Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/fG6hXe0zy_svMsX5jEZDruvwCME.roa
File: fG6hXe0zy_svMsX5jEZDruvwCME.roa (raw, json)
Hash identifier: QzTtK3tN8uGsYkxBi5PJxBOQJvru1A/GckesX2GKekg=
Subject key identifier: 7C:6E:A1:5D:ED:33:CB:FB:2F:32:C5:F9:8C:46:43:AE:EB:F0:08:C1
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/fG6hXe0zy_svMsX5jEZDruvwCME.roa
Signing time: Thu 15 Sep 2022 02:40:59 +0000
ROA not before: Thu 15 Sep 2022 02:40:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.63.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:40:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7C6EA15DED33CBFB2F32C5F98C4643AEEBF008C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c4:fa:86:60:45:c8:91:2b:73:4f:b7:38:67:
7e:63:fc:17:aa:c2:c1:d4:c8:84:15:04:8b:9a:2e:
51:88:2f:8c:76:60:bd:dd:6a:98:1a:81:14:d6:76:
97:ca:82:5f:ef:8b:18:57:18:56:01:d1:4b:79:15:
39:d4:ae:e8:af:2f:48:b7:2c:1d:88:4c:4f:69:7b:
13:7c:96:7b:96:7b:28:0b:be:28:b1:f7:a5:cc:6e:
82:6a:cd:91:e4:79:be:1b:75:18:e4:f7:3d:76:ea:
1d:ee:26:1b:35:d6:a6:aa:af:fd:89:51:11:13:16:
e8:2d:45:33:cb:8f:d1:49:2e:44:5f:b8:8b:e9:aa:
c2:1f:1f:a3:60:2e:36:5e:c6:b8:a3:70:8a:fd:8b:
32:56:d3:d3:f3:89:e6:df:ae:2f:53:a6:2a:c0:3a:
f0:c1:6c:40:14:8c:b3:6a:4f:7e:24:90:ef:11:eb:
36:8e:63:11:b7:6c:63:9c:56:82:26:00:ea:6c:92:
cb:58:ba:4b:a8:3f:92:75:24:66:eb:24:41:22:cd:
ee:cf:b7:6e:1a:de:4e:37:be:e3:4b:84:ea:0d:30:
d1:c6:47:62:83:a5:8e:15:15:38:59:48:77:60:fd:
00:d0:1c:60:43:62:e4:d4:9c:b2:e5:f3:8f:ec:ad:
a9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6E:A1:5D:ED:33:CB:FB:2F:32:C5:F9:8C:46:43:AE:EB:F0:08:C1
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/fG6hXe0zy_svMsX5jEZDruvwCME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.63.0/24
Signature Algorithm: sha256WithRSAEncryption
96:42:60:ab:7e:c2:64:3b:2b:e0:ab:f2:b1:a5:48:d8:80:9e:
bd:6b:64:53:b2:3c:ac:d9:f5:9c:0a:58:85:5f:27:86:2e:8e:
e9:94:82:80:2f:1d:41:2c:3b:75:9d:d1:52:6a:ef:49:22:c6:
21:09:a9:5e:0b:06:9c:c8:67:c0:99:c2:1f:5e:56:e7:b3:4d:
ca:4b:ec:d1:ab:8d:5c:60:25:b3:74:10:ea:6d:fb:e4:d7:c6:
c9:e3:13:d1:f2:b0:34:ad:a9:9d:2d:60:aa:63:92:38:ab:61:
39:3c:eb:9f:d2:10:92:46:a1:19:59:4e:be:d2:86:76:bf:dc:
f3:de:69:04:00:01:67:d4:8d:0c:ed:b7:df:c7:25:4c:2b:07:
6f:79:73:12:c7:25:cc:cf:bb:a8:48:26:43:5a:6b:6d:db:db:
f1:51:12:d3:18:2d:72:18:fb:8d:4e:13:3c:dc:46:b0:6b:da:
0a:a6:dd:61:b6:a5:18:c8:15:dc:ef:79:6e:fa:c8:cb:c2:40:
60:1b:16:d5:0d:28:df:80:42:2a:a2:13:ea:94:77:7d:f9:83:
d9:ae:5f:31:0e:9c:31:95:f0:6c:14:2c:31:34:76:1c:88:42:
1f:4a:da:1b:da:ad:e2:a5:24:92:7b:01:e3:8c:ac:5e:51:5c:
70:77:b2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org