Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/_N1TVeRSM4QhMz68i7acPJskDI8.roa
File: _N1TVeRSM4QhMz68i7acPJskDI8.roa (raw, json)
Hash identifier: KbmY+1RPsXu/fSxyGXQjCRE+lOH8++kQmwBVrYpnQkk=
Subject key identifier: FC:DD:53:55:E4:52:33:84:21:33:3E:BC:8B:B6:9C:3C:9B:24:0C:8F
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 094C
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/_N1TVeRSM4QhMz68i7acPJskDI8.roa
Signing time: Wed 29 Sep 2021 02:50:34 +0000
ROA not before: Wed 29 Sep 2021 02:50:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9264
IP address blocks: 2001:c08::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2380 (0x94c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 29 02:50:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FCDD5355E452338421333EBC8BB69C3C9B240C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:20:a2:dd:d9:62:23:81:6f:c8:27:b7:76:ac:
07:33:51:eb:54:f1:3b:1d:fe:00:9f:3d:50:bb:f8:
a2:19:f3:86:e4:f1:69:a3:11:8e:01:eb:16:94:d3:
59:6e:15:31:c6:f6:bf:19:8f:9c:21:cc:da:23:4e:
b9:66:e9:1e:30:5b:f1:2f:c1:c8:09:af:d3:0a:ae:
1d:4c:26:a1:ec:29:fc:32:f1:1b:e8:d0:f7:3e:e2:
57:1c:03:e8:10:d2:16:47:a0:db:2a:f5:35:c4:25:
a7:0e:6e:57:25:ae:cd:95:08:2e:8e:3e:bd:bb:e2:
a8:78:aa:39:11:98:ac:5b:5a:e5:b0:de:ff:19:98:
d6:d5:b7:b7:73:cf:6f:16:d9:81:15:91:9e:07:84:
99:9c:1d:38:bb:c1:e5:df:9c:ec:ca:b0:9c:68:8f:
9c:3f:cc:80:d0:17:9d:85:5a:cc:8f:20:7e:1f:2a:
21:46:4f:54:a0:ce:73:17:c1:77:6a:39:78:67:4a:
52:b7:0b:1f:1d:23:fa:c9:1a:9b:4b:5a:f9:27:ee:
64:20:4d:df:97:d4:d3:59:0e:87:6e:68:c3:4f:a5:
b3:06:1d:2c:d1:91:3f:00:e7:37:f9:52:0d:09:27:
c8:e2:c7:fa:e9:82:be:8e:e7:67:7d:12:71:5f:1b:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DD:53:55:E4:52:33:84:21:33:3E:BC:8B:B6:9C:3C:9B:24:0C:8F
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/_N1TVeRSM4QhMz68i7acPJskDI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:c08::/32
Signature Algorithm: sha256WithRSAEncryption
be:a6:33:41:50:16:b1:70:50:15:ae:4b:a6:67:20:29:e3:db:
69:82:58:f8:29:23:ad:08:be:f7:19:d8:c1:e5:07:1d:7a:cb:
87:ec:7b:36:31:26:06:ae:30:85:83:ef:0b:21:7c:34:93:8f:
fa:8d:7a:43:7c:51:a6:b4:59:9d:ab:ca:f8:26:0f:e2:ff:35:
50:2f:e9:5a:55:6c:1c:fc:e0:7b:ad:ec:08:4e:db:42:30:19:
08:bb:ed:25:f5:79:6d:e0:e3:db:b2:aa:19:3b:f9:82:6a:a2:
d6:a9:f7:84:82:ec:59:80:10:d8:1c:01:96:df:e7:3d:69:78:
0a:7f:da:44:6d:1c:27:af:17:e2:b9:4a:78:da:d3:74:a5:e9:
ea:de:25:07:d5:f3:3e:95:74:61:3c:c0:6a:fd:d3:36:4d:fd:
8b:21:23:2c:94:85:1e:2b:fa:af:c5:ed:e6:22:4e:83:6f:8b:
a1:1f:dc:60:d7:95:32:30:6d:b0:7a:4a:ba:32:8b:e9:5f:e7:
76:58:5f:4e:e2:fe:b5:cd:f5:88:14:83:d5:c1:cc:25:53:1a:
57:56:21:cd:c6:3a:9d:97:77:97:18:16:86:aa:7d:71:67:53:
69:bf:75:1c:cb:3f:61:47:f4:0b:68:fa:8f:80:3b:45:ca:7b:
ea:db:95:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:48 2025 by rpki-client