Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/BrV12Aeid1jFJVtTpPoFnUrPlss.roa
File: BrV12Aeid1jFJVtTpPoFnUrPlss.roa (raw, json)
Hash identifier: BNL1kYkYG0O2mzaWWoYpaM8fCVZB6Y+m92UCCaJdkfY=
Subject key identifier: 06:B5:75:D8:07:A2:77:58:C5:25:5B:53:A4:FA:05:9D:4A:CF:96:CB
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/BrV12Aeid1jFJVtTpPoFnUrPlss.roa
Signing time: Thu 15 Sep 2022 02:41:01 +0000
ROA not before: Thu 15 Sep 2022 02:41:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.67.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:41:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=06B575D807A27758C5255B53A4FA059D4ACF96CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:9d:08:4a:75:ec:f7:cc:60:11:78:7c:c6:
88:05:39:21:58:2a:9a:ff:23:31:69:35:1e:a3:5c:
1f:c1:76:de:32:8c:ad:a6:da:19:25:74:59:4a:97:
c6:98:dc:29:93:ec:01:0c:c0:3d:f4:a9:89:9c:0e:
4a:2f:df:35:66:88:30:f9:c9:49:02:fc:29:15:67:
db:07:7b:4f:ae:35:c2:f0:3a:40:e6:77:77:0d:63:
5a:ae:72:23:db:22:c4:49:5a:2e:bd:7c:d8:99:5c:
8c:8c:27:a1:7f:42:eb:9a:a8:41:43:23:6a:a2:dd:
ae:09:45:10:d2:c4:93:a6:be:da:b6:00:7c:75:e2:
f3:a2:3c:b7:cc:26:15:15:2a:51:f5:ca:4f:95:0b:
f4:48:ff:36:77:73:b8:5f:98:55:22:53:37:3e:57:
6b:a9:c9:ad:b3:3d:a8:e0:10:b7:65:16:1f:43:aa:
7f:cd:68:77:9f:83:bc:ed:18:a4:13:29:1e:72:0e:
e8:ac:ff:7f:bc:a7:a7:da:35:47:88:ea:b0:38:c1:
08:c7:03:96:2a:cc:b4:28:7f:5b:b2:17:6a:ce:0b:
90:5d:db:2e:0a:62:8e:3d:f9:26:a4:25:66:0c:fc:
70:ed:ea:be:a1:be:71:7b:d1:95:44:24:73:c9:e2:
9d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B5:75:D8:07:A2:77:58:C5:25:5B:53:A4:FA:05:9D:4A:CF:96:CB
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/BrV12Aeid1jFJVtTpPoFnUrPlss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.128.0/17
Signature Algorithm: sha256WithRSAEncryption
56:fd:ab:9e:05:43:ce:51:1a:db:1c:48:b5:8f:34:2a:4a:cc:
4e:7c:14:0f:6c:37:da:30:37:3d:b8:ba:2e:d5:38:b0:4f:f1:
68:45:9d:ad:5b:b0:03:28:3d:77:d0:91:b6:f4:ef:dc:1a:48:
c9:73:99:9a:d5:9f:e9:dd:b3:be:bd:36:c1:e7:44:0a:6a:5f:
0b:53:ee:92:6f:da:eb:d6:b1:f7:95:87:b0:82:35:59:2b:b9:
01:f9:65:e5:62:34:cc:29:4a:fd:46:f9:28:b7:45:ef:34:00:
82:27:e3:93:77:83:cc:f9:ae:00:60:b4:17:dc:06:d7:a7:77:
6b:96:04:81:43:38:c6:cf:f7:48:ff:38:79:a2:20:52:d8:25:
21:57:3c:6b:e9:5a:c7:d9:f8:ca:3a:39:af:37:0f:9b:c8:77:
9c:30:54:d6:65:1e:68:73:14:2e:1a:7a:aa:c4:bc:51:d4:30:
dd:2b:5b:ba:7e:08:42:67:e5:a4:6b:ce:c6:89:4a:01:76:8e:
3c:ea:4c:38:4e:30:75:0f:93:8b:5c:87:2a:2f:f6:ed:5c:2a:
5c:93:a9:0f:ce:58:08:1a:50:5b:13:12:7e:34:98:c8:ca:ca:
5d:2a:73:9f:93:b9:00:9f:79:0d:de:b1:a3:d2:ef:2b:96:48:
7c:9e:3f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org