Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/rNcjCRDSiaXIENMzGC7QCA-AAcI.roa
File: rNcjCRDSiaXIENMzGC7QCA-AAcI.roa (raw, json)
Hash identifier: yGG/mFmH5+tvkjXdj+5wUjP15UtiGQN1p81uD0p5Hc0=
Subject key identifier: AC:D7:23:09:10:D2:89:A5:C8:10:D3:33:18:2E:D0:08:0F:80:01:C2
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 077A
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/rNcjCRDSiaXIENMzGC7QCA-AAcI.roa
Signing time: Tue 29 Sep 2020 09:59:19 +0000
ROA not before: Tue 29 Sep 2020 09:59:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 61.64.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1914 (0x77a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 09:59:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ACD7230910D289A5C810D333182ED0080F8001C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:37:d5:96:13:01:15:f4:7e:ef:72:41:ea:cf:
97:3e:43:30:18:57:f6:fc:b0:18:43:d7:b1:70:13:
38:fb:91:49:f4:e5:0c:4f:c6:f8:52:00:77:1a:0f:
70:6d:e8:71:c0:91:f1:19:8f:9b:cf:d0:7a:79:3b:
a3:de:63:d4:66:9d:62:00:74:57:af:5c:fc:d8:c3:
87:ea:86:fa:2e:2d:00:18:64:cf:29:d9:fd:93:5c:
85:89:9c:08:bd:6f:66:bb:39:af:da:30:35:c1:d1:
1c:f0:00:8c:7f:9d:ed:50:30:6e:9a:9c:7a:09:7d:
58:92:49:72:76:38:66:17:42:34:8c:07:8d:53:e3:
c3:05:c8:f8:0b:74:0f:3f:54:49:90:17:79:22:47:
65:23:84:0c:63:4f:ac:d5:13:ae:e1:73:aa:f8:24:
4e:19:67:f0:86:e6:44:ad:24:68:d0:ed:86:f9:d4:
5d:57:56:9d:15:7c:47:fa:d3:b5:5a:66:4a:ac:34:
6f:c8:bf:6e:d7:60:c9:79:d3:0a:b7:bf:2d:d0:08:
dc:85:c8:d6:4c:2c:99:8f:4a:1c:b9:49:54:50:ef:
27:3f:b6:63:00:09:c6:fa:aa:d3:96:f4:5e:d5:c2:
e0:42:2c:72:7f:3f:8a:db:3f:73:e6:2f:6e:42:ef:
3c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D7:23:09:10:D2:89:A5:C8:10:D3:33:18:2E:D0:08:0F:80:01:C2
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/rNcjCRDSiaXIENMzGC7QCA-AAcI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.128.0/17
Signature Algorithm: sha256WithRSAEncryption
ac:e1:da:0f:d6:68:1f:10:43:4b:5b:0d:d1:49:65:be:04:f8:
0c:14:60:03:bc:88:80:fd:ca:4c:30:39:61:81:47:b3:27:6e:
93:47:2a:6b:ea:47:b0:94:42:dd:b3:16:44:72:c4:2a:e6:6b:
0c:c1:86:09:fe:02:03:16:63:fa:bc:7c:45:1b:fc:42:c8:b6:
9d:51:26:7b:06:26:f5:f3:de:2b:29:d6:54:a8:b7:b2:4d:4e:
d3:30:1b:c5:ad:43:e7:06:0c:84:47:69:b5:f6:6b:84:f3:5d:
a6:8c:f3:66:96:01:5e:3c:f5:b5:c1:eb:39:0d:af:ac:46:8a:
cc:57:2a:a8:ef:5c:12:2d:1d:fc:85:b1:3c:12:f5:65:c7:4e:
13:47:ae:46:18:21:9a:9a:a6:99:df:0b:33:cb:bd:5e:1d:58:
f8:d3:b4:69:47:dd:06:3a:cf:b2:32:41:d5:0a:da:18:9f:4c:
13:ad:bc:9d:ce:1d:3e:7b:0f:f6:da:f2:b3:5f:cc:58:8c:90:
10:0d:37:24:2b:49:c6:19:c1:65:96:ad:2e:65:5a:a6:bf:1d:
ac:86:3e:a8:13:74:67:cc:6b:d2:5b:41:0e:8e:8b:7c:49:3c:
ee:c0:86:8b:2b:c0:42:16:d8:cd:4e:77:05:60:b9:63:9e:d6:
33:f7:c2:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org