Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/6d6br1MkhO3yfmW1eCK5cxPwG0g.roa
File: 6d6br1MkhO3yfmW1eCK5cxPwG0g.roa (raw, json)
Hash identifier: ebow13C1+FCYqM3U28LT6aG7XOyc5Y7/BcgpNUH+0mY=
Subject key identifier: E9:DE:9B:AF:53:24:84:ED:F2:7E:65:B5:78:22:B9:73:13:F0:1B:48
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09B1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/6d6br1MkhO3yfmW1eCK5cxPwG0g.roa
Signing time: Wed 29 Sep 2021 02:40:43 +0000
ROA not before: Wed 29 Sep 2021 02:40:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 61.67.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2481 (0x9b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E9DE9BAF532484EDF27E65B57822B97313F01B48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:66:ed:1e:cd:3d:10:df:a5:23:55:84:28:66:
6f:ac:1f:2c:4e:6e:e6:e9:39:82:6f:12:40:73:a2:
ea:d3:97:48:a8:c6:06:2e:a2:47:3d:58:62:9d:c6:
04:d2:ae:d2:13:a7:10:4f:2d:97:5f:81:2e:c5:2f:
3b:b5:32:82:69:1b:ed:f3:11:59:70:c6:a2:b2:90:
78:f8:27:99:75:f0:51:9b:7c:f5:3c:78:70:64:9c:
dc:f8:2a:7c:d0:33:19:1d:93:0a:3f:bb:1d:c3:6d:
09:16:8b:39:f3:e9:1b:d0:02:f2:f2:10:2d:99:cf:
fc:4e:da:4a:2b:a1:c1:c7:87:6b:22:58:fc:a6:70:
31:49:ff:d5:7c:8b:dc:8b:dd:02:27:85:55:30:37:
72:78:95:28:29:ca:46:e3:18:57:28:9e:cc:ae:35:
95:57:d6:1b:fd:88:e5:a6:fc:c6:b6:89:68:94:c2:
2d:1b:18:7a:f3:9b:55:ea:90:4e:98:83:a4:7f:d6:
44:97:2e:19:8a:82:ca:c9:ff:c9:77:2f:9c:fe:94:
fe:36:dd:4a:40:42:f8:15:b6:0e:59:44:98:a0:9c:
56:2e:4b:af:78:dc:05:59:28:de:88:08:c5:1e:87:
cd:e6:1c:51:e8:86:f9:a9:4a:bf:89:42:0f:4b:21:
c5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DE:9B:AF:53:24:84:ED:F2:7E:65:B5:78:22:B9:73:13:F0:1B:48
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/6d6br1MkhO3yfmW1eCK5cxPwG0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.207.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:ed:7b:9e:1d:a0:18:a2:34:34:fc:1c:63:53:ea:b3:79:09:
b0:23:2e:d0:11:cd:95:94:3b:67:17:6e:ab:12:ad:92:f9:3a:
04:50:45:16:1b:47:2d:33:2e:ad:ca:30:c4:b5:b5:a9:4c:28:
1f:4f:8f:8c:68:70:14:37:3c:0c:68:ae:ee:48:9b:4c:9d:2d:
40:81:88:e7:73:0b:3f:03:97:d9:af:62:e5:51:41:10:ae:98:
58:63:63:3f:af:38:cf:9b:6c:3f:4c:6c:a3:4a:ad:bf:6a:21:
cf:3d:38:27:19:d8:f6:e5:b2:b8:60:41:11:28:5c:91:71:d2:
f1:10:fd:59:99:e2:a5:fd:74:53:a9:4f:c1:0a:87:b1:ba:84:
2c:9d:63:f2:ce:81:a8:98:3a:9d:d0:25:a1:ff:ad:ea:09:11:
40:61:a7:ae:1c:60:7c:ed:bd:e2:83:ec:56:10:47:0a:fc:1b:
a4:b5:e9:7e:f0:75:b9:b6:92:b4:90:6e:d8:9b:c9:43:dc:61:
32:69:8f:d5:bc:0e:23:3a:08:3a:8c:f9:70:8d:dc:16:4c:29:
1b:e9:5f:d3:f3:0f:26:28:68:0f:03:0e:72:e6:86:3b:be:9b:
e5:1c:39:99:8d:1e:f1:da:4e:43:cf:b1:2f:a8:f9:b8:3d:9e:
d9:4f:0b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org