Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xi7YbDUHda9hrtPD0JAUbHEvzbU.roa
File: Xi7YbDUHda9hrtPD0JAUbHEvzbU.roa (raw, json)
Hash identifier: yodCeWrqxE22SVoj/3WgAt+n+eRAavyrb1vf+903jMA=
Subject key identifier: 5E:2E:D8:6C:35:07:75:AF:61:AE:D3:C3:D0:90:14:6C:71:2F:CD:B5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B04
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xi7YbDUHda9hrtPD0JAUbHEvzbU.roa
Signing time: Sun 07 Feb 2021 12:59:38 +0000
ROA not before: Sun 07 Feb 2021 12:59:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 223.26.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2820 (0xb04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5E2ED86C350775AF61AED3C3D090146C712FCDB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:aa:90:a4:5b:98:2c:32:e6:5e:87:4f:3d:7f:
81:c0:69:da:ba:be:a8:ff:87:b9:82:1c:cf:dd:6d:
f7:c4:ac:36:2a:60:61:45:95:c7:b4:aa:3d:93:a7:
6e:b4:ef:2b:43:62:8a:5f:54:a8:8c:1d:01:41:f0:
28:66:f7:b8:ca:29:2a:e6:3c:a3:ff:46:46:cf:e4:
20:20:74:5d:95:61:c4:bb:42:98:45:f5:54:30:cc:
29:47:3d:2d:2f:44:58:87:af:57:b5:4e:3d:8a:31:
7f:28:00:88:79:c0:40:5b:ae:b5:bf:0f:16:b3:cf:
50:ac:f4:f0:dc:2d:69:8d:39:11:5f:30:68:20:36:
d2:ac:ca:69:e1:ab:63:f6:4c:19:90:0e:df:cd:6c:
6d:f6:e1:dd:5f:89:31:3a:2b:da:c8:76:02:67:54:
99:b9:a5:da:0d:1d:ef:fd:68:0a:f0:85:6a:31:53:
47:98:85:16:96:71:bf:eb:3a:c2:cb:8e:f5:1c:e7:
9e:7a:e4:66:c9:ff:62:11:f1:ac:89:56:da:0e:4a:
86:ce:0c:be:f5:f4:af:0c:66:d1:10:a1:6f:07:c5:
92:5c:3d:d7:b8:69:72:ca:fe:be:19:1c:d7:df:b7:
bf:42:36:f0:1c:14:df:e4:33:eb:44:7e:de:47:dd:
a1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2E:D8:6C:35:07:75:AF:61:AE:D3:C3:D0:90:14:6C:71:2F:CD:B5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xi7YbDUHda9hrtPD0JAUbHEvzbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.96.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:f2:28:e7:5e:72:0b:a2:04:17:6a:d8:d9:ea:63:59:76:a1:
1a:ad:ef:e8:00:75:07:a7:88:2f:34:6a:dc:9e:19:90:c1:60:
7d:1f:a8:42:cb:ca:17:0b:23:75:0f:33:f6:96:6e:3b:f2:5f:
2d:22:47:73:eb:7e:8b:e0:01:52:20:9c:cf:6b:52:ae:b3:1b:
ca:d7:81:29:2d:88:bd:9d:2d:dc:7c:07:34:d7:b5:82:6b:ab:
58:a7:6d:d6:34:7b:19:41:d3:50:01:0f:e2:69:d0:16:16:37:
e3:37:85:99:13:05:7f:88:0c:f1:95:23:c1:c1:3c:e9:be:ea:
94:c6:a1:65:d8:4d:f4:f8:69:2d:44:a1:59:94:36:d9:66:c9:
54:38:7f:a3:ac:f8:df:24:1d:f8:9f:d4:41:ac:49:f6:74:c0:
87:1c:71:02:56:d1:af:42:60:cf:ae:a3:07:71:0c:2c:aa:ab:
a9:23:80:9c:0e:16:22:2e:94:c7:e8:0b:8b:3d:ed:c1:03:43:
b9:f8:18:74:a3:98:8d:39:20:ab:4d:31:d0:c2:3b:ad:fa:78:
a4:56:ba:be:1f:cd:56:70:23:0e:30:59:26:bb:9a:d8:a7:6b:
29:41:64:ad:e2:4c:fb:1b:75:60:21:75:e4:d7:e2:ed:5d:de:
3e:89:0c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:21 2025 by rpki-client