Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/8c24V8o59Mbkgbs4KzlXdY84Tu0.roa
File: 8c24V8o59Mbkgbs4KzlXdY84Tu0.roa (raw, json)
Hash identifier: mLJD1PPiXFprX3ugylyJMLCCV5Ij6jbdt60I9YocDHM=
Subject key identifier: F1:CD:B8:57:CA:39:F4:C6:E4:81:BB:38:2B:39:57:75:8F:38:4E:ED
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/8c24V8o59Mbkgbs4KzlXdY84Tu0.roa
Signing time: Thu 15 Sep 2022 02:41:00 +0000
ROA not before: Thu 15 Sep 2022 02:41:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.67.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:41:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F1CDB857CA39F4C6E481BB382B3957758F384EED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d1:b2:58:f7:d7:b2:08:6b:43:93:86:4a:4f:
7b:37:c1:e5:69:6b:7b:e8:63:f8:8a:07:ac:04:80:
26:c7:f3:e1:c6:70:46:44:8c:e4:3d:04:92:cc:b6:
63:57:fa:e7:dd:15:a2:cb:13:39:c8:5e:59:62:8a:
88:be:72:54:83:a6:b8:b0:06:da:81:18:e4:d4:de:
fb:3d:a6:5b:13:d7:69:3e:0c:09:9b:94:91:95:1c:
48:30:b7:3d:e2:c1:77:ad:2b:4d:b0:f0:bf:f3:c4:
4b:ea:10:5c:65:1a:3a:ff:cc:c0:ea:96:0f:dc:e3:
35:de:e0:f3:ff:56:fe:ba:6a:bd:2c:f8:a1:ac:a4:
e5:24:39:a6:ba:3c:09:9d:aa:31:10:5f:81:62:65:
1e:6c:b4:10:c9:56:69:d2:13:6c:34:1e:5b:0b:94:
df:82:ec:b3:89:cb:14:c9:9b:5c:98:2c:61:20:fa:
ec:cc:0d:46:cb:47:5b:2f:c6:a3:5f:7a:50:de:74:
58:47:92:60:dc:1f:07:42:47:06:5a:5d:fe:93:82:
80:38:10:3e:55:dc:2a:e4:a7:8f:a3:7b:91:ef:1f:
71:64:00:a1:2a:13:cb:43:5d:c9:ae:27:14:15:4d:
e7:0e:50:ed:0a:ef:d0:b9:22:9e:1d:f1:6b:94:1c:
7a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CD:B8:57:CA:39:F4:C6:E4:81:BB:38:2B:39:57:75:8F:38:4E:ED
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/8c24V8o59Mbkgbs4KzlXdY84Tu0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.207.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1b:3e:e7:16:e1:3f:06:8d:db:db:84:b8:3a:1a:5c:14:70:
a3:34:17:e9:2b:3d:bb:65:b4:d1:8e:4f:1b:1e:83:93:e8:9a:
9a:95:a4:02:59:e1:93:de:f9:e9:f8:85:0b:af:73:a5:8c:8e:
8b:2a:59:b5:96:d1:a7:ff:9f:06:41:8e:a2:e5:34:28:0a:2f:
38:6f:c0:ff:bf:42:cd:1d:b9:25:69:ba:e7:38:9a:15:34:91:
04:58:03:2b:8e:ec:6c:bf:5a:6b:b5:99:d7:1b:85:2c:48:71:
ae:5c:9b:97:a0:5a:6c:cb:8b:17:02:d6:80:33:31:30:92:90:
1a:cb:ce:77:5a:4d:ce:3d:55:c4:5e:94:34:dd:60:52:38:c8:
5f:73:c4:75:91:44:c9:4e:cf:ec:1a:b8:36:87:52:c7:63:f7:
d1:c3:6c:a2:33:5a:33:28:13:0d:40:d6:93:4d:46:82:a8:73:
e3:05:c5:64:b5:50:38:b3:88:56:77:f9:c9:32:9f:d4:f3:29:
cc:bc:2b:31:dd:7e:69:6c:41:fe:6f:20:2b:6c:eb:fe:cc:2a:
65:8b:9e:fd:5f:a2:87:ed:01:f0:ea:ae:53:fa:4a:18:77:88:
a8:98:89:24:f4:d9:3e:45:cc:33:39:81:2c:d2:85:38:29:a4:
00:f4:20:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org