Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa
File: 2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa (raw, json)
Hash identifier: +SRPl665CX+26XuVVs2JvM9QvPrya7a0j5LF6Kaa5jE=
Subject key identifier: DA:44:7A:A1:49:68:EE:93:86:7D:71:AD:D9:52:10:CB:EE:DE:4B:29
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0B6B
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa
Signing time: Fri 01 Sep 2023 08:30:30 +0000
ROA not before: Fri 01 Sep 2023 08:30:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 150.129.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2923 (0xb6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 1 08:30:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DA447AA14968EE93867D71ADD95210CBEEDE4B29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6e:3d:3f:5d:ad:f2:a9:6c:c7:22:f5:c6:6b:
a6:b0:a8:91:c3:24:75:e9:e1:e0:7e:d7:ad:65:5f:
ed:c4:b6:b8:60:60:93:d4:6c:5e:20:4e:46:35:52:
7d:96:66:dc:83:68:09:e7:0c:b6:13:8f:55:e1:78:
e0:90:eb:55:4e:c6:68:ae:73:81:c8:25:81:85:ea:
d5:6a:87:4b:f7:52:6e:40:e6:c4:dc:5e:cd:ea:fd:
4e:2b:48:1a:53:2d:7f:8e:24:a7:eb:e1:5b:68:a6:
8c:01:af:99:dd:2b:cd:94:71:43:15:1e:ec:f7:58:
08:27:85:d5:df:28:4a:76:f1:bd:23:72:fa:84:b7:
46:21:c5:f7:65:49:0a:c5:8c:60:bb:95:46:22:c6:
69:31:da:de:27:78:39:0b:56:81:2b:2c:de:fc:28:
34:fd:1d:8d:59:a0:dd:fe:7f:a5:66:a7:f3:2b:7d:
15:03:20:07:a3:30:2c:cc:4c:01:d5:13:87:bc:62:
ab:b5:00:d1:7a:8d:63:a6:63:e7:68:b8:56:29:86:
96:fd:0a:fc:64:9e:3b:94:39:04:eb:f5:e5:52:bf:
63:cd:ff:b7:7d:45:b3:12:d6:46:2f:fc:f6:0e:38:
d4:45:d2:e6:a0:ab:ab:1e:89:b0:d2:a9:7d:69:cb:
88:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:44:7A:A1:49:68:EE:93:86:7D:71:AD:D9:52:10:CB:EE:DE:4B:29
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.36.0/22
Signature Algorithm: sha256WithRSAEncryption
70:b5:b2:85:40:85:a1:e1:4f:5b:55:b0:1f:30:e2:23:84:86:
bb:cd:0b:94:7d:0a:ee:b9:c2:54:95:05:d8:f5:7f:3c:84:8c:
09:cc:ef:57:50:65:64:59:90:d7:03:28:3d:51:0e:c9:8c:91:
9a:ac:dd:fd:bb:64:3c:c0:8f:82:35:ef:92:e7:63:ea:56:d2:
1e:17:ec:62:ec:ef:e2:b2:68:be:75:36:9b:f9:6a:04:9d:5d:
b5:8c:57:d1:45:8d:57:94:dd:01:c8:68:64:24:4d:91:c9:3f:
ea:8e:df:15:75:97:fb:50:db:ef:c2:12:a8:f6:1f:8e:2b:e0:
ef:cc:a8:a6:6d:ce:f8:f6:bc:38:d1:f7:16:c5:a3:56:45:e6:
90:29:c4:4e:11:aa:8c:04:2b:d7:6a:53:3f:a5:10:50:8b:c2:
de:38:a5:d9:f8:6c:de:06:7b:6e:ca:34:ec:59:31:2c:fc:fb:
7e:56:fa:8f:6d:b6:26:e7:30:f2:c7:fe:5e:8b:cb:d4:b5:c1:
1f:e5:20:77:b3:c7:4f:7d:85:97:a0:ce:33:54:8d:cc:57:0f:
10:8d:7d:c1:e0:c4:17:ee:01:02:a0:fe:c2:32:3a:36:64:b3:
78:50:ad:23:a5:3d:f0:08:ff:ff:b0:e5:df:df:98:c0:bd:79:
07:62:38:bc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:14 2025 by rpki-client