Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/d5NLrkXN8WDmLTTqVSY69m75fkk.roa
File: d5NLrkXN8WDmLTTqVSY69m75fkk.roa (raw, json)
Hash identifier: SJ53UOcNAFq1pz+23yyRN1dyQ1Cn+l2hlNJjZgrbkHY=
Subject key identifier: 77:93:4B:AE:45:CD:F1:60:E6:2D:34:EA:55:26:3A:F6:6E:F9:7E:49
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08D7
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/d5NLrkXN8WDmLTTqVSY69m75fkk.roa
Signing time: Sun 07 Feb 2021 11:53:51 +0000
ROA not before: Sun 07 Feb 2021 11:53:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2263 (0x8d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77934BAE45CDF160E62D34EA55263AF66EF97E49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ca:28:8a:81:f2:80:1f:cb:d3:c0:2e:db:4c:
70:8b:a6:f8:aa:64:9c:88:38:35:7c:64:d8:6c:4a:
f7:07:02:47:72:31:59:c0:55:6e:35:ca:f5:e9:44:
e9:f6:6a:40:46:44:0d:31:ec:33:e2:cf:63:25:d5:
7b:6f:f0:18:41:38:35:10:f0:8f:58:8b:da:06:24:
fe:2c:85:02:ff:7f:86:ee:9a:f7:12:3d:f9:b8:b5:
12:25:21:37:a7:4b:ad:24:bb:b2:4e:a6:58:85:0d:
b1:7e:9d:a5:e9:d9:ac:2f:6d:ec:a6:26:45:60:d8:
9f:9d:49:e6:8c:2c:b6:b0:b3:13:49:a0:54:d2:c4:
9e:3e:b4:94:ff:b9:e8:d1:52:7f:95:c2:dd:63:c8:
40:33:93:4c:c2:03:93:ee:ce:ab:1d:16:98:27:f3:
a4:28:c0:79:e4:23:c8:0e:dc:fd:30:37:6a:83:2c:
5f:02:bd:a8:30:21:65:e0:df:92:dc:d2:59:2f:2f:
d8:7f:e4:7c:9b:58:47:12:7d:bd:84:b7:a8:7a:ee:
0c:e9:52:a1:91:7c:02:72:25:ef:b4:2a:63:07:b8:
a6:29:2b:83:2b:5d:61:ab:cf:f8:27:2d:17:23:04:
20:54:e0:20:a4:d3:29:42:85:09:16:af:b0:ac:46:
bc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:93:4B:AE:45:CD:F1:60:E6:2D:34:EA:55:26:3A:F6:6E:F9:7E:49
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/d5NLrkXN8WDmLTTqVSY69m75fkk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
77:f2:90:a7:d5:f4:e4:9c:01:49:bf:bb:5d:5e:91:13:e8:65:
ad:40:5f:44:d1:2c:6a:53:53:95:8d:89:66:49:91:21:73:67:
70:5f:1c:14:1b:73:45:8d:99:18:c8:80:c3:b1:1b:53:72:c3:
da:3d:c8:b7:de:80:17:cb:60:11:de:99:d4:de:1c:2e:9b:d8:
86:0c:e4:0f:16:03:0d:65:73:22:d6:b4:1a:5e:28:bf:91:64:
bf:4c:86:8e:e8:e3:bc:a3:9c:44:3e:53:30:85:b0:ac:2f:32:
e3:0d:fa:47:4a:dd:96:cc:53:23:d0:2c:85:2f:61:42:37:1c:
de:90:69:19:fa:17:6d:10:2a:42:eb:d0:fd:f1:87:7a:d7:35:
47:10:e5:7e:8e:a5:69:86:7b:f4:c4:5e:f5:c8:71:88:1f:fb:
4f:98:b8:ae:f1:7a:28:8e:55:7f:34:7c:b3:3b:9b:70:e8:33:
25:ca:5b:80:ac:ea:ca:fe:7a:ba:35:64:fb:de:47:a0:bd:54:
ff:ef:c5:4b:65:85:a9:ab:a7:61:32:34:e3:64:c4:a7:d6:b3:
df:0e:cc:ab:c0:95:43:5a:4d:aa:9e:42:8f:34:f6:f4:06:86:
bc:9f:33:e7:4d:7b:2c:84:09:35:6e:6f:46:2b:16:08:57:73:
80:c6:3c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org