Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/BUjEFMSeyjw7vC5XqdkM1QJpj64.roa
File: BUjEFMSeyjw7vC5XqdkM1QJpj64.roa (raw, json)
Hash identifier: Wygvo7slaw7Y/zMqdRR11l1IXXB3WbDHD7tCqQaZlo8=
Subject key identifier: 05:48:C4:14:C4:9E:CA:3C:3B:BC:2E:57:A9:D9:0C:D5:02:69:8F:AE
Certificate issuer: /CN=461BC0E516022C3C278FC892420705FEB85668D9
Certificate serial: 0B
Authority key identifier: 46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/BUjEFMSeyjw7vC5XqdkM1QJpj64.roa
Signing time: Thu 07 Mar 2024 11:21:39 +0000
ROA not before: Thu 07 Mar 2024 11:21:39 +0000
ROA not after: Wed 29 Jan 2025 15:30:22 +0000
asID: 150769
IP address blocks: 157.15.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=461BC0E516022C3C278FC892420705FEB85668D9
Validity
Not Before: Mar 7 11:21:39 2024 GMT
Not After : Jan 29 15:30:22 2025 GMT
Subject: CN=0548C414C49ECA3C3BBC2E57A9D90CD502698FAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:93:ed:3d:e1:16:12:87:c4:5a:61:fd:76:be:
af:7e:4f:dc:a7:5c:ec:ba:16:2f:5b:a8:a3:60:5e:
8c:b0:ff:a6:6d:bc:ff:ab:d5:14:39:86:0b:9c:2a:
c0:10:3e:aa:80:46:2b:d9:7c:76:a4:80:2f:c0:56:
1a:57:54:50:17:cb:2c:8c:91:2d:27:5a:01:26:3a:
d9:72:59:da:98:21:06:15:bf:4b:f1:84:64:bf:4a:
78:c0:c7:3c:a1:a3:67:ed:1c:9c:eb:06:34:58:e8:
f4:ed:6d:f5:61:41:ad:59:f7:25:1b:01:8c:6e:3e:
bb:e1:d3:6b:60:41:34:36:c7:cf:9f:15:59:74:95:
bd:8a:16:55:0d:8c:ae:0c:b8:fa:40:07:2a:d2:7b:
95:77:bf:40:6d:25:09:35:c8:72:7b:7c:6e:24:3e:
aa:23:79:24:43:17:9c:e0:48:09:d7:c4:50:f6:e2:
04:1c:78:f1:67:26:29:f0:3d:00:2b:9a:e0:4e:c5:
46:65:c6:f9:82:b1:c8:e0:35:a9:a2:c4:c6:09:57:
bd:95:09:04:81:38:a9:19:e6:38:85:17:64:bc:1c:
a6:0f:67:f4:7a:ca:4b:9c:53:53:62:09:b3:dc:eb:
fb:ac:0d:f3:3b:e4:02:4b:50:2a:08:0d:e1:27:56:
4e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:48:C4:14:C4:9E:CA:3C:3B:BC:2E:57:A9:D9:0C:D5:02:69:8F:AE
X509v3 Authority Key Identifier:
keyid:46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/RhvA5RYCLDwnj8iSQgcF_rhWaNk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/BUjEFMSeyjw7vC5XqdkM1QJpj64.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.70.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:2e:86:01:24:0c:4a:02:a5:3c:ea:90:b6:fb:38:1a:2a:32:
fa:51:77:c6:c7:49:ff:f7:32:4e:c1:1f:3d:c1:a8:d8:73:8a:
65:4a:85:43:27:d1:b7:a1:34:14:2b:4b:47:8b:f0:0a:d4:a0:
56:e3:8e:d6:f3:b2:29:3c:50:08:02:68:13:b8:82:fe:dc:70:
c0:15:6c:0e:21:4c:bc:fd:13:74:ba:2e:e9:da:0b:2a:f4:06:
d5:30:bb:43:3f:9c:1f:d8:23:bb:81:41:0b:7a:d5:ba:b4:7a:
78:ea:83:67:23:45:d8:bf:99:9e:cc:f1:05:c5:fe:08:23:11:
61:5d:17:08:c9:4b:d0:c0:4f:6d:25:25:45:62:2a:33:2b:be:
71:52:16:fa:8f:10:e9:64:9e:94:35:1a:ae:50:16:6a:dd:fc:
16:6d:5b:4a:5c:da:b7:74:07:60:67:b8:7b:b6:82:5f:1c:c4:
38:18:19:6f:25:ac:1e:ab:f1:f8:f5:95:c7:10:26:2e:d9:9c:
a2:d2:51:1d:47:f4:03:59:1e:8d:5c:52:cc:1b:11:18:54:13:
fb:4c:22:33:c4:91:33:ba:0c:ef:e4:b0:56:34:c8:b5:e1:f6:
f4:00:0d:ef:6a:dc:ae:8b:d4:d3:1c:24:58:9f:dc:3b:66:a9:
a3:e1:1d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:08:52 2025 by rpki-client