Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/q_ki22FwvLvNyD6Q7q0aJxaBPHM.roa
File: q_ki22FwvLvNyD6Q7q0aJxaBPHM.roa (raw, json)
Hash identifier: uKRiUd/d7XbSxxUevCwfzycdmee1B+rROFGeIG50npY=
Subject key identifier: AB:F9:22:DB:61:70:BC:BB:CD:C8:3E:90:EE:AD:1A:27:16:81:3C:73
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 07A0
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/q_ki22FwvLvNyD6Q7q0aJxaBPHM.roa
Signing time: Tue 29 Sep 2020 10:04:28 +0000
ROA not before: Tue 29 Sep 2020 10:04:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.63.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1952 (0x7a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ABF922DB6170BCBBCDC83E90EEAD1A2716813C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:82:88:60:91:cc:0b:d9:e2:2f:1a:ca:08:
42:f7:12:d3:29:eb:d0:52:a3:27:6f:68:9d:06:7a:
d8:68:6e:73:2b:24:ea:b3:3a:60:5a:e2:53:43:51:
32:2d:8d:28:86:43:2f:60:c2:0d:41:7d:b0:5f:97:
83:77:70:68:9b:2f:e8:58:1e:eb:15:5d:f2:f0:52:
ba:24:49:d8:55:9f:f1:6d:ed:2f:06:34:41:51:52:
4e:09:e5:68:fc:27:49:d9:78:af:b0:84:df:b0:3d:
1a:bc:c7:7d:f9:5f:42:d2:5d:5b:ac:4d:15:e0:3e:
e3:1f:a8:b6:f1:cb:c4:0c:76:e2:3c:0a:c3:24:98:
69:56:31:ed:32:6a:37:ba:e0:12:f4:2b:78:22:07:
60:48:90:aa:52:cb:3e:57:d6:f6:47:43:c7:de:22:
32:0c:17:7a:d8:fd:d0:5c:d6:94:ab:cf:21:fb:4c:
20:06:7d:86:c1:85:43:20:d6:12:29:32:3c:0a:c6:
e1:25:5b:24:27:72:6b:1f:58:3f:f6:e5:dc:90:7b:
52:45:7c:6f:65:43:39:a5:a8:be:01:4e:4a:4d:ff:
60:38:41:59:82:40:fd:30:cf:fb:9e:0d:16:22:46:
40:5d:a4:4e:fe:ae:52:7c:40:00:ae:2b:4c:0a:53:
ad:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F9:22:DB:61:70:BC:BB:CD:C8:3E:90:EE:AD:1A:27:16:81:3C:73
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/q_ki22FwvLvNyD6Q7q0aJxaBPHM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.64.0/19
Signature Algorithm: sha256WithRSAEncryption
6c:87:79:37:a0:00:36:a1:4a:77:6b:76:12:74:28:bc:d7:ec:
ca:49:94:2e:28:6a:ab:02:2c:34:33:f8:3d:c8:64:10:07:6f:
a6:75:f2:fd:c4:b3:e8:0a:31:ae:e9:fd:e0:f9:f5:0b:75:13:
2c:c1:5d:2c:39:a7:12:e9:c8:59:a8:f3:a1:62:cc:2c:05:8b:
73:d0:81:68:19:9f:e7:b2:e5:33:a7:68:be:b3:c1:fd:af:81:
1b:07:4f:98:2a:72:d8:9d:f9:32:bf:2f:79:c4:cb:63:80:47:
b0:b4:4e:34:93:8a:9e:ec:39:99:58:e3:64:7d:ec:9f:ff:7a:
3b:61:71:5f:f0:4f:64:1e:57:14:4d:78:f0:21:2d:6b:b7:52:
c9:2e:23:96:5e:b0:0c:26:bc:f6:b5:b6:68:41:16:2d:7a:99:
61:a7:2d:8d:03:88:a5:91:76:ad:0e:c9:07:c8:85:ea:ec:d3:
6f:30:74:7e:eb:b5:09:94:49:2b:8c:b5:63:e2:00:77:80:90:
f2:f2:5e:70:d5:b7:de:5a:39:af:90:7d:5c:f4:09:fa:28:a7:
75:8f:8d:c0:91:88:59:42:51:de:2b:84:76:a9:3c:51:67:de:
f7:70:ba:c9:4c:96:fc:69:ce:f1:f7:67:89:79:3d:61:b9:c7:
2b:b6:1b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:20 2025 by rpki-client