Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/FGH902JhkuZ3-yWCVxxG1JTkVj4.roa
File: FGH902JhkuZ3-yWCVxxG1JTkVj4.roa (raw, json)
Hash identifier: Q0naXk+fxsBPztiRIF1btc2ThdwmDQcf3YfeIIPXgho=
Subject key identifier: 14:61:FD:D3:62:61:92:E6:77:FB:25:82:57:1C:46:D4:94:E4:56:3E
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 08D6
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/FGH902JhkuZ3-yWCVxxG1JTkVj4.roa
Signing time: Sun 07 Feb 2021 11:55:30 +0000
ROA not before: Sun 07 Feb 2021 11:55:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 61.64.64.0/18 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2262 (0x8d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 7 11:55:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1461FDD3626192E677FB2582571C46D494E4563E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4c:eb:c8:6a:8e:98:be:cc:0d:fe:1c:1c:9d:
95:8a:b3:54:fc:d8:a9:26:84:00:30:fb:b7:f0:e6:
5b:f8:5f:4a:e1:1e:59:67:9c:8f:b7:27:28:e3:fa:
30:2b:a9:a2:9e:5f:ba:69:73:55:7e:4c:0b:92:04:
2c:39:08:da:cc:8d:d3:7e:12:c7:6d:65:17:a3:ce:
55:ac:95:43:ef:2d:61:37:d7:b3:b0:fe:79:b4:ae:
6b:9f:81:33:3a:71:2f:0f:99:22:f4:53:d2:ad:30:
74:3d:57:be:2e:d7:f1:1b:00:06:d9:5b:05:54:ae:
1c:b5:b4:fb:65:2c:63:e1:52:ab:fb:7c:30:4e:54:
6a:36:17:21:59:91:a8:fb:bb:c6:8e:c8:c4:71:87:
9f:5d:05:7d:7d:5b:02:ea:3b:ff:2c:ec:16:f0:f6:
f0:fe:dc:75:64:ac:48:e1:bd:39:1e:af:b0:cd:b0:
fe:0b:2f:a7:c1:3e:ae:98:2f:ac:03:d7:a6:a3:db:
47:41:ab:fb:9d:5e:62:9e:72:fe:51:89:c7:55:2b:
d3:c9:f8:ac:9e:31:08:45:75:68:fb:dc:48:19:69:
c1:9f:d7:61:9b:77:2e:6a:65:25:ab:ee:dc:75:f7:
9f:8e:aa:f6:69:8f:82:d2:ab:ab:a6:d1:14:83:80:
22:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:61:FD:D3:62:61:92:E6:77:FB:25:82:57:1C:46:D4:94:E4:56:3E
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/FGH902JhkuZ3-yWCVxxG1JTkVj4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.64.0/18
Signature Algorithm: sha256WithRSAEncryption
27:b6:c7:6a:c9:89:d2:70:fc:0c:2c:78:3b:44:f0:e6:6f:62:
f7:56:64:be:6b:f4:80:0f:93:0e:e7:9d:3c:b3:fc:50:3d:f2:
19:1b:ca:aa:6e:b3:66:b8:9d:6c:3e:20:62:e2:b4:cb:94:12:
dc:e8:c8:a7:6e:7a:d9:f3:57:f7:90:92:f7:ab:2b:53:45:13:
dd:f8:f4:4e:3e:86:12:d9:db:c2:86:01:51:ce:3f:67:ab:30:
58:16:79:cb:f7:0e:37:46:13:12:04:2a:d6:13:35:84:f5:dd:
e9:f0:47:43:3d:d4:75:2a:fc:bf:a2:1e:80:8f:11:d8:5a:7e:
35:01:17:df:21:9e:ad:c1:10:9f:2f:71:0f:bf:ad:68:d0:f2:
d3:d5:61:06:52:90:2d:d0:29:cd:47:e9:91:87:05:4f:75:9f:
9b:ed:8a:8e:5a:01:b6:fc:03:d6:6a:67:6b:5c:56:c1:cc:65:
af:2b:55:3b:e9:b0:96:c2:42:0d:c9:51:70:83:68:8b:5d:9a:
e0:17:a1:e2:9d:75:f8:89:22:10:dd:65:4f:a7:af:1d:6d:b5:
e8:02:9c:29:81:4d:76:58:b7:9d:67:de:96:98:c6:fe:33:2e:
cf:b3:10:c2:a1:e1:41:e7:cb:d1:05:db:72:cb:77:25:70:71:
46:06:2c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:56 2025 by rpki-client