Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/7zuBLJG_A8NQnrT_HQcoyBGS9Ag.roa
File: 7zuBLJG_A8NQnrT_HQcoyBGS9Ag.roa (raw, json)
Hash identifier: aR2+y+BlOvInw5NouKYmSPOnDTh5KJ691Mq9CzOelr4=
Subject key identifier: EF:3B:81:2C:91:BF:03:C3:50:9E:B4:FF:1D:07:28:C8:11:92:F4:08
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 09F0
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/7zuBLJG_A8NQnrT_HQcoyBGS9Ag.roa
Signing time: Thu 15 Sep 2022 02:49:42 +0000
ROA not before: Thu 15 Sep 2022 02:49:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131143
IP address blocks: 2405:3300::/32 maxlen: 96
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2544 (0x9f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 15 02:49:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EF3B812C91BF03C3509EB4FF1D0728C81192F408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ef:9e:0b:03:94:41:28:5d:6a:ee:c7:bc:96:
36:bd:91:9d:e7:53:82:19:58:e9:d6:69:45:f8:14:
7d:a8:0f:1c:e9:c3:78:b5:10:1d:9f:17:d5:5d:24:
40:db:0f:fb:cd:74:da:f1:92:cc:e9:12:85:45:e5:
d7:c7:b4:2b:52:56:ee:ef:df:02:dd:55:15:e2:f0:
1c:98:a6:16:fd:74:77:15:28:df:88:26:03:0c:f5:
10:48:15:f7:6c:cc:a9:5a:97:9a:e6:f7:30:50:a1:
e6:45:9a:0e:c4:89:17:e7:47:84:4a:43:f8:c7:44:
27:d8:83:33:e9:86:93:a9:49:81:d2:bf:c3:bc:af:
0d:c2:09:10:fa:21:44:78:e8:dc:9c:54:4f:a6:bd:
8e:0d:dd:80:ae:5f:9b:90:b2:2b:7e:46:e8:bc:a3:
fa:da:4e:97:75:cb:b1:1c:be:df:53:f1:f8:06:81:
ee:85:ed:ba:f9:d6:d4:b2:a5:65:60:69:ff:69:1f:
67:89:b9:4a:77:b1:35:b0:9d:06:f9:59:33:96:22:
37:c6:f4:e5:9c:61:09:e7:45:aa:fb:33:d2:1d:0f:
0c:dd:cf:a3:bc:44:d6:54:84:5a:0a:25:86:84:cc:
8e:a9:72:a2:20:16:ec:58:de:38:b4:8f:bb:e2:a3:
07:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3B:81:2C:91:BF:03:C3:50:9E:B4:FF:1D:07:28:C8:11:92:F4:08
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/7zuBLJG_A8NQnrT_HQcoyBGS9Ag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:3300::/32
Signature Algorithm: sha256WithRSAEncryption
5c:07:32:29:a5:13:e1:6e:df:41:fa:d6:df:0f:87:d8:2e:15:
6d:f0:8b:52:e9:16:ed:2e:bf:82:6f:17:ad:3b:fb:b2:8e:e4:
66:64:a5:a1:46:78:6f:ec:70:0d:85:1b:4a:ea:5f:61:02:c4:
af:25:ae:db:67:27:3f:26:93:e0:d5:3f:de:3e:5e:71:f1:40:
c2:89:d7:b9:7b:eb:6b:7f:4f:57:ef:81:7f:9d:5b:df:8b:99:
d9:c6:23:a0:ea:0a:8b:73:5f:a5:8f:fe:43:d6:af:26:e7:e5:
33:42:25:1e:06:17:0b:cd:b0:21:a1:65:73:0d:79:5d:76:c5:
d8:75:6f:28:f6:87:7a:6b:62:d5:6c:2f:1a:5c:5e:56:a8:91:
a5:d7:57:98:ea:fb:2d:9f:fb:62:f7:d2:94:be:6f:ff:a4:61:
16:25:9f:61:43:e3:a5:26:d9:29:2d:c3:4f:31:76:91:d0:cf:
59:3c:00:03:cf:db:b7:0b:a3:88:45:fe:0e:ef:80:de:e7:1e:
9f:1a:0a:ba:91:f2:a5:a0:1a:2a:99:0e:2b:75:1f:1f:0a:03:
cc:d0:98:a6:c5:8b:32:43:33:d0:ca:ae:40:33:9b:22:c3:80:
57:14:8b:70:bf:c3:c3:b0:72:3b:9b:5c:c3:5f:43:ac:a1:d3:
7a:aa:9a:6f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:58 2025 by rpki-client