Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/YbAuvJLnlvn_a3tXMm434p9LxFY.roa
File: YbAuvJLnlvn_a3tXMm434p9LxFY.roa (raw, json)
Hash identifier: 2azGZxceeiIGRLifrASlYuRha7OzjrecSIGvOFhpBb0=
Subject key identifier: 61:B0:2E:BC:92:E7:96:F9:FF:6B:7B:57:32:6E:37:E2:9F:4B:C4:56
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 555B
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/YbAuvJLnlvn_a3tXMm434p9LxFY.roa
Signing time: Mon 25 Jan 2021 08:32:07 +0000
ROA not before: Mon 25 Jan 2021 08:32:07 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 43.227.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21851 (0x555b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Jan 25 08:32:07 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=61B02EBC92E796F9FF6B7B57326E37E29F4BC456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3d:54:d4:2d:64:c3:e9:41:59:de:bb:f1:57:
85:6f:94:17:8d:7b:12:bc:bf:0a:ca:ae:dd:bb:0c:
c7:06:90:ce:7b:d3:40:84:4e:ec:3c:30:31:9c:16:
f1:76:bb:5b:00:37:15:33:2f:2b:3f:49:0e:ea:cc:
2a:38:c6:a2:27:ef:18:25:0f:18:50:9f:16:14:61:
ef:2f:34:85:dc:8b:dc:67:2e:4e:b0:d3:7c:92:f0:
e0:e7:dc:8a:b3:e9:d4:8d:d4:2a:18:77:c7:72:5a:
cd:6e:05:27:7b:01:8c:21:0d:08:26:b4:5e:31:48:
17:82:27:9e:08:25:7c:bb:41:eb:03:75:57:d5:0a:
ca:c7:a3:88:b2:6b:a2:cb:64:e2:9f:34:a2:78:3f:
e7:0c:74:1c:82:38:62:5e:bb:ae:25:90:a3:66:45:
76:bf:84:5d:44:aa:93:bf:54:bd:e5:a8:f1:f0:cd:
64:99:07:da:79:b4:d2:69:8a:64:66:24:ce:b1:fb:
68:3d:8a:f8:73:e2:eb:5d:cf:cd:39:7a:94:9b:d0:
e8:9f:4f:d1:da:8a:c5:6c:31:15:99:63:89:e1:a8:
b7:e1:53:6e:df:aa:ba:00:eb:2c:e4:8b:d5:c2:9b:
42:ac:64:c8:40:60:04:5e:ec:90:b7:64:bf:5f:53:
5d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B0:2E:BC:92:E7:96:F9:FF:6B:7B:57:32:6E:37:E2:9F:4B:C4:56
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/YbAuvJLnlvn_a3tXMm434p9LxFY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.24.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:e8:38:b3:a8:cb:29:d5:20:9f:d3:97:d4:95:d1:91:0b:54:
99:53:fe:ad:ac:2a:13:ef:50:b3:f0:8f:ac:7d:65:10:37:d0:
bb:bb:e4:d0:01:7d:98:e0:34:dd:97:88:04:8f:bc:9d:69:46:
03:72:bb:d9:b8:2b:e4:ed:ee:bc:7c:1c:bc:39:ec:26:ef:95:
87:23:ac:ea:ac:52:91:50:90:80:ab:9d:66:9b:b3:10:a0:d0:
9f:96:02:b2:e7:6f:8d:3e:b2:d9:9b:81:d3:8b:b8:d3:14:c3:
d4:a9:6a:ae:64:35:4f:c1:f2:69:76:25:60:53:90:3a:f6:80:
b8:38:c0:dd:90:af:11:09:c3:a6:f1:ac:c4:16:74:ac:81:d3:
8f:b7:5b:8d:40:69:d3:d9:c3:9a:57:ea:59:18:eb:29:14:5a:
b6:b9:b2:20:7c:14:33:85:47:af:ad:ec:73:c5:b8:58:be:be:
0c:16:83:e6:5b:1e:a7:55:cf:15:88:80:23:6e:0c:67:15:61:
b3:7d:bf:4f:9e:71:ab:2c:dc:fb:c3:5f:7b:25:a4:70:14:3b:
75:3c:3a:f5:f4:12:cf:33:f0:75:7a:3a:0e:76:73:be:69:08:
ac:1f:65:19:e3:42:d5:6a:1d:df:49:24:de:aa:96:37:f3:da:
cc:bd:ff:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:24 2025 by rpki-client