Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/xXra9GwAdawWsNOwZcM8bvzdaMU.roa
File: xXra9GwAdawWsNOwZcM8bvzdaMU.roa (raw, json)
Hash identifier: aAjQ3+78KsPQip+YRqpMriXxe3OMAMOyvUmyMProNMY=
Subject key identifier: C5:7A:DA:F4:6C:00:75:AC:16:B0:D3:B0:65:C3:3C:6E:FC:DD:68:C5
Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Certificate serial: 084D
Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/xXra9GwAdawWsNOwZcM8bvzdaMU.roa
Signing time: Fri 22 Jan 2021 08:01:22 +0000
ROA not before: Fri 22 Jan 2021 08:01:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 43.248.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2125 (0x84d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Validity
Not Before: Jan 22 08:01:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C57ADAF46C0075AC16B0D3B065C33C6EFCDD68C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ff:43:ae:67:2e:05:7d:e9:b4:7b:c5:72:ff:
f7:3d:c4:5c:72:0d:82:f7:fd:2a:83:ff:66:34:ba:
22:01:c3:92:57:2e:60:05:8a:4f:59:1a:bf:ac:99:
04:bd:1d:47:66:d7:6e:bf:33:29:04:a3:39:67:a3:
98:02:c3:81:b9:d6:a5:3d:e4:91:22:b5:8b:e1:5f:
b0:19:c9:61:d7:a2:c7:0e:3b:1a:eb:38:16:3d:f3:
3a:56:ff:27:95:a4:20:f1:a8:99:a3:13:a3:77:3d:
fe:1f:e3:25:2e:f5:4c:6f:51:c2:65:18:2f:d5:c2:
60:c5:c3:ec:b2:fd:06:ea:60:b0:f4:37:99:66:da:
d9:11:37:cd:f8:c9:35:9f:33:7c:8b:f8:3d:4b:d0:
42:e4:a9:e1:4c:07:91:85:93:f0:ea:d0:94:a4:76:
c9:fe:74:4e:bf:32:f5:c7:a2:19:65:94:2f:ca:a9:
c5:bf:48:ed:ad:cf:02:35:41:57:fe:5b:28:95:9b:
0d:5f:56:69:43:cd:7b:90:24:02:9a:3f:65:eb:f6:
e2:8c:c1:6a:39:04:6e:7a:f4:16:b7:9d:5a:85:b9:
4d:2d:43:86:ab:44:d8:34:f4:d1:2b:3e:1c:d0:79:
b9:0d:79:bb:fb:31:0f:77:48:7d:50:b0:eb:63:bd:
17:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7A:DA:F4:6C:00:75:AC:16:B0:D3:B0:65:C3:3C:6E:FC:DD:68:C5
X509v3 Authority Key Identifier:
keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/xXra9GwAdawWsNOwZcM8bvzdaMU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.248.16.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:95:8b:dc:64:f2:a2:7d:ae:4c:43:85:0f:ca:31:4a:2c:62:
44:ab:32:27:bb:71:30:20:8e:cd:8b:f2:ee:dd:b6:ff:c4:70:
de:9d:d2:5b:10:1f:f4:97:6e:a4:41:f8:73:a3:0e:40:44:b2:
78:13:80:d7:e7:51:b5:fc:37:43:25:34:24:a6:5e:6a:4e:37:
7e:c5:56:8a:55:9e:83:b6:0b:16:78:40:84:03:9e:a1:e8:59:
23:a7:a4:7a:ef:93:93:b6:e9:f0:f7:6b:74:72:7e:02:6c:f6:
a3:f5:e7:a2:74:69:e6:87:6b:cd:95:f4:c1:d2:fd:3f:f7:fe:
a4:94:aa:8e:65:11:78:cf:fc:a4:39:51:5e:bd:18:a8:cb:af:
f7:1e:4d:c5:0b:e2:06:be:d9:c2:63:75:dd:5b:8c:3d:8f:df:
64:d3:85:c7:ea:12:32:68:2f:56:1c:6c:35:d4:50:6d:c2:50:
1c:3e:57:77:24:f5:77:fc:14:17:f0:6f:8a:1e:a5:f5:57:5f:
37:72:51:e8:7f:23:cd:88:4b:49:0b:64:a2:fa:39:b2:06:e9:
24:33:af:94:9f:48:8e:a8:1c:cc:c9:06:5b:c2:69:3e:0a:ad:
5b:06:a2:67:27:cb:19:ef:17:d0:28:19:a3:02:01:21:da:99:
43:5d:fb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:24 2025 by rpki-client