Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/GKGluKs4D_8Rmu1qfV5RlhUnlg4.roa
File: GKGluKs4D_8Rmu1qfV5RlhUnlg4.roa (raw, json)
Hash identifier: 7ieer7ujwAGF+730iIn939GEpdUzK4sWmNlU0aMa1kg=
Subject key identifier: 18:A1:A5:B8:AB:38:0F:FF:11:9A:ED:6A:7D:5E:51:96:15:27:96:0E
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/GKGluKs4D_8Rmu1qfV5RlhUnlg4.roa
Signing time: Thu 15 Sep 2022 02:40:59 +0000
ROA not before: Thu 15 Sep 2022 02:40:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.63.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:40:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=18A1A5B8AB380FFF119AED6A7D5E51961527960E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b2:56:6a:3d:24:a0:48:04:39:19:4b:80:ac:
85:cc:db:ca:d2:d8:2e:4e:31:e7:76:57:9e:29:35:
90:cf:de:e2:93:35:92:d1:bc:c2:32:46:0c:3b:26:
00:1d:36:e9:bf:7c:73:e7:81:9e:37:f0:e8:33:c7:
73:de:8f:99:b7:a8:56:77:f8:cb:34:24:26:d2:cd:
53:cd:93:b6:d7:a0:18:4a:55:92:38:dc:99:6b:50:
da:ae:55:e5:57:c5:1b:84:fe:46:03:73:b6:2b:1b:
56:ff:e4:73:f4:e7:6f:b8:de:71:c3:04:e4:d4:2e:
12:b6:1d:59:12:5b:50:12:d8:75:04:fd:5f:64:12:
3b:82:84:20:57:27:75:30:50:43:a6:16:bf:64:9c:
98:c1:14:38:2b:72:d9:46:7d:ac:6a:ba:cc:0d:5c:
9f:3f:c3:42:4a:d7:b4:d8:24:48:69:2f:82:2c:31:
4a:b8:d0:e8:99:f8:c0:b9:43:6d:f7:e9:0f:3d:45:
ca:da:12:73:d1:44:0e:49:98:d9:31:0c:8f:8c:ab:
c7:3b:a9:2e:b9:ef:a3:d4:74:94:ed:8b:d1:40:0b:
47:15:51:67:20:00:11:e2:19:30:e9:cf:6b:8e:ea:
4c:e4:38:c8:c3:af:e1:46:a8:b6:01:85:c2:68:52:
96:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A1:A5:B8:AB:38:0F:FF:11:9A:ED:6A:7D:5E:51:96:15:27:96:0E
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/GKGluKs4D_8Rmu1qfV5RlhUnlg4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.32.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:74:50:66:20:10:ce:37:9a:da:00:dc:9a:dc:6c:0d:d9:0c:
f0:3c:a7:24:dc:6f:24:88:7d:ba:7f:7a:e7:10:2e:98:6d:e9:
f6:5e:44:e1:f5:c1:21:ff:88:08:56:72:7e:53:21:38:94:34:
dc:be:6a:56:c7:4e:9e:a4:f0:e4:28:ed:6b:e7:4a:2e:99:c8:
26:56:60:09:5f:8d:68:2d:0f:56:1c:57:64:c5:0f:14:8b:4b:
1d:48:92:a9:a4:6a:11:f7:2c:9a:36:1a:0f:21:22:1d:cd:39:
fc:24:74:74:14:f7:72:ec:00:56:fa:74:be:19:db:b2:4f:19:
b4:d5:08:5f:33:2c:70:24:6a:8b:c7:28:5f:5e:b4:f3:a2:ae:
fc:19:5d:8a:7c:a9:1e:d0:a1:b6:5f:2a:86:8c:46:0a:fd:77:
5e:12:1f:09:12:ad:59:b1:97:9c:7f:c0:dc:85:8f:66:90:62:
1c:f9:61:ca:9c:79:29:ca:e1:15:86:aa:a6:eb:31:d8:75:c1:
cf:f7:d6:0b:1a:10:dc:3f:28:ff:6f:4a:2d:e8:04:45:58:07:
72:d2:4a:e7:77:bd:0d:a4:85:47:20:ac:92:a7:6c:e7:fd:2d:
ab:04:6b:99:58:d6:ec:f0:2e:2b:32:1c:1d:94:e7:be:61:4e:
77:74:2f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org