Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/PnXxgVQ6kYkccrZ5muwgwl_AnoY.roa
File: PnXxgVQ6kYkccrZ5muwgwl_AnoY.roa (raw, json)
Hash identifier: F7QXTamRbdEXy8oKDLJFH46sJrf4L83yOFmIzvW3kag=
Subject key identifier: 3E:75:F1:81:54:3A:91:89:1C:72:B6:79:9A:EC:20:C2:5F:C0:9E:86
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0779
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/PnXxgVQ6kYkccrZ5muwgwl_AnoY.roa
Signing time: Tue 29 Sep 2020 09:59:18 +0000
ROA not before: Tue 29 Sep 2020 09:59:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 61.56.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1913 (0x779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 09:59:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3E75F181543A91891C72B6799AEC20C25FC09E86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:80:d4:88:71:cc:25:1a:bb:43:71:e1:0e:a4:
f0:42:66:9d:1a:39:21:39:9a:38:b6:b1:61:41:3a:
0e:d5:b2:49:63:a2:27:d7:63:28:e4:eb:c3:68:e6:
c7:05:ad:80:b9:9d:fa:af:91:16:ff:18:8b:8b:b1:
17:55:de:a8:d1:b2:24:93:79:e7:16:42:4d:c6:68:
33:f2:65:56:d2:67:fb:aa:a3:6c:74:da:94:2f:3b:
5c:36:ff:0c:6e:bd:b1:43:35:e1:50:b4:4b:fd:14:
8e:a9:bf:7d:d6:ba:24:0d:b5:3a:ed:18:6a:9e:45:
7b:c0:22:6a:e1:81:75:1c:77:cf:6a:f0:ad:50:6a:
e0:b3:03:d7:1c:64:70:7a:50:ae:50:c4:9e:40:12:
c5:c7:ce:20:0f:cd:a0:91:c3:f7:9e:ce:dd:ce:cd:
51:05:c7:62:f1:e1:e5:3b:67:c4:47:fe:dc:81:7e:
3e:0a:f9:32:eb:92:da:6b:1a:c1:14:b8:de:b2:92:
41:f7:1f:ab:77:97:8f:fa:a2:dc:3e:59:bc:b6:59:
d0:2d:77:0b:c0:bd:7a:11:d2:84:9f:d3:94:1b:02:
c4:78:7d:68:3e:f0:a4:4e:5b:c4:42:76:7a:c0:1a:
ff:00:ab:24:02:67:48:fe:12:43:06:45:e7:9b:c5:
ac:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:75:F1:81:54:3A:91:89:1C:72:B6:79:9A:EC:20:C2:5F:C0:9E:86
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/PnXxgVQ6kYkccrZ5muwgwl_AnoY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.128.0/19
Signature Algorithm: sha256WithRSAEncryption
61:58:ae:0e:87:e1:ab:05:8f:41:1b:e4:63:ed:52:41:f4:21:
64:a8:0c:34:4b:10:ea:9a:a6:ec:f1:b4:08:a1:68:f8:64:70:
22:07:82:18:5f:54:63:d1:84:89:c1:5a:6e:8d:b7:41:9a:8b:
e2:bb:59:7a:af:28:de:11:98:78:68:aa:79:2f:7e:e8:67:93:
2e:06:72:41:0f:99:cc:d1:6c:24:eb:c7:2b:5b:39:76:8d:1c:
2c:f5:ca:ea:bf:0c:f6:20:78:f9:de:9e:ea:18:fb:13:28:b6:
5d:87:b2:3b:59:d8:38:59:e8:b5:5b:67:9f:1c:0b:c8:0f:2e:
b2:5f:8d:93:c3:85:68:76:96:cc:d3:5d:97:5c:f5:57:66:f9:
a3:3a:fb:5f:69:b4:83:82:a2:c9:43:fa:00:6e:0d:32:a3:1f:
ad:22:6d:ac:af:fa:f8:ef:ef:13:07:4f:19:07:f6:cb:bf:fe:
5a:72:69:56:cb:6e:be:1f:e6:a0:09:ef:54:2a:8a:4c:af:80:
d5:48:22:d1:86:16:38:e0:a3:c8:c1:db:ed:90:3b:a6:12:e5:
84:25:42:3f:e1:3e:2f:a1:43:b9:ad:6f:2c:ae:97:fb:74:c1:
83:28:a4:f4:51:fb:38:44:55:33:e2:ed:e2:ff:1f:92:ed:4e:
93:47:c9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org