Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/y2CCRDDTlo4OLEotxXJMX70ALPM.roa
File: y2CCRDDTlo4OLEotxXJMX70ALPM.roa (raw, json)
Hash identifier: vwOS3QcqEPML4fpXZjndjp34F46z0F2RJdHwMqO1zTs=
Subject key identifier: CB:60:82:44:30:D3:96:8E:0E:2C:4A:2D:C5:72:4C:5F:BD:00:2C:F3
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: 0184
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/y2CCRDDTlo4OLEotxXJMX70ALPM.roa
Signing time: Fri 01 Sep 2023 08:30:02 +0000
ROA not before: Fri 01 Sep 2023 08:30:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38047
IP address blocks: 2400:61a0:a054::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388 (0x184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Sep 1 08:30:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CB60824430D3968E0E2C4A2DC5724C5FBD002CF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:09:aa:38:92:cd:ce:74:62:2e:99:67:3b:5c:
ca:d4:b1:20:36:88:fe:cd:68:6c:33:e5:04:aa:d2:
37:74:dd:a1:9b:86:73:f1:29:a4:6d:f9:e0:e1:61:
fc:0f:da:57:35:5a:52:ac:8a:15:cf:ad:5d:19:d9:
a1:48:52:04:65:9c:ef:6a:7b:04:4a:21:f3:14:59:
fa:52:37:32:b2:ef:2d:51:2a:01:3e:2a:f6:fd:f1:
b1:c5:ee:68:c8:5f:72:78:2d:cc:fc:2c:7d:5e:51:
21:60:8f:70:59:87:76:33:be:98:fe:28:f3:cb:39:
a4:bf:96:63:f2:d0:9d:a9:4f:6d:20:90:b0:84:9e:
f4:77:45:ab:b1:09:fb:23:00:1b:f0:e3:c5:fd:8a:
05:dc:ee:5d:08:44:09:3b:ec:4a:e9:eb:5c:6d:1a:
2b:c1:8e:43:7f:d9:fc:76:24:4a:1b:a7:74:89:8f:
79:98:c3:2d:97:0f:c2:da:f3:87:a1:9d:f0:c0:5f:
21:d7:4e:d3:31:04:d9:c6:f0:38:02:07:fc:2c:f7:
7e:71:f1:c7:99:0d:5d:21:66:1b:43:55:74:35:dc:
8d:61:d4:98:42:dc:6c:73:b6:af:b9:0c:df:3b:df:
26:83:36:42:4d:7a:44:f1:85:90:6b:83:c2:dd:49:
cf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:60:82:44:30:D3:96:8E:0E:2C:4A:2D:C5:72:4C:5F:BD:00:2C:F3
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/y2CCRDDTlo4OLEotxXJMX70ALPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:61a0:a054::/48
Signature Algorithm: sha256WithRSAEncryption
61:7b:8a:82:df:e8:43:d6:e3:67:94:a1:17:39:b9:fd:6c:39:
06:8c:a6:37:fe:bb:75:89:a0:50:8b:d0:58:3b:3d:03:10:ff:
bd:dc:d8:fe:4f:c4:a8:ae:ac:cf:cf:95:4e:ec:d4:48:bc:4c:
ba:d4:c9:a1:3c:5f:86:81:c8:5e:79:6c:a3:1a:8e:02:9b:07:
d5:41:00:6e:39:cb:6e:27:ad:cb:b0:1f:87:53:f5:ab:db:94:
e9:a8:5d:8e:45:b7:58:ad:32:a2:f0:2c:e2:49:43:86:ab:03:
fe:cf:7d:01:26:c3:8d:66:bc:7f:d1:b5:4e:6e:07:2c:35:e7:
06:07:4c:6c:1e:b9:29:a7:98:17:dd:f0:97:31:ab:fa:03:40:
1e:63:cc:2b:34:2b:29:9a:36:3e:df:cd:3c:55:ad:f7:ca:c4:
03:d7:52:90:e7:b7:d3:57:02:97:b4:f6:67:b8:a1:a7:61:cc:
89:a1:09:3a:37:2d:62:71:e3:a8:c0:fb:37:e8:5d:19:2d:44:
8e:6a:e6:75:ea:58:66:f1:74:c3:40:fc:65:bb:c8:d3:ff:e7:
4f:36:dc:84:dd:0d:17:4a:81:d0:06:4b:89:70:29:79:75:8d:
0a:bb:13:b6:59:62:f4:01:08:6d:9a:d8:0f:35:54:e7:9d:d9:
31:de:b4:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:03 2025 by rpki-client