Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/bYRRRzggYNHCXsU0lPhvOp897zY.roa
File: bYRRRzggYNHCXsU0lPhvOp897zY.roa (raw, json)
Hash identifier: Ngug6jcY/hsA2sMeHhPU/R2qQvGKiBbO17y0gr7+arU=
Subject key identifier: 6D:84:51:47:38:20:60:D1:C2:5E:C5:34:94:F8:6F:3A:9F:3D:EF:36
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 079F
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/bYRRRzggYNHCXsU0lPhvOp897zY.roa
Signing time: Tue 29 Sep 2020 10:04:28 +0000
ROA not before: Tue 29 Sep 2020 10:04:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.63.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1951 (0x79f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6D845147382060D1C25EC53494F86F3A9F3DEF36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:07:a8:f1:8f:b9:24:b6:a7:6c:c6:f1:c4:5c:
84:85:ab:eb:aa:ff:19:18:e6:55:e9:92:91:cc:cd:
b5:45:9e:ff:bc:ad:78:e7:1c:19:8b:4b:29:e6:a3:
f8:b8:8d:2a:08:8c:06:cd:15:45:6c:ed:18:9e:5f:
1c:b1:9a:3c:50:1c:d7:5e:91:2a:67:90:86:66:0e:
9c:1e:50:41:fa:b8:e4:c4:31:e2:bf:52:76:d4:3c:
d6:1a:d9:7b:e9:2b:86:85:5f:d7:fd:6a:57:84:66:
67:64:cc:c8:8d:53:da:b6:c2:e7:90:a3:e2:11:5d:
09:26:69:e6:72:5a:cb:3c:6c:60:5c:97:e9:89:a5:
c8:bc:99:a2:79:b1:6f:6c:9f:f4:79:10:ae:87:b3:
4a:e3:85:50:9d:98:c0:ac:74:16:c1:53:f8:1d:fc:
48:8c:c6:05:95:40:d9:c8:8f:67:14:e8:be:0f:ff:
2d:19:46:31:d8:0d:cd:a7:65:b8:47:39:de:d2:61:
92:0d:eb:39:97:81:07:42:58:50:ae:1e:3f:1c:de:
27:46:4b:cc:3c:f2:af:a5:11:07:02:5b:ce:09:ac:
60:21:17:7f:2a:ee:9b:ef:e8:da:67:ab:86:71:4d:
d3:4b:e5:6b:2f:66:dd:54:c9:1f:9a:ac:b6:bc:10:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:84:51:47:38:20:60:D1:C2:5E:C5:34:94:F8:6F:3A:9F:3D:EF:36
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/bYRRRzggYNHCXsU0lPhvOp897zY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.63.0/24
Signature Algorithm: sha256WithRSAEncryption
38:f6:bd:a1:32:0b:56:57:8d:ab:09:e7:29:9c:3e:52:08:34:
76:f9:9a:58:41:b1:d5:33:16:d0:8b:d0:06:e6:9e:83:66:73:
1c:0b:cf:9d:19:12:01:a1:20:93:6c:ca:6f:3d:b7:c4:f9:e3:
57:cf:5d:35:fe:79:7d:4c:de:e3:c3:96:be:43:b3:9c:99:02:
48:4b:07:28:85:00:45:b9:7a:a9:2b:3f:7a:58:b5:0e:1b:fc:
58:35:b5:d4:19:bf:96:8d:c6:49:bc:cf:aa:9e:2d:6d:b7:03:
87:25:79:f6:5e:a1:c7:41:9e:b4:12:5f:4d:62:fe:87:e2:cd:
69:44:63:d1:a9:df:d0:78:7a:d3:8b:8e:d4:ff:f6:b3:bd:83:
91:fc:71:8e:f0:cd:6c:92:31:3e:04:0a:06:fe:c0:b5:a3:60:
51:0c:9d:0b:96:75:1f:c9:f7:37:8d:03:db:9f:b1:7f:a5:28:
48:bc:08:3b:93:52:f0:72:db:93:19:12:fd:9f:dc:e5:23:05:
54:4b:a6:8f:90:c8:0e:92:b1:ff:ed:06:c0:19:c5:40:c3:6a:
58:8b:d2:ef:4c:6d:77:aa:85:46:98:6c:71:27:d5:1e:40:82:
a1:70:51:ba:89:c6:63:9a:65:37:2f:93:76:57:40:fe:cd:79:
73:4c:38:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org