Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/kjOhSRlV4xcrwq9eZdkSmIRdU4w.roa
File: kjOhSRlV4xcrwq9eZdkSmIRdU4w.roa (raw, json)
Hash identifier: mZftefo5yTJ6uVVfXiK0cur7Jg4edxv2f7d0f/QB94I=
Subject key identifier: 92:33:A1:49:19:55:E3:17:2B:C2:AF:5E:65:D9:12:98:84:5D:53:8C
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0AA1
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/kjOhSRlV4xcrwq9eZdkSmIRdU4w.roa
Signing time: Thu 15 Sep 2022 02:40:59 +0000
ROA not before: Thu 15 Sep 2022 02:40:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 61.63.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2721 (0xaa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 15 02:40:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9233A1491955E3172BC2AF5E65D91298845D538C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:11:83:eb:1f:0d:68:2c:e1:7d:9c:ff:ba:c8:
89:d2:86:db:0c:e6:65:ae:0e:ce:0d:a1:f7:31:0b:
81:26:bc:64:80:b9:c5:50:a1:9b:d5:ba:7d:ba:3d:
97:38:ab:71:9d:8d:89:ec:9b:93:41:e9:42:85:25:
ea:50:c7:a9:55:82:fe:64:54:51:ee:25:ca:e3:d2:
66:89:e0:e0:4c:f6:92:a4:a9:b9:95:d9:a2:5a:7c:
bc:ab:d5:17:ba:8b:bb:4c:fe:40:6e:a9:a2:fe:ab:
7e:08:83:29:d4:32:e9:12:49:05:a5:22:3b:59:6d:
bd:79:6b:df:ea:c5:bd:53:4e:5a:e4:6b:24:6e:31:
aa:65:ac:28:2b:50:f0:d2:5f:22:76:ef:c4:dc:6a:
e3:2a:45:63:2a:85:38:46:f5:77:ce:24:b8:fe:79:
05:c2:bc:e2:83:ee:8a:df:ac:c0:c5:2a:30:c3:5b:
71:ea:70:e1:f4:47:35:e9:e3:b3:46:48:be:26:32:
66:ec:3d:95:1f:8b:f1:b6:fd:45:11:fa:65:1d:13:
98:8c:f1:0a:f3:91:47:d4:a4:74:26:3c:37:49:e1:
05:9a:d2:af:33:c4:f1:15:16:6d:21:48:41:1e:b6:
c6:82:57:ce:90:af:54:6a:05:f5:a5:ee:e4:cf:60:
b6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:33:A1:49:19:55:E3:17:2B:C2:AF:5E:65:D9:12:98:84:5D:53:8C
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/kjOhSRlV4xcrwq9eZdkSmIRdU4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.64.0/19
Signature Algorithm: sha256WithRSAEncryption
79:bf:43:4f:be:85:c9:cf:57:d4:5f:fd:ce:56:1b:b8:b9:6f:
d0:da:67:b7:97:a8:ab:d6:31:19:b6:e6:41:26:e7:88:24:41:
8f:07:15:7d:32:b6:01:21:1b:56:02:6f:1f:b6:54:44:59:81:
5e:88:e8:ee:9e:65:37:b4:11:b0:05:d3:f3:94:d4:8a:18:e7:
59:39:b2:06:a5:31:98:e0:10:26:ee:59:5a:d5:70:f3:e1:2e:
a8:64:c6:8e:69:5a:f7:22:11:c6:37:37:c3:24:d8:31:20:c7:
94:ea:df:55:61:13:26:1b:e1:77:01:4d:c5:de:8f:fa:1d:05:
22:af:f7:4d:b6:03:77:40:32:a4:69:3a:58:ea:ce:88:c0:87:
b8:62:7b:0b:f0:de:d0:14:77:5d:78:1d:02:e4:2a:a0:b5:7b:
2b:8e:e5:06:af:54:af:91:d7:3b:14:74:57:72:26:96:71:69:
21:7e:a0:05:aa:5d:82:68:62:85:cb:d2:fd:49:ea:e3:ff:67:
ab:43:33:e8:43:fe:02:8e:f5:e2:31:63:26:f2:05:57:b7:1c:
06:94:94:8c:33:0e:61:3e:38:0a:fe:1f:b5:48:be:95:c5:03:
47:6a:51:0b:7a:f9:5f:d9:e6:18:61:c4:cf:d3:19:36:e9:d4:
ac:ae:02:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org