Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/xT_2Rxu3vHrxUO-bLDU-eaHTVUY.roa
File: xT_2Rxu3vHrxUO-bLDU-eaHTVUY.roa (raw, json)
Hash identifier: zgGAif5MWojQDfDveVPnCS1W0ycrOrjFmXhQZSdhYF4=
Subject key identifier: C5:3F:F6:47:1B:B7:BC:7A:F1:50:EF:9B:2C:35:3E:79:A1:D3:55:46
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 079C
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/xT_2Rxu3vHrxUO-bLDU-eaHTVUY.roa
Signing time: Tue 29 Sep 2020 10:04:27 +0000
ROA not before: Tue 29 Sep 2020 10:04:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.67.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1948 (0x79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C53FF6471BB7BC7AF150EF9B2C353E79A1D35546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1c:66:c1:c9:81:46:01:ea:94:3b:1e:f1:1f:
f9:e5:c9:3b:c4:90:5e:7f:fe:0e:4f:24:74:e6:53:
20:a8:44:62:67:53:a2:21:04:4d:c9:a4:36:13:cf:
d1:28:a4:81:61:ae:a0:e0:87:ca:86:6e:83:01:4e:
3b:e0:47:a0:48:25:6b:fd:b0:bc:63:bf:ce:26:53:
4a:95:10:9a:86:35:52:52:aa:39:f7:ba:fc:a1:2b:
46:f0:b1:41:09:3b:6e:c2:3f:5c:31:19:41:c5:13:
e0:81:ad:d0:93:62:7f:03:bf:e3:72:6c:1b:ce:ff:
5d:4d:3a:5a:a2:54:75:be:84:bf:35:1e:2c:ab:3a:
d0:ce:e7:8f:39:14:d8:b2:0b:c6:d3:37:de:64:d4:
83:5d:db:a2:39:a7:05:c1:10:fe:99:4e:e0:99:6f:
c1:9e:17:c9:bc:9d:40:1f:92:0c:c5:1c:86:c3:50:
f2:8a:eb:ef:7d:40:7f:2f:a2:bb:bb:75:87:13:d7:
16:be:48:a5:4c:4c:1c:f3:f0:b9:38:b7:03:b0:67:
b6:ea:e5:59:e2:05:6d:05:a0:b0:df:c0:85:04:3d:
88:fe:02:cd:6a:ed:09:87:79:09:61:5b:7b:43:dd:
8e:73:f5:30:8f:be:7e:b9:81:09:18:2f:2c:61:bd:
3d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3F:F6:47:1B:B7:BC:7A:F1:50:EF:9B:2C:35:3E:79:A1:D3:55:46
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/xT_2Rxu3vHrxUO-bLDU-eaHTVUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5c:56:00:c5:61:22:7e:05:cf:c3:d4:29:2b:81:9c:52:a4:b9:
4a:0f:c5:6c:2c:02:85:17:d6:5b:d2:ac:47:2c:91:ed:a7:c0:
30:a8:56:37:87:4e:ba:24:11:2e:6b:0c:c5:02:b9:0e:b1:3e:
54:db:d9:cb:48:77:25:26:93:99:3d:14:b3:d7:ce:9d:f7:3c:
a9:74:2d:eb:ea:3b:c8:97:2c:55:10:39:91:eb:eb:d6:8a:7b:
90:3f:1f:90:4c:01:e2:f5:f6:d3:19:fd:a2:a1:68:f9:af:2c:
45:89:ba:f0:79:2e:8c:ee:a9:34:fb:77:e2:dc:89:0f:48:25:
c6:e2:f9:1b:04:9f:25:8b:40:fc:2a:93:cb:50:e4:20:47:d5:
76:28:5e:be:be:19:ec:50:fc:fa:87:56:a6:13:04:20:60:05:
b5:37:51:41:9a:d1:cc:7b:a8:69:e1:41:8f:9a:83:a9:2b:93:
6e:e5:a4:ed:95:73:55:93:aa:59:90:6b:2c:1e:3a:f0:8f:8e:
90:cd:1c:23:95:30:b4:6d:aa:0d:8b:7a:01:9f:42:b5:a1:82:
9c:ec:1c:87:03:d1:6f:e0:10:97:aa:52:2b:cc:15:b9:11:ab:
a2:72:6e:0c:69:11:18:f0:0d:a6:b6:9e:9a:20:a4:ab:bd:f2:
77:d8:ad:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:23 2025 by rpki-client