Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/gh8w17CC1dEb8r0AV_syHttHgiQ.roa
File: gh8w17CC1dEb8r0AV_syHttHgiQ.roa (raw, json)
Hash identifier: prvsEOkJPR9dmTYAWVDGAyTaL9XMTPa1JVlQT+xR2ws=
Subject key identifier: 82:1F:30:D7:B0:82:D5:D1:1B:F2:BD:00:57:FB:32:1E:DB:47:82:24
Certificate issuer: /CN=EAB250D058FACBEB3EA0D16B53865061339074B6
Certificate serial: 0C
Authority key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/gh8w17CC1dEb8r0AV_syHttHgiQ.roa
Signing time: Sat 10 Feb 2024 10:31:09 +0000
ROA not before: Sat 10 Feb 2024 10:31:09 +0000
ROA not after: Thu 23 Jan 2025 15:30:21 +0000
asID: 151188
IP address blocks: 157.15.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EAB250D058FACBEB3EA0D16B53865061339074B6
Validity
Not Before: Feb 10 10:31:09 2024 GMT
Not After : Jan 23 15:30:21 2025 GMT
Subject: CN=821F30D7B082D5D11BF2BD0057FB321EDB478224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cc:4d:13:62:2f:53:ef:54:66:41:f2:69:68:
74:ef:99:e4:4a:83:dc:b1:b5:17:fe:6f:65:a5:b4:
8e:03:be:95:eb:b0:65:95:de:bc:84:4b:5b:54:16:
f7:20:a8:8f:33:cc:fb:f8:a4:59:9e:a9:ac:0a:31:
47:fc:65:a7:57:4f:71:4c:b0:a5:c9:96:22:51:88:
de:8c:1a:9e:e2:30:72:4e:ec:c0:89:c7:78:6d:03:
cc:fc:b2:be:04:34:58:30:18:f1:50:2b:ad:a1:0e:
21:9f:e8:63:7f:dc:78:54:ee:1f:39:94:6f:ec:d2:
d2:52:ed:67:f9:5e:9b:c7:07:1c:88:d2:e0:1b:ac:
92:2d:85:71:f4:f2:c9:d1:62:26:f6:e5:4e:b8:10:
15:4b:82:93:62:65:a7:78:ad:6e:c6:67:94:2a:89:
67:36:0e:b1:41:6a:ad:49:e4:c5:2d:b1:77:4e:3e:
57:e5:38:40:6f:35:be:06:0e:2a:11:2c:93:91:a0:
3c:27:39:9f:1d:9c:a8:c0:91:01:8c:34:c1:30:58:
9c:da:8f:2e:dc:36:4b:e5:cd:6f:f4:3d:79:73:a7:
53:db:68:22:32:0a:26:6e:61:24:91:a7:8e:76:28:
25:10:9c:8c:bb:c3:0d:d6:9b:1b:69:a4:54:d0:24:
d8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1F:30:D7:B0:82:D5:D1:1B:F2:BD:00:57:FB:32:1E:DB:47:82:24
X509v3 Authority Key Identifier:
keyid:EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/gh8w17CC1dEb8r0AV_syHttHgiQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.33.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ed:0c:ee:fc:28:e0:ce:8c:e1:1a:40:5f:c2:72:9e:51:4d:
f1:98:64:a2:d4:15:be:af:d6:43:24:14:55:ae:f5:46:c0:4d:
a7:2b:b4:7e:1c:ac:42:15:bf:72:de:ea:4d:67:3e:a0:73:d7:
6d:af:9f:71:8a:84:bb:c7:96:51:1c:88:41:20:81:be:57:f3:
b7:be:18:7e:b0:0c:10:c1:ec:6b:76:7c:a4:ef:25:3f:27:3f:
65:b6:b4:66:a2:a2:bb:f4:6e:b4:dc:08:ff:e4:05:65:f2:46:
9a:90:d1:4c:60:9d:be:2d:17:76:5a:1e:ee:1c:92:35:a1:dc:
5a:5f:6b:84:0d:8d:09:a4:2c:44:5e:35:30:09:43:15:ae:b9:
cb:64:08:cf:5a:e0:2a:dd:33:f4:2b:c4:68:d4:84:d8:a8:db:
40:25:3e:a9:fb:00:b0:8e:e7:2f:e8:79:5e:a9:3b:18:ec:da:
ac:2d:59:d1:c5:17:70:82:08:af:9b:dd:5f:11:0c:ca:77:33:
0e:62:1c:1c:fc:d9:94:b6:29:62:5f:9a:9c:cf:71:e3:f8:37:
1d:f0:5a:89:0e:ad:10:e7:25:84:91:6b:8d:d4:c3:e9:31:ec:
87:c4:6d:91:de:41:31:32:82:fc:bf:2c:b4:87:d9:13:88:2d:
92:88:e4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:50 2025 by rpki-client