Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Sn5z687MUbZWxSeeFp4nCEEiJqo.roa
File: Sn5z687MUbZWxSeeFp4nCEEiJqo.roa (raw, json)
Hash identifier: s1iZmE/BO6mrPkUkD2ypdtEucrGHnqbnIdjz59Q0p+o=
Subject key identifier: 4A:7E:73:EB:CE:CC:51:B6:56:C5:27:9E:16:9E:27:08:41:22:26:AA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DD4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Sn5z687MUbZWxSeeFp4nCEEiJqo.roa
Signing time: Thu 29 Dec 2022 09:31:54 +0000
ROA not before: Thu 29 Dec 2022 09:31:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 113.21.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3540 (0xdd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4A7E73EBCECC51B656C5279E169E2708412226AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:98:ba:63:55:41:c4:a7:c5:08:b7:61:64:d8:
b7:57:fc:a5:08:aa:79:64:37:77:14:ef:5c:ce:8a:
cd:bc:25:b2:da:8b:87:13:75:fe:69:d4:24:59:3c:
cb:35:51:9e:4d:21:8b:a5:2b:fb:e4:ab:97:96:72:
e6:c3:be:7d:3b:ed:b4:94:97:1a:84:08:39:3c:05:
d2:59:95:73:1c:09:fd:75:09:28:23:59:56:37:81:
b6:04:95:4d:fa:7b:94:a6:fb:0f:54:96:5c:74:41:
9b:27:74:62:13:2c:e0:a3:8b:e8:8b:88:8e:26:69:
14:07:46:22:1e:6d:31:d7:4f:c5:60:45:8b:50:db:
90:eb:e0:74:b0:bd:b0:f3:a3:93:36:66:1d:82:55:
91:7c:c6:e5:3e:c3:24:c5:fe:f8:af:68:9f:73:52:
bf:f9:84:e8:1c:ce:7c:7e:7f:fe:e0:74:7e:97:15:
eb:cf:9c:1d:49:dc:a0:d4:d5:f1:77:ff:92:4c:b8:
08:6b:39:d6:37:da:62:42:05:6e:9c:7a:f6:43:d9:
b5:fe:cc:40:88:44:1b:15:19:f6:fd:4f:c5:35:02:
d2:4d:f5:ea:b4:fa:69:4c:21:f2:5d:cc:57:d4:c9:
b0:49:c9:ca:55:53:d7:b3:66:bf:b8:e5:58:32:08:
82:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:7E:73:EB:CE:CC:51:B6:56:C5:27:9E:16:9E:27:08:41:22:26:AA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Sn5z687MUbZWxSeeFp4nCEEiJqo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.95.0/24
Signature Algorithm: sha256WithRSAEncryption
69:cc:23:14:8e:1c:66:55:4c:c8:15:9f:52:6a:0f:54:f3:1e:
33:6b:af:1b:60:69:e4:c3:f4:86:31:ed:8c:25:43:bd:a5:27:
2b:99:33:6c:c5:08:66:47:1f:11:b6:8c:97:b0:8e:27:0d:d8:
21:2e:9b:3d:9d:b4:3d:0a:b2:15:b6:2b:fc:2d:06:e9:08:67:
6a:c7:83:08:f5:be:68:02:6d:86:49:f4:db:e2:7b:3a:81:7f:
f6:12:2b:46:ed:57:60:ea:5d:4a:16:7a:78:0a:f2:70:63:9d:
1d:46:51:89:e3:09:f9:b1:83:ac:1f:ce:21:b5:ca:95:1c:ba:
1b:1d:76:0d:e9:c3:ae:b4:8f:57:f1:50:63:94:13:03:26:d2:
66:18:a1:3f:d0:3e:42:65:0b:6b:31:f2:d8:fb:86:06:35:45:
7b:b1:c7:d3:f5:0b:68:18:50:b7:42:5c:95:5d:5e:a9:fc:dc:
89:e0:28:58:ae:1e:73:13:97:7e:49:00:ec:ae:c8:ec:02:6c:
9c:09:2d:c4:45:56:f0:23:65:59:ec:f3:c7:d3:ee:78:29:9f:
9e:65:ef:9a:b2:e3:d1:bf:96:e8:8e:7c:6f:ea:79:96:ae:ae:
d1:1b:db:fb:80:38:ae:5f:20:f5:ed:a5:c1:a2:fd:d5:c2:8d:
56:72:9a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:39 2025 by rpki-client