Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/7QgqOWdQp8BNGIuoK6U2g82uGyw.roa
File: 7QgqOWdQp8BNGIuoK6U2g82uGyw.roa (raw, json)
Hash identifier: D97Eb6gmwRQVKk0MYbpvVVXqY6yK+0hsXUcjWGXTi24=
Subject key identifier: ED:08:2A:39:67:50:A7:C0:4D:18:8B:A8:2B:A5:36:83:CD:AE:1B:2C
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 079D
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/7QgqOWdQp8BNGIuoK6U2g82uGyw.roa
Signing time: Tue 29 Sep 2020 10:04:27 +0000
ROA not before: Tue 29 Sep 2020 10:04:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.63.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ED082A396750A7C04D188BA82BA53683CDAE1B2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:21:35:61:3e:c2:49:41:3c:fc:7a:02:0f:27:
a1:b9:0a:08:bc:42:ad:48:6d:9a:c1:26:bd:db:7e:
c9:98:92:6e:0f:e4:d7:ab:88:3a:a5:0f:80:dd:e1:
5c:e4:db:0c:5d:0e:a1:61:5f:f7:9b:8c:db:b0:71:
eb:cb:d6:f1:d2:c8:e7:ed:dd:2c:a8:ce:92:30:5e:
76:73:5b:67:fd:3f:25:2a:f6:50:4d:b7:15:32:cf:
a6:8b:99:fa:b1:98:5b:ac:fd:ef:2a:e4:8c:72:47:
17:b8:1e:9a:6b:4e:7b:8b:31:a5:58:b4:20:00:14:
e0:6b:05:c7:d8:43:56:f7:ed:75:29:b7:6d:ed:0d:
cd:80:69:f9:7d:8d:13:8d:3a:56:06:92:bc:e8:97:
25:dc:aa:d8:98:ee:ae:4a:05:5f:22:4d:22:c9:82:
08:2d:d3:47:d3:ad:aa:26:13:de:4e:31:c4:a6:9e:
ff:e3:c9:87:5d:b0:f9:13:1b:ff:9f:8e:c5:e9:9b:
9c:a5:fd:a3:20:01:6c:35:98:15:66:e7:e9:61:ef:
f3:25:e1:0f:52:22:1a:c2:16:07:83:e0:95:dc:2a:
80:7c:04:13:2d:8a:d5:e5:7f:02:38:67:63:ba:9b:
23:52:9d:24:12:9c:4e:40:7b:42:c9:c1:a9:3d:e6:
19:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:08:2A:39:67:50:A7:C0:4D:18:8B:A8:2B:A5:36:83:CD:AE:1B:2C
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/7QgqOWdQp8BNGIuoK6U2g82uGyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.32.0/19
Signature Algorithm: sha256WithRSAEncryption
04:61:d0:c9:44:5f:77:a2:cc:97:35:de:87:02:d5:81:27:a7:
71:41:2d:5f:50:7e:21:79:1d:a8:6a:dc:ec:1a:e0:71:79:89:
09:15:04:d3:9b:8a:04:eb:4e:76:cc:4c:1e:c9:a8:ab:36:18:
d2:75:ca:db:5e:f8:41:1e:79:e4:f7:2a:cb:b2:70:7e:db:86:
73:57:b7:ec:ce:50:ed:6e:c2:d1:80:6a:a4:c5:03:3b:b6:49:
01:91:b2:8d:fc:00:47:3a:6c:0e:69:2b:11:c8:07:f0:2b:41:
6a:2c:d5:52:4b:a5:e9:c8:e0:d1:74:90:f1:a0:53:be:58:d7:
93:b6:38:c8:f4:ce:8d:06:fc:55:e4:79:0d:d9:d5:b2:c4:b9:
4c:1b:13:a8:38:6c:db:6e:df:8c:0c:66:25:e1:8f:31:a8:bb:
7b:b8:e2:92:d7:3d:29:eb:3d:b0:50:95:e9:7c:a9:2a:21:14:
1b:d7:9d:81:62:d0:54:ba:a1:21:37:65:d8:25:35:48:a5:5f:
c5:10:5b:87:87:51:a9:9e:6f:ab:7f:f9:83:50:59:ef:f0:2e:
76:09:14:c2:c2:dc:5e:8d:70:7f:b7:05:6c:36:dc:be:4a:d0:
0f:80:0e:dc:e8:4c:0c:a6:b4:3f:a6:5e:c1:b4:0c:16:2f:f7:
7d:8d:30:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org