Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/QE2LS4CYnMRcmom-RMGmDQvLWxI.roa
File: QE2LS4CYnMRcmom-RMGmDQvLWxI.roa (raw, json)
Hash identifier: jw83i1eaPMadQ7CElkqlNyTu5zyoytuzBeRK27tUZnA=
Subject key identifier: 40:4D:8B:4B:80:98:9C:C4:5C:9A:89:BE:44:C1:A6:0D:0B:CB:5B:12
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 091C
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/QE2LS4CYnMRcmom-RMGmDQvLWxI.roa
Signing time: Wed 03 Mar 2021 02:10:04 +0000
ROA not before: Wed 03 Mar 2021 02:10:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.67.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2332 (0x91c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Mar 3 02:10:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=404D8B4B80989CC45C9A89BE44C1A60D0BCB5B12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:41:c2:ae:0f:58:ee:01:31:28:2f:3b:14:d9:
2c:f6:c1:b3:ec:57:af:d1:ca:64:fd:dc:eb:b9:d9:
36:60:bc:d5:ab:5a:7a:b4:0c:38:44:41:5b:1f:b0:
e8:b2:b7:68:d6:d8:ad:11:03:72:ad:82:0c:52:35:
76:32:ef:b5:f9:93:92:1c:8b:f3:ba:78:cf:a1:00:
2f:bb:84:d9:ba:2e:ee:c0:16:55:fe:7c:5a:b9:78:
a4:32:dd:2b:73:34:a1:b3:b7:3e:af:04:d0:f9:2e:
ae:81:b6:5c:d8:b4:b6:20:14:a3:f8:a9:c3:a2:54:
7d:f4:32:fe:33:e0:49:99:a0:87:dc:d2:5e:20:ba:
b0:69:a3:c7:88:51:63:16:f9:83:4a:ff:6f:f4:d2:
36:a5:dd:81:7d:1b:39:85:7d:71:a9:06:9b:d5:fa:
10:4f:84:5f:bb:2d:1d:aa:07:07:26:28:b4:74:b1:
e5:30:0f:fb:b0:e7:56:bd:e5:12:5d:ab:60:6d:98:
c9:c6:5c:7c:87:5f:67:52:d5:51:1f:a8:26:65:46:
68:74:c9:44:90:50:b4:aa:8f:47:91:4b:1f:f3:cb:
36:09:f0:76:1a:7e:18:f4:40:d4:da:34:bf:4b:11:
9b:12:e4:67:5d:bf:e5:dc:cf:0b:5e:2d:53:3e:5a:
a2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4D:8B:4B:80:98:9C:C4:5C:9A:89:BE:44:C1:A6:0D:0B:CB:5B:12
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/QE2LS4CYnMRcmom-RMGmDQvLWxI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.128.0/17
Signature Algorithm: sha256WithRSAEncryption
46:ef:b6:3f:1f:d7:d0:62:a6:22:42:78:e8:89:cd:9d:5e:a1:
f2:08:bc:9f:46:b8:7d:ee:d0:b6:e2:21:5a:5e:9a:78:19:f1:
2b:e3:b3:1a:e2:59:46:2c:7d:c1:be:64:b0:8d:bb:30:89:78:
9a:93:4d:ed:8e:c1:e5:a6:6f:ee:e9:d9:9e:f8:a2:26:63:75:
c2:88:c8:9b:42:0e:a6:0c:c2:ca:e9:0f:a1:0a:e1:22:41:b9:
17:98:30:19:e8:19:12:3f:e6:f6:ff:ba:b7:8f:ab:54:bf:30:
37:f5:5c:02:9e:1d:4b:e1:bc:79:3c:40:af:9d:c5:5d:ad:06:
dd:f5:53:54:6d:25:99:59:cd:d9:6f:5b:b4:d3:33:b1:76:87:
2f:29:69:19:85:16:11:e9:15:75:66:d5:82:63:76:b6:73:28:
c3:89:e5:d9:4e:54:a5:66:15:b1:70:5e:96:28:d6:59:8d:60:
3d:9f:4c:ef:a9:c7:4f:d3:7c:70:c6:3f:16:f0:67:af:47:31:
82:63:4b:cb:52:f5:81:36:80:69:e3:fc:54:b1:b4:76:ea:e8:
fa:95:a5:54:dc:dc:1d:6a:f8:cf:f1:5d:eb:ea:0a:fe:cd:01:
9a:47:0b:32:cd:61:4f:6e:7f:61:d2:fa:02:e6:54:a9:c3:a3:
0b:01:cc:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org