Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/O7JnmraX88MSe4JBI_X75tRfGzM.roa
File: O7JnmraX88MSe4JBI_X75tRfGzM.roa (raw, json)
Hash identifier: AbDRdDWKYyexEzKXsnVVwSk73gXUlf8hXemXnOvybZU=
Subject key identifier: 3B:B2:67:9A:B6:97:F3:C3:12:7B:82:41:23:F5:FB:E6:D4:5F:1B:33
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: 0182
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/O7JnmraX88MSe4JBI_X75tRfGzM.roa
Signing time: Fri 01 Sep 2023 08:30:01 +0000
ROA not before: Fri 01 Sep 2023 08:30:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38047
IP address blocks: 2400:61a0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386 (0x182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Sep 1 08:30:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3BB2679AB697F3C3127B824123F5FBE6D45F1B33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:df:05:49:f9:ca:f4:92:56:24:df:fe:3d:
62:8d:1b:0f:e1:b2:3e:00:d9:e6:fb:19:46:d5:d4:
e7:db:ae:8a:b2:f6:73:4d:fa:7f:39:ce:c6:61:28:
80:8a:8c:59:6e:f1:7d:80:87:ee:ee:68:c2:c7:d3:
1f:45:6b:45:63:a1:a6:78:fe:84:e2:dc:08:73:64:
cc:58:a3:26:82:47:51:9e:70:24:55:35:73:13:68:
f6:14:d8:9d:4f:62:0b:6c:94:23:bc:2c:9e:e9:48:
30:d1:75:3e:7f:87:d5:4b:4c:9e:8a:18:03:80:cd:
d3:dd:24:33:46:c7:92:44:e0:f5:ff:0b:70:ea:1f:
dc:3c:96:fd:df:76:cf:27:4e:f9:72:8d:73:61:2f:
56:77:ba:19:f8:5a:00:97:03:ee:25:57:0f:b9:30:
aa:97:ee:0a:cc:93:89:a2:0b:54:e3:56:91:f6:de:
d6:20:24:cd:ae:df:7d:11:d8:12:19:dc:0e:ef:ed:
98:c7:e7:a6:c4:c3:2e:4b:a0:1e:ac:7f:14:c5:7a:
c2:ef:7e:f4:ed:88:69:2c:dc:d5:d7:65:1c:50:18:
5e:6b:ec:40:01:a7:a0:3c:20:3c:e1:b1:9e:bf:85:
c4:94:aa:a8:da:41:72:b2:5c:97:04:97:bb:4b:cf:
20:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B2:67:9A:B6:97:F3:C3:12:7B:82:41:23:F5:FB:E6:D4:5F:1B:33
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/O7JnmraX88MSe4JBI_X75tRfGzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:61a0::/32
Signature Algorithm: sha256WithRSAEncryption
16:c1:c1:f9:85:c3:67:a0:f4:88:3a:48:1a:0a:e4:89:92:41:
45:f2:aa:81:26:41:8a:47:92:1e:a2:74:d0:a2:8a:3a:29:85:
8a:6d:20:32:95:df:72:fb:c4:b3:ec:de:a2:ff:a5:c9:66:06:
28:fa:7e:9a:b5:88:39:bf:0a:16:80:7e:c2:09:43:ae:96:e5:
ac:53:e6:44:cd:a5:be:8d:c1:28:15:59:17:47:91:a5:33:e5:
fb:3a:10:45:30:c2:0c:f6:52:ca:d9:91:ec:9b:c2:35:1f:6b:
01:7f:65:b6:79:98:55:21:9d:29:49:8b:a7:4a:d4:17:cb:61:
f7:43:5f:82:73:7f:e7:ed:c3:52:98:91:70:78:9e:df:10:6d:
fe:58:09:25:3f:2d:ba:17:b6:c6:13:63:3b:8d:61:38:ee:fb:
2e:1c:6e:30:d3:62:9c:89:25:3f:56:3d:73:55:f9:6c:13:db:
a1:08:24:ff:c1:0b:bc:37:ab:6e:a1:c6:15:80:c8:51:d2:e2:
23:20:6e:58:1b:f8:34:ea:0f:a0:48:80:7a:91:42:fb:e2:91:
1e:83:61:83:be:5a:60:af:3a:49:ae:f3:96:49:4b:6a:93:ab:
f1:db:2f:e3:5f:ec:53:b0:94:a1:a7:bd:08:42:39:ef:13:e0:
6d:18:a1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:55 2025 by rpki-client