Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/RabtfoUMC4RjUbzlKgH3DQt9QQo.roa
File: RabtfoUMC4RjUbzlKgH3DQt9QQo.roa (raw, json)
Hash identifier: q+s7kYDSHLoWDu0Z9CcjdANk01JVLzCzSGdDynoG7ng=
Subject key identifier: 45:A6:ED:7E:85:0C:0B:84:63:51:BC:E5:2A:01:F7:0D:0B:7D:41:0A
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/RabtfoUMC4RjUbzlKgH3DQt9QQo.roa
Signing time: Thu 15 Sep 2022 02:41:01 +0000
ROA not before: Thu 15 Sep 2022 02:41:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.63.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:41:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=45A6ED7E850C0B846351BCE52A01F70D0B7D410A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4f:79:6e:98:65:e0:e2:25:3d:ab:98:af:d5:
b7:62:d3:29:21:51:e6:22:62:26:8e:85:38:de:8b:
38:58:ee:70:e8:d5:7d:0e:a6:47:25:b4:f4:ff:f3:
82:2d:f1:a5:bd:89:05:21:74:3b:84:df:58:40:79:
aa:ce:54:68:e9:0b:d4:87:07:a1:7c:65:7c:01:31:
57:87:09:c0:f8:6c:56:7d:f4:b3:60:77:17:80:07:
1b:e3:39:28:6d:4d:20:4a:ea:7a:d1:23:f9:48:1b:
a8:87:2a:37:b8:2b:94:65:6d:67:a2:85:e7:0f:5e:
51:76:1b:db:3a:7a:99:28:4d:2a:0f:a5:6b:2d:f5:
bb:90:6d:a2:ff:20:76:29:68:91:0b:a5:f4:96:d7:
2f:8d:e0:32:a4:e2:8d:bc:6f:25:96:00:f4:5f:71:
36:ec:22:ce:38:bb:ac:a3:9b:f2:e9:a2:d1:78:5d:
68:47:ba:5c:3c:9b:5a:b5:93:b4:c4:f2:7f:42:b5:
30:99:bd:17:ce:b5:41:63:5f:57:79:0c:e3:0c:e9:
b9:5e:ad:da:12:4f:f8:f8:ab:9b:d8:3e:85:25:71:
11:c7:9c:8c:33:06:8e:d1:e6:8a:fc:9e:30:b8:cb:
3d:bd:02:15:55:6b:d7:b2:7c:cf:14:3c:b7:cd:a9:
3f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A6:ED:7E:85:0C:0B:84:63:51:BC:E5:2A:01:F7:0D:0B:7D:41:0A
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/RabtfoUMC4RjUbzlKgH3DQt9QQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:56:b8:cd:8d:9d:fc:2c:2b:bc:06:68:db:dc:a4:75:83:55:
f5:f8:04:e9:a0:08:c8:89:48:f3:40:7d:55:41:a8:c1:fd:d4:
40:83:32:84:a1:6f:71:6e:5c:7e:85:52:e4:bd:80:71:d2:71:
a5:7a:88:38:a6:0b:59:ca:53:ba:9c:27:ba:c3:72:cf:2c:a3:
d2:cf:7e:f7:d5:81:7a:da:c2:e9:f5:68:03:82:f1:21:09:d1:
ee:23:bf:8f:50:61:7c:19:29:0b:c7:66:ee:4c:e1:32:c3:c0:
9c:98:64:d2:47:ad:58:6e:06:b2:55:0f:3d:21:f5:40:16:ab:
67:b1:07:dc:8b:e9:0a:9f:c3:89:c7:91:00:54:bb:5f:9d:f4:
9c:50:37:b7:21:9f:b4:01:3c:01:10:63:28:48:5c:09:4f:cf:
e0:12:a9:ba:c8:77:3e:18:9a:a6:fa:80:d1:ed:eb:73:e9:2c:
2f:3e:06:59:77:2b:2b:f0:aa:94:89:10:ba:7c:7d:f4:45:2d:
bf:7d:ca:47:d5:46:d0:4b:0a:be:dc:8c:b1:9b:c9:e0:36:44:
45:aa:21:48:23:c1:fe:f7:ab:e2:42:2c:4e:17:25:25:da:20:
e1:f2:cf:73:13:60:e1:96:88:1d:db:f0:10:bc:72:28:6c:31:
29:36:7e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org