Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/M76bLMGdHXLagkz3eY8p-aQrOAY.roa
File: M76bLMGdHXLagkz3eY8p-aQrOAY.roa (raw, json)
Hash identifier: GRp93e3pM1SB6zgDVwURm6C7UBnHCAIw/5uFuoO1qKs=
Subject key identifier: 33:BE:9B:2C:C1:9D:1D:72:DA:82:4C:F7:79:8F:29:F9:A4:2B:38:06
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0C21
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/M76bLMGdHXLagkz3eY8p-aQrOAY.roa
Signing time: Fri 26 Jul 2024 07:58:41 +0000
ROA not before: Fri 26 Jul 2024 07:58:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9264
IP address blocks: 202.140.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3105 (0xc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Jul 26 07:58:41 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=33BE9B2CC19D1D72DA824CF7798F29F9A42B3806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:86:e7:95:0f:f0:94:a7:2d:96:a9:46:39:
07:a2:69:87:a4:90:a3:f4:8b:fe:94:a8:b3:27:ec:
b7:fb:b7:32:40:1c:30:b1:e1:f0:aa:a6:40:e4:c5:
65:41:32:58:ce:bc:5f:4e:21:fd:20:80:ae:17:2a:
b1:37:a8:e9:c3:46:54:b9:4f:1d:35:16:58:67:ff:
76:28:57:f8:56:b9:83:8d:bc:0d:69:24:1b:2c:83:
af:3d:ae:2e:4a:a3:0c:18:8a:d4:ed:1a:b3:02:0e:
c2:86:2d:68:d2:57:d7:34:d4:d5:45:da:88:60:c0:
dd:41:23:50:2c:13:a9:dc:ac:f4:13:df:97:09:da:
c3:90:9f:37:e6:6f:fb:ab:51:80:87:48:be:eb:6b:
ff:1c:b8:43:b6:6a:cc:36:4e:e7:3e:e4:22:fe:31:
e9:7c:87:d9:b1:c0:58:5b:ac:d6:e1:0c:c3:f5:0d:
90:f6:2e:f1:38:c8:f8:9a:7a:41:2e:26:71:87:06:
70:ee:2f:ff:0d:e2:78:51:37:89:90:14:09:55:2a:
a3:ea:f9:a9:55:ee:6a:de:33:f4:61:98:a6:92:e3:
cd:e3:52:32:20:ec:e2:70:12:d5:d1:ef:e5:c5:6e:
b2:b9:ad:f5:74:2b:e9:39:26:9b:38:49:be:20:e1:
75:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BE:9B:2C:C1:9D:1D:72:DA:82:4C:F7:79:8F:29:F9:A4:2B:38:06
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/M76bLMGdHXLagkz3eY8p-aQrOAY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.140.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b2:7b:36:80:63:6b:b0:06:41:6b:34:2a:b4:54:67:e3:78:a3:
4f:cc:33:40:ae:83:78:42:da:9f:a8:96:2a:6c:3e:dc:9f:0a:
aa:5a:0b:d9:ab:01:44:32:10:1b:ed:b9:07:31:0d:fc:43:48:
54:26:8c:91:9e:06:90:58:2e:92:0b:99:26:3e:42:60:e0:41:
30:3c:aa:a4:d0:48:fc:ac:a0:fb:63:cb:f3:75:1b:a6:fd:0e:
4c:7f:ea:8e:ff:63:45:6c:33:60:a4:a4:da:69:66:93:d8:06:
10:a8:a4:66:8d:17:67:43:56:0c:ce:ff:4e:e2:29:6f:9f:55:
17:8e:10:d2:84:13:b9:68:96:62:a2:e5:5d:8b:d7:57:23:3a:
e6:cd:cc:ef:c6:71:79:2b:16:b3:93:e6:4b:a6:50:91:df:fa:
bd:f1:7f:cf:f0:97:5a:d6:eb:e0:33:60:fc:af:cb:c2:77:69:
01:25:46:a6:52:e0:bd:b1:dd:75:65:2e:93:8e:b6:a9:72:ab:
d5:0e:66:18:3a:03:ec:1d:92:39:2c:51:53:10:f2:21:da:71:
d3:3e:d0:fb:78:94:ce:93:7e:be:16:74:6c:da:e4:a0:1d:2b:
b2:2c:57:16:5b:34:6e:e9:30:5f:9e:62:93:bb:e0:23:61:35:
f2:b2:46:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:32 2025 by rpki-client