Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/BW8MpDE4obw6jH3Uv5eyDkowCJ0.roa
File: BW8MpDE4obw6jH3Uv5eyDkowCJ0.roa (raw, json)
Hash identifier: fcg2uksuSeF8APJJ65vGRbW5bnbqzaemfRL3PQoBKFw=
Subject key identifier: 05:6F:0C:A4:31:38:A1:BC:3A:8C:7D:D4:BF:97:B2:0E:4A:30:08:9D
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/BW8MpDE4obw6jH3Uv5eyDkowCJ0.roa
Signing time: Thu 15 Sep 2022 02:41:00 +0000
ROA not before: Thu 15 Sep 2022 02:41:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.63.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:41:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=056F0CA43138A1BC3A8C7DD4BF97B20E4A30089D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:58:64:60:10:0f:66:19:97:26:50:1b:c7:e9:
b8:80:ca:64:33:d2:49:ee:12:65:2c:89:f3:f1:1f:
ee:78:cf:ac:ef:88:72:33:51:73:f9:37:62:11:0e:
df:19:5a:43:82:b1:a7:be:2c:fa:ad:ed:6a:2c:8a:
8c:2b:3f:e4:ff:2c:68:dc:36:fc:30:c2:06:9e:d9:
44:cd:d7:df:a9:7d:aa:b1:3b:fd:47:2f:ea:10:67:
a9:b9:23:01:22:df:39:c0:c3:f6:39:7a:4e:2e:ed:
e7:52:a8:f0:57:e9:f7:cc:bd:83:4c:58:4e:c4:91:
90:c8:3f:fb:af:4b:31:e9:ff:ec:1b:dd:f2:62:9a:
b5:0d:4d:38:e9:16:4e:25:b3:db:d0:4c:b4:cc:e3:
0c:32:33:ac:4f:8b:65:02:2c:1f:82:bd:12:0e:ba:
8b:83:cc:1d:7e:28:69:f2:c5:cf:ff:92:f6:51:7c:
02:13:49:bd:e2:1d:70:5e:f3:9d:5e:64:bd:e8:79:
e9:75:3b:52:ee:c3:cd:4e:5c:1c:91:9c:a5:0d:63:
7e:3d:a7:98:c3:56:75:68:7f:61:35:ef:9e:fe:b1:
13:75:52:9c:e7:b4:a1:fa:d0:10:9a:28:95:49:4f:
df:b7:f1:be:07:6d:29:b1:1c:d8:fd:71:37:a6:28:
8f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:6F:0C:A4:31:38:A1:BC:3A:8C:7D:D4:BF:97:B2:0E:4A:30:08:9D
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/BW8MpDE4obw6jH3Uv5eyDkowCJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.87.0/24
Signature Algorithm: sha256WithRSAEncryption
76:e6:d5:05:81:87:47:94:74:48:ac:ee:7b:26:7a:5e:6e:ae:
6c:1c:2b:84:f1:a2:44:9a:84:40:6d:16:e2:e4:d7:83:d8:c3:
ae:29:6f:21:8b:2e:cf:14:8c:f9:a0:89:50:3c:3b:5b:99:37:
d4:a9:30:28:77:d0:c9:8a:8f:83:45:bd:85:fe:64:c9:a7:3a:
c3:38:f1:2d:0c:3a:75:b0:d1:30:36:eb:3e:b1:68:2e:9d:ad:
8e:00:62:bc:59:91:90:d7:ae:dd:de:b0:21:9f:df:3d:8e:9a:
e4:04:d5:27:d7:cd:e8:4c:d7:40:71:3a:0c:72:7c:f6:91:b4:
2f:dc:cc:fa:f8:ec:46:04:78:2a:b8:a9:e6:29:1e:f7:df:62:
4f:bc:b7:11:e8:1f:7f:71:5e:86:20:8e:a3:a4:fa:c6:fd:19:
9a:1d:5c:0a:ee:f4:ab:76:d6:f1:ed:80:2d:48:70:51:44:9f:
48:44:94:59:5b:b5:d7:5d:93:e2:dc:01:39:37:3e:0e:b9:9c:
4b:12:c6:d4:c7:d4:86:2c:cf:04:4e:3e:8c:dc:41:65:4b:64:
ca:6f:32:da:22:d8:3a:8c:53:3f:e7:5e:38:d3:84:8c:80:68:
90:1a:c6:ab:ad:77:8f:1d:a8:fe:bf:a1:ec:01:74:69:63:d4:
c0:a0:2b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:35 2025 by rpki-client