Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/sp_8bNabrTBLUFUp7l2XOgGB5hc.roa
File: sp_8bNabrTBLUFUp7l2XOgGB5hc.roa (raw, json)
Hash identifier: myRVQI2r1Il2IICUSQzMTq/QRngvr6vm7CvISh7bZeI=
Subject key identifier: B2:9F:FC:6C:D6:9B:AD:30:4B:50:55:29:EE:5D:97:3A:01:81:E6:17
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0979
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/sp_8bNabrTBLUFUp7l2XOgGB5hc.roa
Signing time: Wed 29 Sep 2021 02:51:52 +0000
ROA not before: Wed 29 Sep 2021 02:51:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18182
IP address blocks: 61.62.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2425 (0x979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B29FFC6CD69BAD304B505529EE5D973A0181E617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:18:ca:28:8e:5f:f7:b0:a1:b9:6d:f8:c0:21:
17:93:e1:a0:b5:18:d2:4d:ac:7b:6a:80:86:9b:9b:
23:ca:b6:54:57:3d:35:a8:db:8d:82:80:fa:57:92:
ae:5e:db:ec:5c:69:51:17:e6:73:96:94:d5:ae:f6:
22:6a:03:62:77:d3:f9:e8:72:bd:d4:41:82:7f:33:
38:bd:43:91:78:c3:e2:fc:33:05:00:c2:de:e2:13:
e8:65:81:88:e8:09:3d:21:93:f4:69:12:e8:13:94:
1b:db:d9:c8:fb:64:5f:b9:6b:32:f2:d0:15:5d:14:
3f:e0:af:5a:3f:ba:81:a1:00:88:44:95:57:b7:79:
33:8f:52:d4:76:5a:fa:d5:21:34:ff:0e:ef:94:9e:
32:3e:87:8b:87:a4:80:21:be:ce:fd:2e:7e:4d:c9:
9c:8b:60:07:76:1c:02:59:51:11:ad:6e:39:05:d1:
8d:94:b5:a2:4f:7f:d0:40:96:ef:25:e8:64:eb:ea:
cb:35:3e:38:c9:c6:6c:9a:85:de:cb:7f:36:cc:63:
af:34:89:25:4c:46:6a:e7:3d:87:97:21:bb:84:74:
2b:93:0b:55:5c:68:ce:2e:99:3e:09:9b:01:27:a1:
ff:48:13:a3:1b:58:a1:0f:59:6d:c4:8c:e0:13:53:
5c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9F:FC:6C:D6:9B:AD:30:4B:50:55:29:EE:5D:97:3A:01:81:E6:17
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/sp_8bNabrTBLUFUp7l2XOgGB5hc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.62.0.0/16
Signature Algorithm: sha256WithRSAEncryption
af:b7:cc:e8:d0:62:fa:6f:25:e4:a8:28:15:5d:fc:c6:88:1b:
ad:cd:0c:4a:47:5a:a6:63:4c:7a:1e:0e:a9:19:60:b0:dc:3f:
cc:96:a1:64:bb:2c:9c:7c:34:60:45:09:23:28:4a:27:f3:29:
92:2d:b6:78:ae:b1:8f:98:a6:0b:b2:b9:1b:fa:f6:fe:ab:10:
65:5a:dc:eb:d1:8a:d1:12:f4:8e:ab:56:b6:ac:f2:91:ab:c9:
bd:8a:51:ab:9b:04:4a:9a:48:8e:b1:ab:39:75:90:aa:cd:02:
9d:cf:b8:0b:e4:46:a8:23:1c:42:e2:2c:e6:da:fa:0e:54:ad:
1d:15:89:80:df:ac:c9:bb:38:2f:1e:71:8b:bb:60:00:c6:21:
dd:12:73:b1:20:28:e1:bc:8e:cc:a5:25:19:7c:3e:e9:80:12:
f5:2d:d1:9e:64:18:04:82:31:b4:90:5c:bc:25:74:af:79:e9:
b0:8b:7c:ff:73:73:f2:f8:93:c0:33:39:37:05:88:1d:0d:78:
9f:3d:35:cf:f0:1e:c7:b8:bb:8d:92:32:08:34:7c:c5:be:a5:
ee:a1:6a:92:83:a2:f2:d2:12:df:8e:0f:c6:a4:af:89:96:27:
1d:c5:a4:00:af:4e:94:3a:63:b9:d3:4a:4f:57:3b:86:b5:2a:
67:33:e6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:05 2023 by rpki-client on console-ams.rpki-client.org