Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6NFMN8tJLiePJ5tb8EjHstjo1QQ.roa
File: 6NFMN8tJLiePJ5tb8EjHstjo1QQ.roa (raw, json)
Hash identifier: eFeplNiiVXERqlA3utLHbFUreXUffwW7QK1csuDTVwA=
Subject key identifier: E8:D1:4C:37:CB:49:2E:27:8F:27:9B:5B:F0:48:C7:B2:D8:E8:D5:04
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C6F
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6NFMN8tJLiePJ5tb8EjHstjo1QQ.roa
Signing time: Mon 17 Jun 2024 08:58:08 +0000
ROA not before: Mon 17 Jun 2024 08:58:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:58:08 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E8D14C37CB492E278F279B5BF048C7B2D8E8D504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8a:35:2c:59:96:b1:99:3c:b6:f5:f3:23:eb:
d5:16:e2:a1:82:a1:30:26:9b:61:00:4f:72:64:24:
be:d7:cb:8b:23:27:b1:94:b9:ab:04:4c:22:56:4a:
8a:75:0a:b8:3e:7f:3c:bd:22:eb:86:51:cd:23:81:
e3:6f:81:f9:91:b4:bc:7d:c2:e3:36:07:66:24:72:
3b:28:e1:14:da:82:7d:ca:cf:87:1d:d8:6b:b4:1d:
8f:62:fd:01:4c:c8:bd:e7:c3:92:79:c8:88:5d:31:
3c:78:77:9e:2b:a8:8e:5f:23:89:78:d7:03:7c:14:
8b:8e:8a:fe:54:aa:28:e5:6e:7e:8b:2c:43:12:88:
1d:d1:89:ec:6a:7f:c0:61:79:61:90:09:1e:55:3f:
2d:2c:9f:23:4a:17:c2:df:73:62:1b:e6:2a:78:57:
f1:d4:a0:e9:1f:1f:a3:a6:d8:6e:e9:27:e9:fe:4e:
db:50:22:7e:be:94:66:f9:15:78:1c:dd:97:99:53:
2d:93:22:a2:c0:8d:14:b0:ba:69:2d:87:54:b0:a0:
7f:70:0b:ee:b3:ca:53:88:a5:e2:40:8e:77:30:20:
13:0f:da:23:8d:37:a1:a0:43:68:82:04:cf:95:85:
b4:5e:54:38:73:fa:da:7c:53:31:56:d5:dc:6a:7a:
da:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D1:4C:37:CB:49:2E:27:8F:27:9B:5B:F0:48:C7:B2:D8:E8:D5:04
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6NFMN8tJLiePJ5tb8EjHstjo1QQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:40:e1:b4:49:50:88:c7:c2:4f:76:70:6a:59:93:ae:d0:c3:
91:11:fc:09:9e:ca:75:ba:22:c8:72:44:91:c0:69:31:16:05:
dd:74:a8:e9:38:1b:10:5c:e9:b6:4a:6b:8d:cc:d0:7e:44:c7:
fc:b5:71:f3:24:8a:ba:c8:9c:a9:ec:f5:72:4b:d1:57:89:4f:
65:a9:3a:95:20:1e:26:bb:22:08:96:a2:9c:f2:e1:fe:23:68:
a1:38:e9:f4:ad:ad:93:f4:9b:ff:07:aa:ea:24:5a:17:1c:0d:
82:58:c8:92:50:81:36:d7:ab:93:90:43:26:1b:7e:99:08:7c:
4b:ca:95:10:e5:97:d5:7d:01:06:e1:d3:a1:d6:1a:a1:9f:00:
b9:0d:42:d9:fe:de:d1:a6:7f:b0:68:2d:ea:de:f6:d8:91:c1:
96:4b:2d:0f:9b:42:6e:7f:a3:c4:96:50:8e:9d:b5:81:92:96:
8a:b7:28:71:71:6c:e5:63:a7:33:b4:26:44:bc:fe:50:4b:96:
90:e8:c7:bb:b5:b8:81:2a:6c:d1:e1:21:a6:72:4d:a9:71:e4:
89:9c:f3:b7:e5:a2:a8:bf:0d:4e:c1:80:66:8f:61:71:43:de:
a0:8f:2e:4c:30:b3:1a:27:ea:60:d1:ac:c7:72:83:5b:ec:93:
8c:79:9e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:09 2025 by rpki-client