Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/8cz2bhvp2bL_ePdzPG8weRb8xqU.roa
File: 8cz2bhvp2bL_ePdzPG8weRb8xqU.roa (raw, json)
Hash identifier: sZyS85ARUHe/kAuwBc3xEi+ExY1hGNDKvUjTGbi2uQo=
Subject key identifier: F1:CC:F6:6E:1B:E9:D9:B2:FF:78:F7:73:3C:6F:30:79:16:FC:C6:A5
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09AB
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/8cz2bhvp2bL_ePdzPG8weRb8xqU.roa
Signing time: Wed 29 Sep 2021 02:40:41 +0000
ROA not before: Wed 29 Sep 2021 02:40:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 61.63.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2475 (0x9ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F1CCF66E1BE9D9B2FF78F7733C6F307916FCC6A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7d:9c:a6:08:be:0b:b0:72:4f:0e:46:16:ef:
0a:79:06:af:f0:c2:60:26:ce:f9:9f:1d:3b:4e:d3:
1e:13:ad:a8:74:a2:19:7f:03:5e:c4:95:aa:bb:1a:
d9:bf:f5:6d:6a:31:83:55:44:57:4d:0e:9b:69:9e:
3f:74:d7:8e:98:14:ef:05:63:36:0d:4c:52:c5:4e:
27:54:20:f9:42:30:ad:2c:33:5f:05:16:da:26:3c:
04:ae:c4:c4:8b:89:cd:9a:83:53:07:34:44:90:4d:
31:99:b8:fd:dd:cb:97:dd:e6:e4:eb:5f:e2:92:9b:
92:27:05:bb:10:de:15:47:62:47:30:ca:b1:08:5c:
03:f6:13:cf:cb:14:f9:b3:9d:65:3a:8f:52:b4:67:
28:5d:e4:f4:40:55:e6:27:f3:bc:18:05:fe:80:56:
24:33:2d:61:5a:f6:13:0c:5b:51:a8:e7:5d:5c:d3:
bc:c3:73:b4:43:8a:8b:eb:3c:e1:81:be:f6:bb:aa:
44:f9:43:51:ae:89:5d:3f:84:69:d6:24:94:c3:f9:
ef:ad:4f:a5:d7:46:6a:3c:fa:a7:e4:ce:67:52:31:
af:d9:45:6d:84:bd:0c:ef:1a:47:72:5f:c6:22:92:
97:6d:79:15:0d:82:ed:44:45:3d:0b:f3:d3:d3:04:
28:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CC:F6:6E:1B:E9:D9:B2:FF:78:F7:73:3C:6F:30:79:16:FC:C6:A5
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/8cz2bhvp2bL_ePdzPG8weRb8xqU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.64.0/19
Signature Algorithm: sha256WithRSAEncryption
19:5b:66:b9:37:20:f9:77:68:55:09:0b:28:4b:ff:2b:3f:6f:
55:ba:14:18:d3:d3:ce:20:d7:eb:6f:da:58:e4:9e:26:ae:6f:
3b:29:00:37:5c:fb:6d:6b:6a:8c:00:e6:54:2c:a1:0c:a8:59:
97:fd:ab:2f:7f:5b:32:a5:82:22:ae:80:6a:2f:1e:e7:43:4e:
84:71:00:e2:01:38:ae:4a:fa:61:d7:4d:fe:5f:bc:79:32:c7:
5e:c7:30:d1:13:d1:ac:ab:67:72:ce:2d:5e:98:f1:db:1b:bb:
2a:3e:e8:42:6f:6b:8f:1e:8e:82:32:23:95:6b:3e:93:e1:f5:
b5:71:3d:1d:2e:b0:36:9a:68:38:2f:d8:7a:c7:76:cb:9e:40:
1f:33:88:5f:51:6e:10:be:14:40:b7:63:21:b2:b2:28:36:c2:
a9:76:16:4c:49:ba:03:22:f6:94:87:d7:4d:3e:a8:a6:f8:01:
cb:b0:b7:68:54:42:e8:39:08:53:0e:31:70:49:c6:a7:a0:f6:
ce:66:10:88:ac:4f:d7:11:89:94:69:70:31:6c:b6:59:b2:b8:
bd:6d:31:c8:d7:d9:08:6b:be:ca:e1:b0:60:a2:73:ff:25:87:
de:b7:e1:25:23:47:40:53:77:43:82:52:d2:ba:36:ef:81:08:
c7:e3:cb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org