Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zXZ2am--OMHyzjhQ-z1q5-xLAw0.roa
File: zXZ2am--OMHyzjhQ-z1q5-xLAw0.roa (raw, json)
Hash identifier: b7KLQTLBqklaxdwkLBzcC2kZoH/IZgibufV//m8D1r8=
Subject key identifier: CD:76:76:6A:6F:BE:38:C1:F2:CE:38:50:FB:3D:6A:E7:EC:4B:03:0D
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0786
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zXZ2am--OMHyzjhQ-z1q5-xLAw0.roa
Signing time: Tue 29 Sep 2020 09:59:59 +0000
ROA not before: Tue 29 Sep 2020 09:59:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1926 (0x786)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 09:59:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CD76766A6FBE38C1F2CE3850FB3D6AE7EC4B030D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e8:38:6e:9c:99:75:e7:2e:eb:34:af:1e:42:
81:30:6f:b9:7f:1c:73:1f:10:e2:67:50:7a:80:f5:
4f:99:29:9c:21:69:3b:67:00:18:fa:e5:81:72:5f:
d0:1a:1f:a6:7e:6b:dc:40:d6:81:0f:35:7c:bf:32:
bc:7c:5c:a8:4c:38:1c:52:f5:3d:18:2b:22:67:80:
94:85:ad:9f:ae:66:15:a5:b2:39:93:05:0b:80:e0:
30:43:27:cc:6b:47:22:00:36:43:c2:a0:84:55:9b:
44:da:47:a8:75:36:e1:6d:81:df:56:c3:d1:4b:63:
e4:a0:06:da:53:c5:16:e1:b9:59:f1:f0:f9:3e:2b:
e3:90:fd:ac:73:cd:99:b2:2c:9a:aa:20:1e:eb:79:
9b:fe:10:7b:7d:a7:f0:82:32:ef:0b:02:ee:2b:b6:
48:a4:d8:cf:c1:03:a3:a3:76:25:2d:de:67:73:a6:
9b:93:eb:58:31:92:62:52:fd:18:1e:ee:c7:4f:95:
12:f0:57:1c:06:1d:86:f8:83:7b:12:2a:fe:86:98:
5c:7e:a1:d1:c8:33:81:bb:9c:b2:37:15:a0:f7:e1:
33:3b:79:b4:e9:d1:4c:08:de:aa:2d:74:8f:de:d4:
f9:3d:8c:82:37:e9:19:84:2b:73:5b:52:e6:7b:d0:
7d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:76:76:6A:6F:BE:38:C1:F2:CE:38:50:FB:3D:6A:E7:EC:4B:03:0D
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zXZ2am--OMHyzjhQ-z1q5-xLAw0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
59:78:81:aa:47:ed:96:b0:32:fe:db:14:b2:22:d1:db:ac:3a:
06:31:c0:a7:0f:26:ff:84:4d:5b:ff:28:ce:57:fa:10:73:b6:
0b:08:aa:46:e0:1b:76:91:97:53:5a:e4:07:5e:db:ef:c5:ef:
8d:7c:8c:da:57:63:ad:c9:4c:82:c9:ba:ba:e1:1a:13:9e:b2:
fa:04:88:d2:91:b0:4e:be:96:87:58:68:22:ae:78:ad:01:3e:
31:9d:c5:be:24:22:2e:90:ed:11:7b:3a:31:27:d5:84:cd:a6:
00:4f:77:b8:ef:2a:ce:9a:7d:11:02:01:6f:3c:25:10:a8:7d:
4d:ca:79:ef:a3:09:ed:48:29:97:91:55:7f:e1:6f:3c:f9:c1:
09:50:b6:76:2d:37:27:62:f7:90:d6:63:aa:16:2c:5b:60:07:
be:7f:2d:65:d3:99:f2:d7:05:9e:ff:18:f6:9a:7c:09:96:b3:
e3:99:b4:cc:0c:ec:f4:72:f1:76:b6:1e:a6:d0:0d:52:89:fa:
db:ff:07:4c:ee:dc:4e:db:76:31:cc:21:d9:4f:c7:3e:c8:0e:
2c:8d:79:bc:64:b1:ee:25:3c:0f:84:c0:15:90:c3:c1:7c:7e:
1d:ca:f7:28:aa:e3:1d:01:a1:e2:40:87:c6:35:ad:79:af:56:
9e:23:94:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org