Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/DvB3toZ1k5kDc4D6OW1SwkBB4fQ.roa
File: DvB3toZ1k5kDc4D6OW1SwkBB4fQ.roa (raw, json)
Hash identifier: Or+Pf6ZixFpgroysGdOqKHINeO2sR0i15Kdf45SJfCg=
Subject key identifier: 0E:F0:77:B6:86:75:93:99:03:73:80:FA:39:6D:52:C2:40:41:E1:F4
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09B7
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/DvB3toZ1k5kDc4D6OW1SwkBB4fQ.roa
Signing time: Wed 29 Sep 2021 02:40:45 +0000
ROA not before: Wed 29 Sep 2021 02:40:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 61.63.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2487 (0x9b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0EF077B686759399037380FA396D52C24041E1F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:8d:ee:de:15:02:7b:17:50:57:f4:19:06:
5e:d6:32:f4:5b:a1:4c:5f:08:a0:2b:72:91:08:8c:
1a:c5:ff:9d:c3:dc:48:88:71:96:01:7e:2e:20:61:
5d:a2:a1:5d:94:e7:d3:34:2d:66:74:67:ca:d8:5f:
37:79:e8:39:58:a0:cf:37:de:02:63:56:02:cc:58:
7b:e6:19:17:cf:ee:69:59:f5:7b:94:63:55:1b:ed:
ab:9f:3d:f1:5c:49:d0:81:43:d4:19:9c:e2:8c:25:
67:48:a0:1f:ad:dc:2e:7d:2e:01:45:90:64:55:90:
d5:da:b9:f7:54:9e:7e:81:17:24:48:48:7c:d3:5c:
14:c8:08:af:b2:29:79:b8:7f:0a:f3:d0:58:08:aa:
af:e9:cc:99:6e:68:ab:37:22:11:56:dd:81:ee:67:
c8:3d:ce:7d:12:02:25:57:f4:f0:75:11:85:d2:a4:
59:ed:e2:b8:48:87:5f:83:f9:a6:d5:19:a0:e8:e9:
ca:e2:79:18:83:1b:b1:96:51:f8:1f:41:2c:6d:79:
6f:58:fb:82:5b:8c:04:c7:4b:fb:61:2f:45:69:a9:
72:26:dc:9b:b4:da:0b:0b:19:50:29:6d:c5:13:55:
69:e8:c9:f3:5d:4c:a6:e0:40:ab:9f:ba:47:07:2a:
ed:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F0:77:B6:86:75:93:99:03:73:80:FA:39:6D:52:C2:40:41:E1:F4
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/DvB3toZ1k5kDc4D6OW1SwkBB4fQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.63.0/24
Signature Algorithm: sha256WithRSAEncryption
48:75:58:89:f3:48:8d:8d:38:a2:a0:cc:48:23:c8:27:ba:b9:
dc:88:23:eb:56:8c:44:70:8b:85:f1:fc:42:c5:af:a6:7e:d9:
64:5e:48:c4:8d:51:fb:76:7b:95:4b:04:04:6e:4b:b0:41:79:
9b:83:0c:66:c9:ab:4f:bb:0d:91:6e:48:cc:c4:10:82:5f:a0:
af:16:67:96:7e:79:2b:27:ed:35:06:4f:fa:88:65:a6:b9:75:
ea:77:18:72:e1:db:f9:a2:4e:d5:ef:8a:ae:d9:78:41:0c:79:
4e:5c:a6:44:05:8f:2d:1a:9a:0e:2e:4a:a3:a7:3d:03:fb:a9:
b8:0a:8c:c3:2b:91:18:bb:8b:c2:84:c5:97:45:56:19:be:9a:
08:56:69:1f:12:b4:c5:b5:88:b5:bd:2f:6b:57:b8:54:f5:5c:
5d:fb:f1:90:f5:00:a7:53:12:7e:11:97:bb:ab:e6:8f:d1:55:
45:b9:f7:f1:4f:65:1f:f2:79:7c:12:e6:0c:b0:67:ca:a5:c8:
d7:d1:9c:7a:14:93:42:1c:9a:5a:96:82:fc:75:a6:b9:f6:ad:
a4:95:eb:55:5e:45:eb:64:aa:09:dd:07:60:0f:06:71:a7:d6:
c2:09:c5:7f:28:ef:94:e6:fd:a0:58:0d:73:eb:f2:e7:56:1c:
53:73:8f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org