Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/_Bqnd3rlXGSpn148DDFM7toTEIo.roa
File: _Bqnd3rlXGSpn148DDFM7toTEIo.roa (raw, json)
Hash identifier: dVUULRGy53gfIvv7AGGCyzdLBbdc3HVGpegPCHvV0Tc=
Subject key identifier: FC:1A:A7:77:7A:E5:5C:64:A9:9F:5E:3C:0C:31:4C:EE:DA:13:10:8A
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 08FF
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/_Bqnd3rlXGSpn148DDFM7toTEIo.roa
Signing time: Sun 07 Feb 2021 11:54:41 +0000
ROA not before: Sun 07 Feb 2021 11:54:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.67.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303 (0x8ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 7 11:54:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FC1AA7777AE55C64A99F5E3C0C314CEEDA13108A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:28:dd:f2:5d:80:f5:c3:cc:ae:87:c6:2f:21:
a7:24:14:a3:33:c9:a8:46:47:4d:49:b1:20:64:b0:
0d:a4:d3:9f:fa:96:f9:fb:69:ed:8d:d7:34:76:21:
b5:3d:1b:e0:03:80:dd:ba:ec:cd:64:79:47:f6:7a:
b8:2a:aa:f5:17:b4:5c:29:dc:68:49:3d:aa:b9:43:
ce:e9:a1:cb:ea:ae:2f:8e:af:38:c6:95:b0:00:58:
12:6a:39:f7:93:1e:3d:a2:9e:6d:65:38:f4:4d:4b:
7f:21:5a:05:c3:18:8b:26:a6:1f:d2:e2:64:b6:f7:
50:31:ff:8f:84:30:b3:c8:da:d6:ae:ee:cc:0c:c1:
a7:99:28:83:d2:b6:84:c2:84:b3:ce:eb:60:73:db:
37:08:54:1f:78:03:31:a9:92:c0:48:5d:13:f1:86:
c7:58:f8:d4:d1:c1:82:b1:3b:8d:a0:43:0d:24:5d:
c9:47:8a:e6:49:33:2d:ab:54:ea:4d:71:e0:2c:9c:
22:7e:a6:2c:0f:21:13:87:c9:1e:c3:6e:4f:ae:5a:
a5:25:78:30:3b:bb:04:43:e0:cd:2b:e5:8a:fc:45:
6f:35:ce:0f:89:fb:80:6e:92:a8:42:65:05:91:0c:
e6:29:4e:ce:90:7b:6b:07:0e:7d:00:c3:6b:83:bc:
0d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1A:A7:77:7A:E5:5C:64:A9:9F:5E:3C:0C:31:4C:EE:DA:13:10:8A
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/_Bqnd3rlXGSpn148DDFM7toTEIo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.207.0/24
Signature Algorithm: sha256WithRSAEncryption
35:04:08:a0:8e:4d:33:26:46:e8:2c:5b:9b:3a:4d:be:19:b2:
de:f4:73:f7:9e:83:8c:e3:de:62:91:05:4f:19:09:1c:8f:93:
df:d7:1a:b9:21:18:06:fe:8e:7f:18:e7:92:57:ba:e0:09:91:
6b:d9:39:3b:27:cc:d5:11:9d:f7:c4:3a:d2:53:be:2b:9e:3c:
6e:fb:63:80:d7:1f:7c:f8:37:2c:48:cb:59:76:65:19:3f:8e:
c2:7e:9b:cf:5c:29:2d:37:06:c1:79:5d:0a:bb:f7:4f:e1:c1:
8f:03:10:d5:3a:3d:75:cf:be:ad:2b:89:7a:ae:af:9d:2b:4d:
41:ed:44:11:ad:1b:e4:60:88:86:95:03:a8:54:ef:50:01:02:
6a:be:04:c1:c4:1f:9d:35:86:80:b5:34:32:65:c1:67:f7:d4:
c9:48:2c:1c:6b:2a:8c:75:52:b7:4e:43:00:d4:e4:ad:5f:94:
06:73:29:d8:9f:38:11:23:a5:39:aa:6d:54:fa:42:39:64:31:
28:de:0e:82:93:54:f1:2f:86:03:df:12:58:cf:08:cf:0b:52:
23:43:a5:d8:86:d7:db:02:e6:c3:8e:86:58:37:dd:0c:3e:9f:
6b:fc:b7:5c:a4:4c:48:ea:d0:1f:39:3d:90:7f:42:b6:a7:3d:
68:0a:5f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org