Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/i-KOa2MI-zNDTzU8lZBMdYoFiAI.roa
File: i-KOa2MI-zNDTzU8lZBMdYoFiAI.roa (raw, json)
Hash identifier: 0hkZrkhACdN2ZnvcGmDNDKKabVt93aChjU51MRB8tcc=
Subject key identifier: 8B:E2:8E:6B:63:08:FB:33:43:4F:35:3C:95:90:4C:75:8A:05:88:02
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0788
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/i-KOa2MI-zNDTzU8lZBMdYoFiAI.roa
Signing time: Tue 29 Sep 2020 09:59:42 +0000
ROA not before: Tue 29 Sep 2020 09:59:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 150.129.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1928 (0x788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 29 09:59:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8BE28E6B6308FB33434F353C95904C758A058802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:12:16:0f:82:dc:9d:16:eb:01:47:84:d8:19:
fc:d1:54:05:8c:95:0f:98:7f:43:de:df:6e:a6:33:
62:4f:6b:8d:cd:53:87:8c:e5:eb:5d:23:36:b0:d4:
4c:7c:8d:45:11:9d:66:30:02:8d:6b:d0:ec:4a:f3:
f0:92:b5:9a:ff:34:63:c2:0d:a4:96:11:71:1e:f3:
66:ac:b2:e2:d6:29:1b:bd:fc:d8:4e:dd:b2:e7:5d:
22:18:e1:5c:e2:8f:89:79:ea:ee:5a:2c:93:5d:3f:
f4:13:44:3a:df:35:81:12:89:91:3b:c2:a5:de:cf:
8d:bc:6d:d2:7a:1f:86:a5:b6:93:ea:1b:fd:3c:b5:
05:ce:37:fd:20:e3:55:a7:4e:c3:8a:0c:9b:c3:19:
87:0c:53:4f:fb:32:9c:e4:99:ef:05:0e:35:da:40:
31:35:9c:7d:6e:b8:71:f1:ef:7f:3b:4e:48:b2:6b:
71:d7:be:d4:28:84:6b:8b:2a:4c:c6:da:0b:e0:7e:
75:53:82:21:b0:10:88:bf:34:21:08:c4:86:30:2d:
4a:75:6b:84:df:9e:7e:84:03:1a:d9:ac:00:a4:8f:
c0:3c:4a:a3:5c:4c:53:57:61:31:82:0e:83:e4:c5:
a4:29:b0:4e:71:64:83:93:34:4b:ae:f1:91:94:a3:
08:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E2:8E:6B:63:08:FB:33:43:4F:35:3C:95:90:4C:75:8A:05:88:02
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/i-KOa2MI-zNDTzU8lZBMdYoFiAI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.36.0/22
Signature Algorithm: sha256WithRSAEncryption
98:2e:e0:9e:fe:3c:b4:33:fe:35:b8:d7:e5:a8:b8:bf:25:f5:
ea:b2:fe:66:a8:85:47:fc:3f:84:9f:0f:bb:ce:8c:a2:bd:7d:
eb:08:33:66:f1:22:a1:c4:f2:62:29:a5:7e:07:56:0b:a7:a4:
6f:b8:0d:d9:15:68:32:5f:05:1e:60:9a:f4:a5:13:3e:f2:15:
6d:db:60:ac:23:20:72:fd:4e:27:4f:96:6e:42:35:12:42:a8:
96:71:4e:0d:f0:a8:7c:39:68:f1:d2:a1:41:c9:0e:5b:c9:a9:
f2:2d:3c:27:fc:8e:5e:74:2c:fa:49:ef:05:65:60:3f:cc:a8:
98:5c:f3:39:ca:d6:a4:5d:73:a0:33:90:2a:53:bd:7a:75:ec:
0c:62:5b:b3:80:fc:42:2b:78:d0:ec:f7:42:05:85:07:6b:b1:
f2:7a:b6:49:86:97:f9:a4:5f:aa:74:de:6f:93:67:89:4c:b3:
14:16:18:9e:55:37:c5:d7:31:34:a9:54:fe:63:bd:95:d3:d0:
07:a3:8c:7c:f8:16:ea:00:45:b3:14:eb:15:92:74:3d:9e:d3:
3d:87:b9:ca:89:65:9c:b2:59:c4:5d:e3:17:34:02:55:f8:21:
74:ae:89:ba:1d:21:37:66:bc:08:ae:cb:5b:f6:67:b4:9f:19:
f9:8f:b9:90
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:14 2025 by rpki-client