d:60:2c:bf:71:cb:d8:
76:81:8c:36:a7:8c:4d:ea:da:ab:35:48:c3:6c:4e:
d1:5f:ec:c1:eb:06:ce:21:84:6b:64:87:e0:3f:fa:
06:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C5:F6:8B:36:29:40:90:B5:9C:A3:76:5F:E8:4B:AB:A4:6C:9E:A6
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/LsX2izYpQJC1nKN2X-hLq6RsnqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.0.0/20
Signature Algorithm: sha256WithRSAEncryption
64:aa:95:e6:9c:a5:7f:0a:30:fb:2a:4f:5b:d4:5d:e9:e4:f2:
2f:2d:c0:4e:ef:e2:34:21:f6:2c:79:aa:7a:95:42:cc:7b:53:
9b:05:da:2c:3f:01:17:c9:d5:61:7d:00:4c:39:17:d8:c7:2e:
cd:85:e5:75:cf:0d:ef:66:ce:fb:c5:53:91:8d:ba:f3:72:be:
40:5c:7a:93:34:8b:c2:22:b5:3e:65:2f:1b:1e:42:5f:f5:29:
b7:10:86:4d:3e:c3:e2:c4:49:b9:3b:cb:a2:a3:54:82:8e:2b:
48:d6:f2:e8:d1:48:6b:9e:0c:99:ad:bf:fb:1b:f3:20:4d:68:
57:ea:18:b2:e9:2d:ca:4f:ee:ed:49:a3:f4:ab:7a:a7:0f:58:
dd:99:fd:88:01:21:e1:46:27:7d:13:84:18:ad:b4:f5:ed:2b:
4e:6a:cf:30:97:33:13:57:4a:3f:c9:73:6b:44:02:1c:96:c4:
96:29:b0:b9:7d:0e:26:b9:1a:4c:8d:32:cc:09:4e:92:b6:2f:
b7:96:ec:10:79:81:b3:df:fe:73:15:0c:b7:ce:a6:4d:55:a2:
55:ee:1a:fd:01:c6:f5:31:36:d2:eb:e1:5b:ff:4e:52:c1:15:
78:b4:3b:0e:8a:b6:fc:54:1a:c9:cc:2e:f9:be:bb:40:6c:e6:
c0:73:43:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org