Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/UN343NERmKJ42POpHlD1gLrft9w.roa
File: UN343NERmKJ42POpHlD1gLrft9w.roa (raw, json)
Hash identifier: dt+oynmym79c65U+t5SFJWWnwK9MieJT4W41TLVozYQ=
Subject key identifier: 50:DD:F8:DC:D1:11:98:A2:78:D8:F3:A9:1E:50:F5:80:BA:DF:B7:DC
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 08D5
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/UN343NERmKJ42POpHlD1gLrft9w.roa
Signing time: Sun 07 Feb 2021 12:58:14 +0000
ROA not before: Sun 07 Feb 2021 12:58:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 101.0.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2261 (0x8d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Feb 7 12:58:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=50DDF8DCD11198A278D8F3A91E50F580BADFB7DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c7:72:ea:a7:1c:20:ad:33:b8:a7:e5:e2:55:
18:77:67:3b:72:f4:49:6d:06:87:10:80:d5:40:30:
2f:62:cd:8f:f9:d4:83:af:5b:04:2c:4b:61:45:44:
eb:ff:57:5b:7a:2c:b8:77:ae:6b:7b:d1:42:4c:ba:
6d:e3:07:52:cb:8f:7d:b1:a2:02:95:37:d9:1f:c4:
30:9e:1d:fc:e0:19:ce:4b:34:d1:fd:e5:93:c8:a1:
ca:71:32:8e:27:f1:d0:48:67:d0:f6:30:e2:c5:1a:
72:46:3b:85:7e:42:2b:c0:34:f4:22:f1:62:a6:cb:
99:8a:79:89:c0:46:76:ec:28:f6:ce:ab:4d:ab:d6:
62:49:71:0b:f4:6f:2c:95:f3:bb:9b:23:e4:ca:a8:
a7:05:42:db:7e:e8:b6:ef:41:ed:40:7d:6a:8b:1d:
7c:d5:d4:88:af:ec:9c:11:1c:f2:97:ce:13:15:14:
03:a6:4d:ec:53:95:d6:d5:e1:4c:56:95:12:06:8d:
9d:7c:c3:18:7f:a2:cf:99:2e:0e:5a:20:83:9b:73:
76:74:48:08:0a:8e:d4:d6:f4:e2:23:d4:9b:fc:4a:
0b:cd:c3:a4:bb:fe:2a:61:8f:6a:b3:ce:4b:7c:ea:
ce:fd:c5:65:8e:cf:c2:69:8d:af:ab:cb:1c:b7:66:
7a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:DD:F8:DC:D1:11:98:A2:78:D8:F3:A9:1E:50:F5:80:BA:DF:B7:DC
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/UN343NERmKJ42POpHlD1gLrft9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.224.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:4b:b0:b0:4c:2d:0a:14:14:d0:ff:55:a6:74:42:62:9f:3d:
50:ee:6b:34:89:23:b2:51:c6:49:dd:11:4d:8d:37:32:1e:aa:
c2:08:68:40:d4:27:38:41:a7:08:45:17:75:fb:3a:ef:6f:5c:
f2:bc:22:b7:f7:3e:f9:89:e8:e3:4d:a2:c8:22:eb:d4:fb:1f:
85:2a:e0:17:43:c4:0c:fc:6a:0f:09:f2:6f:96:57:57:c2:78:
e1:03:59:c3:fc:48:5d:5d:60:c1:c3:4d:07:52:19:8c:7c:1e:
3b:8b:a4:4b:bd:a6:db:9d:ef:42:ba:fb:9e:c4:c2:6e:38:17:
d1:da:61:9e:51:36:f3:04:45:ff:4d:28:6e:ea:ea:eb:29:be:
19:16:ff:07:ff:ad:fa:c4:82:99:0f:1e:c7:26:65:9e:5f:be:
13:98:54:13:be:44:5c:69:b5:47:3b:47:42:68:2c:c1:fe:37:
ae:55:c3:2c:81:c0:d9:f6:86:d9:3d:30:ac:1a:b5:c3:60:ed:
c6:cc:a8:d9:4e:83:8e:d0:6f:d8:31:15:96:f8:5c:1d:a4:19:
f2:f7:4b:c0:a8:a1:3f:3e:11:3a:cf:96:13:d4:05:b1:ec:fe:
25:63:54:13:da:f6:f2:ab:49:d2:40:76:ce:51:72:72:85:6b:
19:7c:d6:12
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:49 2025 by rpki-client