Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/G4XbXXO4L7atCdCtPGjJS1d7j_Q.roa
File: G4XbXXO4L7atCdCtPGjJS1d7j_Q.roa (raw, json)
Hash identifier: GWnVebv4oMJcq8BkdFlWMB6tegJQdXlxmEH4bTwVvaQ=
Subject key identifier: 1B:85:DB:5D:73:B8:2F:B6:AD:09:D0:AD:3C:68:C9:4B:57:7B:8F:F4
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0A6C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/G4XbXXO4L7atCdCtPGjJS1d7j_Q.roa
Signing time: Thu 15 Sep 2022 02:49:22 +0000
ROA not before: Thu 15 Sep 2022 02:49:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18182
IP address blocks: 61.64.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 15 02:49:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1B85DB5D73B82FB6AD09D0AD3C68C94B577B8FF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:2c:30:14:2a:82:36:47:8d:82:1a:51:73:
6e:f4:2f:58:ee:d8:a2:91:c8:c7:21:15:88:22:4b:
6b:11:2c:7b:1c:ea:c0:64:f3:f2:dc:61:0e:ab:64:
6f:ad:87:0f:95:d6:18:44:7b:5c:fe:7a:5a:fe:59:
ca:8e:5b:4e:41:20:71:88:06:24:0e:24:df:8f:67:
8d:24:ea:cb:6d:ef:68:4c:e0:ca:20:fb:e5:e0:46:
8c:3b:27:ea:e4:4a:49:de:97:ca:b8:6c:fd:2d:79:
32:0b:17:2c:a7:88:15:9b:eb:d0:b2:24:32:a2:4f:
bd:fc:2d:9b:6c:86:3c:92:c9:27:ae:e3:0d:8a:7a:
b3:af:86:5c:e3:c8:f0:96:ae:7c:76:1f:c8:96:b2:
5a:90:ca:36:c7:e5:d3:2e:3a:ce:f3:86:ac:6b:cb:
17:0d:4b:ed:3d:f4:11:d3:d9:ba:96:68:b2:2d:58:
f7:59:90:3c:e9:e7:2d:7e:57:ca:10:df:bd:16:a7:
a5:52:7c:60:65:69:43:7f:c3:20:e0:06:db:5e:e8:
d8:86:38:22:c5:de:64:99:30:cc:08:78:1b:f4:9d:
39:f2:7b:a5:36:f5:86:84:9e:f2:6e:53:15:81:e0:
bb:80:eb:5d:32:09:a5:30:ee:7b:ff:58:06:56:eb:
34:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:85:DB:5D:73:B8:2F:B6:AD:09:D0:AD:3C:68:C9:4B:57:7B:8F:F4
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/G4XbXXO4L7atCdCtPGjJS1d7j_Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.64.0/18
Signature Algorithm: sha256WithRSAEncryption
c3:cb:4f:c1:af:bf:b1:26:e0:3a:2a:36:7d:1d:61:57:c0:e0:
e8:09:13:d7:85:19:1a:ca:72:60:d5:55:10:9a:88:61:0a:5c:
9b:22:34:32:cf:a3:ed:76:ba:99:7b:71:28:2b:4a:76:b2:b1:
ff:55:93:bf:44:0d:40:6b:f9:bf:e8:e0:60:2b:32:b0:d0:62:
b4:22:55:5c:47:07:cd:40:63:78:65:b4:61:84:03:5a:b9:30:
f6:7e:d5:c8:56:5f:f7:43:b2:e0:e8:62:3e:b3:39:1d:dc:ec:
ca:a3:03:fb:d3:4b:7c:03:0f:9e:34:04:49:d5:17:f7:e3:05:
5c:54:0a:01:8c:3a:3d:b8:1a:64:b1:e6:b1:94:59:19:ed:97:
f5:d2:22:71:17:e5:d4:9d:d7:ec:45:ab:f1:3d:f7:5d:79:a3:
c1:e1:9e:7e:e1:bb:4a:98:e5:67:35:81:a4:4e:01:25:88:1c:
c5:96:53:e0:e4:16:f5:bf:29:f4:2f:40:c3:0e:66:09:82:27:
c1:43:60:61:97:a2:dc:c0:11:02:6d:b5:ad:87:ca:d7:68:d9:
a2:77:91:ab:c3:f7:89:95:01:cb:a5:04:d8:1c:d9:c2:47:e3:
e5:59:34:8e:8a:2a:3e:96:0a:26:3e:f9:30:ce:6a:66:2f:00:
f0:ef:e5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org