Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/xbKyj4oqHraSaDfkThfgrYzMPuI.roa
File: xbKyj4oqHraSaDfkThfgrYzMPuI.roa (raw, json)
Hash identifier: Kfo0zRj9Bvbfqf9aLNqEJnjfGuOqsuS8kIYw33mxu3Y=
Subject key identifier: C5:B2:B2:8F:8A:2A:1E:B6:92:68:37:E4:4E:17:E0:AD:8C:CC:3E:E2
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 08D8
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/xbKyj4oqHraSaDfkThfgrYzMPuI.roa
Signing time: Sun 07 Feb 2021 12:35:11 +0000
ROA not before: Sun 07 Feb 2021 12:35:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 61.56.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 7 12:35:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C5B2B28F8A2A1EB6926837E44E17E0AD8CCC3EE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f2:05:48:0f:19:39:42:60:bc:e2:02:3e:37:
98:a7:a6:3e:66:3c:64:df:1a:3a:28:e6:28:45:e3:
55:72:9c:de:d4:cb:3b:10:be:a5:42:1b:00:ed:96:
0c:bb:65:bc:62:63:c0:23:bc:32:ed:93:53:d3:6d:
0b:46:d6:99:f1:1b:b2:de:94:a8:d6:d1:48:a4:28:
ed:c4:68:71:c9:b4:b9:df:17:64:ec:75:28:1d:c7:
2f:35:4d:ed:66:9a:5e:58:36:21:39:66:c4:08:b4:
82:d6:fc:67:03:9d:7c:c7:ca:3f:49:ce:57:42:0b:
27:cd:c0:b0:08:95:ba:c4:56:ea:56:fc:54:94:4a:
a2:88:85:29:39:fe:8b:0e:32:0f:88:9e:9e:86:5d:
7e:a6:d6:a5:a2:07:1c:36:07:41:d5:80:14:c2:3d:
6c:30:91:03:72:c2:0b:a3:48:84:ae:a9:6d:18:25:
ec:06:50:24:c5:7e:20:32:85:d0:2b:df:b5:a6:74:
ae:a6:40:d2:2c:e9:31:8d:c4:88:5a:5c:b3:6b:c5:
1c:56:78:42:e9:40:a2:72:6c:c4:5c:8d:aa:da:37:
b8:60:62:1e:a7:fb:31:59:2e:b8:cb:c7:92:45:d6:
31:59:a1:c3:e6:d1:3c:06:52:9b:54:ae:48:45:ef:
ef:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B2:B2:8F:8A:2A:1E:B6:92:68:37:E4:4E:17:E0:AD:8C:CC:3E:E2
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/xbKyj4oqHraSaDfkThfgrYzMPuI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.128.0/19
Signature Algorithm: sha256WithRSAEncryption
67:fd:43:8d:b4:59:9c:d1:b8:27:72:06:25:ed:b3:c5:c5:5c:
b3:a3:1e:81:a8:3b:2e:c9:bd:7a:3f:18:61:cc:ed:3e:d1:5f:
10:08:67:c9:ec:7a:d1:77:96:62:bb:e3:5d:0c:75:c1:89:92:
18:2c:89:92:0d:80:c4:9c:cc:3a:a7:da:2f:4e:ad:c2:b6:36:
ff:ab:24:7d:5a:92:c6:08:87:12:96:a1:96:d2:4f:77:2d:52:
e0:cf:c4:96:c1:52:50:fc:83:14:c5:f1:18:3b:a0:cc:00:97:
32:c6:d9:46:a1:41:68:24:a7:02:28:80:0a:72:ef:f8:e0:f3:
24:21:d0:98:41:15:47:c2:38:d3:b1:64:2b:ba:25:04:25:59:
85:a4:f1:cf:e7:0c:eb:52:ae:d4:d1:cb:db:65:cf:79:04:b7:
85:26:b2:66:b4:4c:20:31:a5:ee:31:61:3a:17:87:e5:0b:07:
c9:96:7a:e5:73:17:cc:5a:e9:76:c2:65:99:7d:aa:24:a7:ef:
af:c4:cb:cd:6f:dd:c0:79:68:aa:ce:c5:b2:3e:6f:d3:ea:67:
ce:b0:53:5a:c0:36:18:a7:2c:dd:3c:f2:fd:75:6c:48:22:df:
d1:25:23:bf:2d:df:70:2e:a8:40:ed:21:1a:9e:6b:a4:f8:d4:
a3:58:fc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org