Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/84P49n5n9yRic67TkiZCkA_EQxY.roa
File: 84P49n5n9yRic67TkiZCkA_EQxY.roa (raw, json)
Hash identifier: 7itZdByMZgCufE7DKrvxp1izuOazqDH90HoDcbYf3YE=
Subject key identifier: F3:83:F8:F6:7E:67:F7:24:62:73:AE:D3:92:26:42:90:0F:C4:43:16
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 08FD
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/84P49n5n9yRic67TkiZCkA_EQxY.roa
Signing time: Sun 07 Feb 2021 11:54:40 +0000
ROA not before: Sun 07 Feb 2021 11:54:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.63.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2301 (0x8fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 7 11:54:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F383F8F67E67F7246273AED3922642900FC44316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cf:8b:6d:d7:54:75:04:cb:36:98:4a:01:6e:
eb:f4:6f:f4:cb:7b:cd:15:34:79:1e:84:84:dc:9c:
72:8f:9a:07:bc:4c:a3:91:56:07:70:97:a8:a1:cd:
95:8f:fa:c4:5d:59:e1:e1:a6:59:4e:48:1f:c3:e6:
b6:1f:d5:40:b0:95:7c:32:01:83:16:50:38:d1:6f:
83:ec:d0:ed:cf:17:bf:b1:92:89:2f:35:24:18:d3:
8a:da:8c:c1:f1:22:34:5a:5a:25:20:15:8b:3d:2c:
c3:79:82:02:76:08:f2:36:84:93:e6:52:bb:67:c8:
aa:53:2d:c1:ed:0e:5e:5b:eb:62:26:29:20:d7:23:
07:26:22:f4:58:0d:7c:92:c1:ff:88:76:57:58:38:
6e:09:0f:3d:8c:81:70:ec:df:a0:8c:ba:2d:10:e4:
e1:b8:a9:74:3a:cd:6b:38:0d:88:82:df:a5:fb:ee:
84:8f:5b:b9:2e:e6:17:62:6a:5a:bd:0c:95:93:15:
ee:6c:d4:f1:18:2f:11:18:60:1d:e4:c1:3f:a5:ee:
c9:bc:1a:0c:c4:91:f5:4c:9b:95:62:63:2a:97:9d:
3d:1c:88:8c:fb:f2:14:14:2a:91:7d:b1:82:89:85:
f3:22:a0:7b:42:4d:41:8b:a7:e0:45:1f:6e:6a:a6:
31:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:83:F8:F6:7E:67:F7:24:62:73:AE:D3:92:26:42:90:0F:C4:43:16
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/84P49n5n9yRic67TkiZCkA_EQxY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.87.0/24
Signature Algorithm: sha256WithRSAEncryption
29:1a:37:eb:3f:b0:da:9b:e3:e7:d1:db:84:c5:f0:8b:52:80:
f4:66:4f:13:a7:7e:2b:af:38:92:28:62:03:a8:11:80:f2:0c:
dd:66:aa:dc:e0:a6:9f:db:27:75:65:28:b5:87:f2:35:d0:4e:
97:de:bd:5f:c9:b8:4a:ab:10:6d:68:e7:fa:a7:59:ed:77:dc:
87:b1:3a:28:c4:30:28:6c:b8:b3:9c:d8:3b:fa:45:c7:5d:34:
71:63:77:76:16:ba:d7:a3:ec:c4:26:86:09:83:30:a6:66:44:
5e:ea:89:e4:6a:a3:33:ac:99:37:06:ae:8f:f8:83:61:07:45:
9c:d7:25:f9:2d:5a:67:75:b5:52:f7:39:7d:d1:66:94:76:73:
0f:ea:c9:bc:98:86:fa:f7:87:25:22:b5:1c:90:7b:4b:ff:28:
5f:de:e7:21:f9:58:d0:5d:85:86:bc:3f:09:6e:05:48:39:88:
45:d3:e0:45:43:4d:a5:a0:26:c8:af:ef:f5:cd:29:65:ed:81:
f3:2a:7d:20:ae:33:ca:78:79:93:a0:72:6c:6c:ff:7a:b0:3d:
db:93:20:05:1c:88:c1:42:6f:d1:a1:14:2b:9b:cc:c4:25:5a:
d7:c5:39:6e:ef:dd:84:60:a5:ab:59:a7:e4:af:df:b4:0f:e9:
69:33:27:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:36 2025 by rpki-client