Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/2bDyQJZvI1DTnNd8HtHq5y7euD4.roa
File: 2bDyQJZvI1DTnNd8HtHq5y7euD4.roa (raw, json)
Hash identifier: TAUQQ9158dtdOl0Ttg0LF3jwVS5qTderCOwMkP9anXw=
Subject key identifier: D9:B0:F2:40:96:6F:23:50:D3:9C:D7:7C:1E:D1:EA:E7:2E:DE:B8:3E
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09AD
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/2bDyQJZvI1DTnNd8HtHq5y7euD4.roa
Signing time: Wed 29 Sep 2021 02:40:43 +0000
ROA not before: Wed 29 Sep 2021 02:40:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 61.63.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2477 (0x9ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D9B0F240966F2350D39CD77C1ED1EAE72EDEB83E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e0:6b:e6:4a:eb:c0:2f:af:74:a8:37:b3:77:
81:4c:bb:6a:f2:73:ee:27:8a:06:1a:8b:23:10:e9:
9b:b6:26:c2:6a:67:05:6b:06:f7:63:6d:0e:27:42:
b6:67:d8:b5:9c:0a:da:de:70:38:32:c0:99:24:f3:
3e:50:e3:00:aa:87:f4:1c:12:43:12:3e:d3:ad:66:
43:e1:67:ff:91:7c:af:cd:2e:f6:3f:f8:dc:8b:63:
37:d1:9b:f0:56:6e:02:55:39:34:19:6d:83:d2:56:
00:75:52:1d:48:40:60:5b:88:3d:c5:aa:0f:c7:e8:
25:0e:90:ee:7f:4d:7b:4c:06:9d:cb:8d:6f:44:6b:
c4:1a:b3:82:aa:65:21:9c:cf:d7:19:e3:0b:14:86:
ac:b0:46:2d:04:83:47:70:94:8c:d8:60:09:f6:e3:
fb:7c:6b:53:8b:3e:8e:97:25:21:ca:66:53:cd:50:
ab:bf:b8:39:83:e2:ae:b1:a7:28:42:1c:b8:b8:f9:
ed:51:e9:c1:40:41:aa:dc:c6:87:bb:43:9f:7e:a0:
06:f8:6a:bf:47:31:f9:98:08:7c:41:03:23:cc:5d:
8f:17:55:3a:0f:55:4e:38:fe:38:48:d6:a0:62:cc:
0b:e6:38:bf:46:3b:98:8d:dd:64:d1:a9:14:fe:ad:
d2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B0:F2:40:96:6F:23:50:D3:9C:D7:7C:1E:D1:EA:E7:2E:DE:B8:3E
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/2bDyQJZvI1DTnNd8HtHq5y7euD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:61:ee:99:d8:3a:bd:82:ed:3e:14:dc:a1:d8:d6:2a:91:0c:
cd:7c:d7:14:81:b7:a0:c8:10:09:3f:88:e6:f8:51:5e:49:fb:
99:2c:21:86:9b:4f:bd:3b:d3:b3:68:5f:03:38:84:bc:52:de:
c5:80:b6:47:5a:74:7f:8f:ff:c6:e3:1d:38:20:ff:9d:40:33:
92:0b:eb:1c:41:b6:84:8d:cb:9d:32:51:40:fe:cb:f8:f5:06:
53:e8:8a:08:34:1d:d2:f5:45:a8:e0:8d:3d:f2:63:06:84:13:
61:8d:9d:f1:7f:fd:6e:40:ab:7d:04:ea:b5:5b:e6:17:eb:19:
a6:28:ff:e5:40:c4:a1:bd:91:52:82:93:6e:5e:7a:05:31:a2:
dd:8f:0e:d0:0a:35:9d:33:af:6d:1a:9b:4e:48:62:3d:ee:ee:
3b:cc:aa:29:87:c7:e7:11:8a:b7:b4:98:23:f1:4a:81:d5:fc:
db:e2:dd:6b:99:b0:34:bb:f1:3f:5b:9c:e4:8d:91:d0:ae:44:
bc:58:bf:78:54:aa:a2:80:c0:f5:e7:8f:8e:1b:1a:09:17:e6:
78:a4:43:71:a9:73:15:ec:97:2e:59:89:fe:8e:05:e9:f5:99:
c3:49:96:36:d2:d5:eb:cc:ac:8a:c0:6c:fa:c0:3d:b8:d1:ae:
84:48:7d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org