Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/j8nffNKYogQCUMojXLuX4P_yFgI.roa
File: j8nffNKYogQCUMojXLuX4P_yFgI.roa (raw, json)
Hash identifier: BGOVbA8HUz4bmx2qxZ4rWDXlisVechnL+lVdRX6dVM4=
Subject key identifier: 8F:C9:DF:7C:D2:98:A2:04:02:50:CA:23:5C:BB:97:E0:FF:F2:16:02
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 072B
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/j8nffNKYogQCUMojXLuX4P_yFgI.roa
Signing time: Tue 29 Sep 2020 09:59:34 +0000
ROA not before: Tue 29 Sep 2020 09:59:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131143
IP address blocks: 175.184.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1835 (0x72b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 29 09:59:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8FC9DF7CD298A2040250CA235CBB97E0FFF21602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:07:91:f3:b8:80:ff:9d:39:e9:1d:8d:ff:
02:c0:30:00:9f:70:f6:52:3d:ea:aa:5f:ba:53:1c:
b9:f2:62:68:8b:e6:f4:ca:6d:f2:13:aa:8a:fb:7b:
9c:24:bc:0e:cc:fd:f5:80:e7:c6:a5:a8:2e:bc:90:
73:d2:1d:aa:01:5e:2f:8e:00:b7:6f:cd:72:94:67:
89:fc:40:ee:36:42:4c:78:e4:67:88:62:35:03:23:
d2:bc:49:f4:e8:6c:7a:f7:38:79:4b:5c:dd:c7:76:
56:a8:5c:c6:b1:1e:74:36:d3:c7:87:e4:58:2f:53:
30:22:d2:76:26:c0:2f:e1:02:4c:2b:5d:e5:1d:a4:
e4:3d:1a:59:f5:b3:ed:61:dd:e5:a8:d6:17:57:d7:
a4:06:ad:0d:6a:0f:e2:71:45:14:cb:4a:d0:2c:7f:
c1:8e:e2:86:62:a7:df:48:9f:9c:a6:8e:99:98:e3:
d4:d9:db:30:4b:14:32:d1:d6:7d:28:43:82:65:29:
20:2e:b6:36:69:7e:11:12:77:0b:ba:a5:d9:52:c4:
4b:42:f2:dc:2d:50:57:da:64:4b:04:f3:94:e0:3a:
c2:b7:d4:34:2b:c8:35:70:5c:48:d8:63:7e:a6:32:
62:04:ec:ba:9a:e9:78:f6:bd:20:44:cf:50:85:45:
9c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C9:DF:7C:D2:98:A2:04:02:50:CA:23:5C:BB:97:E0:FF:F2:16:02
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/j8nffNKYogQCUMojXLuX4P_yFgI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.184.240.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:3e:e5:e7:ee:91:99:b4:e7:80:8a:44:cf:9b:96:c2:44:7b:
56:21:94:bb:12:7a:d2:d3:db:25:10:51:9c:4f:7a:3b:a9:77:
56:59:d9:1f:ef:fb:19:b6:62:12:43:22:53:04:ba:cb:1e:4b:
53:e1:84:bf:7a:7f:07:a3:75:de:b6:94:b5:c7:36:77:fd:76:
e6:6f:34:55:f3:9e:11:2a:1d:26:dc:af:10:38:e8:9a:9b:98:
5b:91:b6:c3:ab:c1:8d:27:6d:ab:99:bd:87:aa:05:42:fe:31:
e5:4f:ee:02:78:b1:67:4a:f7:29:8d:e7:d4:4b:2f:12:2d:16:
47:33:bb:92:34:11:b8:8a:a3:fb:63:64:56:03:39:ad:e0:24:
54:90:80:90:d7:65:12:58:9a:17:7a:fc:12:5b:39:e6:a6:e8:
bc:b2:fa:d5:9e:5c:c8:37:2b:e9:0b:fd:73:11:cf:87:d3:00:
a6:04:9e:cd:48:5b:ae:42:fd:61:63:22:5e:61:dc:3a:2b:1c:
57:51:57:8a:7a:fa:68:9b:62:57:40:16:ab:c3:c5:84:f0:74:
73:25:99:7c:25:83:e8:0f:c1:ef:65:4b:3f:00:e8:9c:f2:01:
53:5d:a3:92:a8:84:b2:34:dd:ec:2a:1a:1f:0d:3b:1b:dd:67:
08:91:31:12
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:42 2025 by rpki-client