Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/RBBeXk0ShviVoSniroyxS_ivBzc.roa
File: RBBeXk0ShviVoSniroyxS_ivBzc.roa (raw, json)
Hash identifier: mpjxyb+x+OzDgNuvoawItO8bP76uKOKIgol/6lv9z6g=
Subject key identifier: 44:10:5E:5E:4D:12:86:F8:95:A1:29:E2:AE:8C:B1:4B:F8:AF:07:37
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AA8
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/RBBeXk0ShviVoSniroyxS_ivBzc.roa
Signing time: Thu 23 Jun 2022 05:41:33 +0000
ROA not before: Thu 23 Jun 2022 05:41:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 61.61.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2728 (0xaa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Jun 23 05:41:33 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=44105E5E4D1286F895A129E2AE8CB14BF8AF0737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:98:11:e0:34:d7:ca:8c:9d:9d:bc:35:76:1f:
46:bc:e9:87:da:10:48:1c:a9:b7:3b:fa:22:62:30:
03:59:89:ce:3c:fa:d6:56:a5:98:9a:75:4f:57:08:
6e:9f:60:bd:f5:20:a7:68:c1:e0:88:dd:24:40:d3:
a0:91:74:b5:61:c7:52:8d:db:2c:05:10:67:9b:46:
2e:54:50:a1:3d:a0:ee:ba:33:56:1d:02:69:9c:c4:
ad:ba:17:36:50:8c:18:68:3e:be:da:8c:ea:48:13:
c5:fb:16:22:f6:e6:9c:73:71:58:be:46:6c:44:3e:
94:90:2e:98:15:3a:5e:2c:13:50:23:79:d3:75:b7:
cc:9e:fa:38:aa:0a:86:c9:b0:b0:6a:bb:0e:16:72:
51:a4:43:1f:c9:2b:a1:f9:51:0a:a6:da:fc:90:b2:
90:20:3c:a5:89:3d:83:6f:a7:ea:05:4c:30:39:a7:
58:3e:8c:1c:fa:56:ed:19:6c:fb:26:06:46:8f:8b:
91:2a:80:73:87:08:0a:9b:73:78:2e:ea:2f:75:1f:
f4:98:63:c8:fd:f3:06:25:b5:96:6b:be:40:ea:07:
20:e9:d6:e3:9a:67:6a:66:81:66:01:6b:f2:4c:9e:
b9:a7:71:f2:f9:d5:64:72:27:4f:4e:35:80:0a:93:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:10:5E:5E:4D:12:86:F8:95:A1:29:E2:AE:8C:B1:4B:F8:AF:07:37
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/RBBeXk0ShviVoSniroyxS_ivBzc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.56.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:69:fc:e6:4f:65:7b:96:f3:0c:bd:63:f1:4e:79:70:dd:22:
85:06:3f:81:dc:1a:60:76:9c:91:e7:5c:c1:66:3b:5a:7d:3e:
27:21:13:aa:8e:95:9e:f4:47:89:b4:b9:4a:99:e7:61:06:30:
8d:b6:c1:49:00:c7:c7:45:9f:4b:a6:f9:6f:2f:d0:bb:bf:28:
b8:a9:f5:c6:ed:9e:97:1d:f9:be:f9:a9:f5:7d:6d:f4:a0:fa:
5c:8d:59:00:19:0d:4a:f7:c2:0f:14:c7:8c:dd:64:9a:57:f2:
da:82:12:2f:a6:1d:8f:1a:c0:c9:ca:27:9a:06:c9:91:1d:a9:
e5:56:9a:99:5f:dc:ee:92:2e:ac:39:4f:2e:94:d0:ed:69:89:
0d:e8:9a:36:f7:67:ed:a0:2f:cf:fc:8e:da:da:d6:fc:3e:c2:
9d:f1:5b:c5:f6:01:c2:24:79:5e:4a:2c:ec:4b:db:0c:cc:3f:
76:d2:68:95:1d:60:55:8d:30:88:0d:c1:58:86:20:52:cb:c1:
df:54:77:0e:b5:9d:c5:4f:b5:98:9c:2c:f3:08:15:e6:e4:38:
bc:e0:e4:52:49:70:27:7e:ec:50:6d:0c:a9:88:49:fe:09:b9:
94:ef:0a:e0:04:c6:d8:ca:75:f5:51:e8:6e:25:b5:cd:d4:a2:
e7:17:aa:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:00 2025 by rpki-client