Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/xceAGmrn2SztTjvXBteLjTy4k6w.roa
File: xceAGmrn2SztTjvXBteLjTy4k6w.roa (raw, json)
Hash identifier: dbGVuEBUI6kWUB0jHGuJM/mSeuwfCL+2s9h/DTbriXY=
Subject key identifier: C5:C7:80:1A:6A:E7:D9:2C:ED:4E:3B:D7:06:D7:8B:8D:3C:B8:93:AC
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0796
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/xceAGmrn2SztTjvXBteLjTy4k6w.roa
Signing time: Tue 29 Sep 2020 10:04:26 +0000
ROA not before: Tue 29 Sep 2020 10:04:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.67.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1942 (0x796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C5C7801A6AE7D92CED4E3BD706D78B8D3CB893AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d4:74:c6:53:60:94:ec:70:f8:9f:e2:b3:8b:
0a:f1:2c:d8:4d:ce:6c:da:0b:f8:92:b9:68:2d:95:
54:6a:62:b0:a8:79:dd:d4:dd:2f:05:5d:4d:74:67:
c5:e6:9a:fc:aa:a5:1b:81:92:c9:32:05:47:ad:23:
59:e3:73:68:ab:3d:07:df:69:20:66:34:c4:7f:19:
7e:fa:dd:26:48:16:13:37:f7:d8:d7:f2:72:23:36:
14:3c:ac:b1:be:44:51:84:d9:f6:1e:24:eb:38:4e:
fc:f3:00:6c:d0:da:e2:73:33:bc:c1:78:1b:ad:55:
21:ff:2f:1a:92:cb:7a:fc:39:c7:87:65:ce:6c:16:
5f:52:42:9b:f2:c3:bf:17:6b:82:52:f0:18:8a:f9:
70:21:d8:f7:be:0b:6f:73:87:87:29:c7:90:d0:19:
ea:13:0f:33:ff:99:09:c2:6c:15:9a:89:69:4f:cf:
4e:eb:75:18:67:21:cf:9d:d6:68:dc:bb:04:d0:4f:
8a:8f:2b:ea:72:f8:ba:97:78:27:49:63:f2:47:42:
a8:53:1b:ec:53:9f:74:d8:4c:40:64:0c:e6:3d:a2:
d5:d3:a1:53:af:fe:e9:58:07:c2:e2:0b:f4:cf:91:
3a:06:d5:d7:03:f4:69:a6:cc:b7:0a:b3:11:65:2f:
a2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C7:80:1A:6A:E7:D9:2C:ED:4E:3B:D7:06:D7:8B:8D:3C:B8:93:AC
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/xceAGmrn2SztTjvXBteLjTy4k6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.207.0/24
Signature Algorithm: sha256WithRSAEncryption
55:72:ea:3b:dc:b3:fa:3d:18:bd:57:6e:f6:18:46:8c:3b:20:
8c:7e:d2:0a:2b:4a:3f:d3:51:41:34:7d:f7:cb:b4:c5:45:42:
e1:74:40:b6:e1:d4:52:c7:fb:0d:79:82:88:a2:ed:c2:7a:be:
ce:c2:e8:20:5b:54:a4:bb:ff:90:02:53:20:d7:f9:24:8e:29:
41:02:8a:22:a5:89:d0:44:d3:2c:48:9b:53:b8:2e:2e:26:e9:
7d:da:90:c2:5d:01:94:f8:6d:00:ce:ba:af:82:24:20:ad:7f:
13:d7:a6:d0:a9:8b:3d:ce:cd:3b:e0:c1:2e:f8:65:46:57:56:
27:e0:42:22:f9:b1:d0:53:7b:4f:99:96:80:33:57:af:4e:d2:
74:e4:1e:cc:27:99:37:3c:3d:09:35:35:b0:db:6d:db:b6:52:
ef:a6:4d:7e:5b:41:e7:9f:af:c6:f9:ed:83:d4:f3:04:a1:fb:
79:a1:ed:f4:6a:05:12:30:2e:1f:53:50:87:59:c3:16:ec:2c:
47:2e:c9:42:a0:b4:db:00:71:3d:ab:94:92:08:ed:f0:62:1c:
a9:85:1c:7b:4d:a3:0b:69:e6:88:c3:5e:bd:ae:10:d5:4f:18:
15:09:bd:0a:ac:ac:85:54:a5:0d:f5:19:8f:0f:38:bb:09:bb:
ad:d4:2d:3f
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC
RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yMDA5Mjkx
MDA0MjZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM1Qzc4MDFBNkFFN0Q5
MkNFRDRFM0JENzA2RDc4QjhEM0NCODkzQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDa1HTGU2CU7HD4n+KziwrxLNhNzmzaC/iSuWgtlVRqYrCoed3U
3S8FXU10Z8XmmvyqpRuBkskyBUetI1njc2irPQffaSBmNMR/GX763SZIFhM399jX
8nIjNhQ8rLG+RFGE2fYeJOs4TvzzAGzQ2uJzM7zBeButVSH/LxqSy3r8OceHZc5s
Fl9SQpvyw78Xa4JS8BiK+XAh2Pe+C29zh4cpx5DQGeoTDzP/mQnCbBWaiWlPz07r
dRhnIc+d1mjcuwTQT4qPK+py+LqXeCdJY/JHQqhTG+xTn3TYTEBkDOY9otXToVOv
/ulYB8LiC/TPkToG1dcD9GmmzLcKsxFlL6JFAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUxceAGmrn2SztTjvXBteLjTy4k6wwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe
JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi
N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL3hjZUFHbXJuMlN6dFRqdlhCdGVMalR5
NGs2dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Q88wDQYJ
KoZIhvcNAQELBQADggEBAFVy6jvcs/o9GL1XbvYYRow7IIx+0gorSj/TUUE0fffL
tMVFQuF0QLbh1FLH+w15goii7cJ6vs7C6CBbVKS7/5ACUyDX+SSOKUECiiKlidBE
0yxIm1O4Li4m6X3akMJdAZT4bQDOuq+CJCCtfxPXptCpiz3OzTvgwS74ZUZXVifg
QiL5sdBTe0+ZloAzV69O0nTkHswnmTc8PQk1NbDbbdu2Uu+mTX5bQeefr8b57YPU
8wSh+3mh7fRqBRIwLh9TUIdZwxbsLEcuyUKgtNsAcT2rlJII7fBiHKmFHHtNowtp
5ojDXr2uENVPGBUJvQqsrIVUpQ31GY8POLsJu63ULT8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org