Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/HzXh8JBUUPyImlOeBgwdfmuLlrY.roa
File: HzXh8JBUUPyImlOeBgwdfmuLlrY.roa (raw, json)
Hash identifier: tQiO6hnL/BEx0SLyIfFsIQxo1PwY7uS/SKQphW9qcHQ=
Subject key identifier: 1F:35:E1:F0:90:54:50:FC:88:9A:53:9E:06:0C:1D:7E:6B:8B:96:B6
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B80
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/HzXh8JBUUPyImlOeBgwdfmuLlrY.roa
Signing time: Fri 01 Sep 2023 09:59:52 +0000
ROA not before: Fri 01 Sep 2023 09:59:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2944 (0xb80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1F35E1F0905450FC889A539E060C1D7E6B8B96B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:27:9f:93:09:fd:ae:60:6c:4f:5b:0c:de:89:
43:ce:c1:2b:c7:2a:fb:12:40:e1:90:23:b9:6a:1d:
8b:aa:54:2d:ab:77:31:58:12:6c:7d:21:ce:02:fb:
93:e8:f1:69:d1:d2:f3:6c:e5:00:53:3f:c3:c4:ed:
fa:15:0b:26:5d:b4:4a:23:2f:6d:cc:f6:c3:75:fa:
43:13:4f:53:59:11:7b:de:49:5b:75:7c:0d:f7:fb:
40:ed:92:cf:86:b7:10:bd:72:b5:1c:38:02:78:a0:
66:de:ba:2c:30:7e:17:9b:b3:02:d1:0b:99:6a:cd:
40:89:6e:c7:56:e0:d1:4c:c3:02:a3:f6:f0:c7:7f:
17:c3:de:58:f5:a0:ee:d1:ff:c0:6c:c3:90:0e:79:
46:d6:e1:4d:16:09:db:7e:e4:70:f4:d5:7e:b6:87:
15:02:ae:d4:d2:34:70:2b:e3:03:05:29:a5:b3:d9:
4a:59:49:33:b5:22:70:e2:84:c9:80:cb:11:25:f4:
ef:34:b7:c2:38:e8:ef:b6:d6:70:f0:d3:04:8c:20:
9a:77:4a:76:f0:b6:b9:a0:53:a7:c5:f3:cd:8f:a6:
18:3a:52:04:7a:f1:c5:23:64:07:94:f9:f0:21:5b:
40:5b:93:90:6f:92:67:99:d4:a0:b0:4b:11:e2:08:
7a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:35:E1:F0:90:54:50:FC:88:9A:53:9E:06:0C:1D:7E:6B:8B:96:B6
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/HzXh8JBUUPyImlOeBgwdfmuLlrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
28:b7:a4:96:29:e3:36:24:26:dd:f4:ac:06:a7:d8:6b:b8:8a:
b4:7e:9f:ec:14:84:78:f8:ee:42:37:ec:d3:dd:c8:ee:ff:2a:
87:a5:c0:eb:ba:c1:d8:f5:40:ef:52:c8:d7:12:88:15:94:5b:
f0:e3:6c:17:72:a4:39:75:d3:d0:4f:63:e5:89:af:3b:a9:41:
91:95:9a:86:1b:e9:68:c9:d2:a1:ab:f4:77:d6:17:ab:4f:fe:
2d:a2:c7:87:7b:d9:ba:3c:3c:19:46:1e:9c:a3:4c:b7:73:34:
31:6d:a4:00:e0:3a:c8:76:2b:97:a7:9c:d4:63:4c:ef:6e:a4:
19:21:df:71:61:34:a5:89:e3:c1:90:12:f7:66:da:07:5c:18:
2c:3d:09:6f:2d:d7:fd:bb:e6:30:d2:28:e8:58:45:02:db:8f:
00:8e:4b:94:23:0d:40:6c:19:95:57:65:cb:22:b1:ed:5e:10:
83:be:9e:d0:3b:cf:66:9c:37:4d:02:6b:c5:11:00:3a:d7:76:
40:85:6e:74:13:2a:17:06:b9:3e:59:65:d0:80:f7:12:df:cc:
c4:f0:89:f1:8a:e1:95:f2:2f:90:f5:24:8a:d8:52:a5:07:48:
6d:bc:9e:30:77:bd:f0:d5:e1:a9:60:93:ad:52:ed:12:7c:93:
43:f9:c8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:28 2025 by rpki-client