Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/ynpPGVEAMCCpwM-GMgAa2W7RCeY.roa
File: ynpPGVEAMCCpwM-GMgAa2W7RCeY.roa (raw, json)
Hash identifier: s1B4BYvtQmlfI4KtZV5VITQ+Hfboegp199CmIMtcpsw=
Subject key identifier: CA:7A:4F:19:51:00:30:20:A9:C0:CF:86:32:00:1A:D9:6E:D1:09:E6
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09B5
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/ynpPGVEAMCCpwM-GMgAa2W7RCeY.roa
Signing time: Wed 29 Sep 2021 02:40:45 +0000
ROA not before: Wed 29 Sep 2021 02:40:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 61.67.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2485 (0x9b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CA7A4F1951003020A9C0CF8632001AD96ED109E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:08:3c:7b:03:23:5f:8e:5b:53:f4:04:72:47:
52:7f:18:85:2e:92:e7:3e:83:b4:30:b1:d5:18:0c:
9a:45:07:29:9b:ca:8a:f8:35:b5:38:0a:f1:22:a5:
0d:aa:54:75:9c:24:7c:fb:0d:88:12:38:c0:02:57:
c3:59:a6:c3:08:10:67:09:e5:b4:a2:73:ee:2a:c3:
36:7c:ec:e4:8b:67:ce:32:62:51:e1:27:c1:e1:80:
f6:5d:92:d9:c2:f5:d7:f8:1f:3c:0d:25:68:ee:40:
67:05:f0:79:67:49:aa:f1:cd:d5:42:14:c7:a0:cd:
5c:10:aa:85:7c:4e:2a:6b:d6:ba:3a:9d:29:59:04:
ff:24:a7:14:a4:1e:54:65:93:ee:50:25:eb:d9:0d:
7a:07:a8:e3:df:4a:0f:f0:fa:84:5c:d4:1b:01:c1:
28:14:09:13:0e:05:10:ff:22:a0:28:3f:6e:a7:1f:
d2:a3:1e:e9:d9:55:ec:d2:cc:e1:65:e3:77:00:c9:
6d:f2:80:2f:17:ed:54:82:00:20:1a:50:99:0a:a6:
c5:1b:73:6d:ba:84:ae:3c:38:15:2d:d7:3a:59:ad:
e0:7c:c0:73:d1:59:ac:b5:d6:2c:0a:7c:f2:5c:77:
da:91:ea:a2:26:25:6d:c7:82:e7:88:93:00:a1:34:
78:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7A:4F:19:51:00:30:20:A9:C0:CF:86:32:00:1A:D9:6E:D1:09:E6
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/ynpPGVEAMCCpwM-GMgAa2W7RCeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.209.0/24
Signature Algorithm: sha256WithRSAEncryption
04:2c:54:e5:aa:3d:58:b4:96:72:ca:01:fd:ed:5c:a6:9b:dc:
f2:84:8a:21:2b:f2:46:70:60:d9:3b:25:07:6d:5d:cc:a3:66:
ba:a3:87:81:12:01:07:3f:b9:8e:26:12:66:30:c0:a2:69:76:
3e:1d:48:22:6f:ff:df:f2:68:69:01:01:3e:9f:56:29:21:2e:
38:85:11:c4:b8:a9:ea:e7:27:43:5b:00:51:c0:33:62:1e:54:
be:6b:f6:15:7d:d2:cc:a3:a3:4f:bd:64:bc:55:2b:25:6d:19:
b3:c5:71:23:d3:89:06:57:e7:12:2b:3d:9e:ca:41:60:aa:81:
bd:cc:af:5a:bc:29:bf:6e:62:ba:b4:8e:39:cc:c2:35:36:da:
b9:9a:32:82:37:7c:1d:52:48:52:7c:07:37:06:9c:7a:5c:5c:
7b:49:3d:34:d3:b3:b5:75:f2:35:bf:2d:ed:6c:33:74:1a:e9:
c6:fd:2c:c1:da:74:21:97:ed:3b:cf:e3:67:2e:85:ca:51:1e:
c2:3d:63:08:6b:2f:ae:9b:4a:66:56:a5:df:5b:a3:c1:4a:86:
2b:53:cc:42:3b:40:03:28:72:da:eb:70:c2:be:f0:67:da:b3:
ec:62:2d:f6:50:89:28:44:95:be:b6:73:a0:25:6b:2c:1f:fc:
1c:54:1b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:23 2025 by rpki-client