Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/xa-W1Yd1khAYARQL_2RDidLGQgY.roa
File: xa-W1Yd1khAYARQL_2RDidLGQgY.roa (raw, json)
Hash identifier: PO1ttdUwCgJ4djbYElU3WJcBM/jj6iyW3e2GUeVhm/M=
Subject key identifier: C5:AF:96:D5:87:75:92:10:18:01:14:0B:FF:64:43:89:D2:C6:42:06
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0A6F
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/xa-W1Yd1khAYARQL_2RDidLGQgY.roa
Signing time: Thu 15 Sep 2022 02:49:56 +0000
ROA not before: Thu 15 Sep 2022 02:49:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 101.0.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2671 (0xa6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 15 02:49:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C5AF96D5877592101801140BFF644389D2C64206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b4:a6:51:6f:89:28:85:75:91:aa:01:4f:a7:
15:82:29:f0:95:0f:5a:9d:dc:7d:43:1a:66:41:8a:
93:72:c0:ac:d1:46:56:93:2d:d2:2b:fe:48:f7:76:
b0:92:2d:55:df:b9:34:01:d0:c9:5c:df:10:0d:7e:
60:9f:a8:96:f7:c2:56:13:9b:2d:0e:0a:48:45:58:
d7:17:3e:ee:6d:26:67:d2:3a:ef:7f:0d:97:ed:58:
c9:c2:a4:2a:b5:66:73:47:9d:6a:22:b4:0f:fe:b6:
97:e1:28:e9:22:97:7b:ef:77:91:85:a6:98:42:6c:
f3:d1:f7:a0:27:93:37:4a:a2:78:3c:18:85:81:43:
50:fe:46:31:ca:19:be:c9:fe:e4:9e:28:ee:3f:1d:
f7:25:87:b5:af:c4:9b:17:f7:fd:32:41:d3:38:b4:
78:66:1c:13:f7:ac:d0:d7:92:57:06:b7:c8:9c:c2:
c1:02:af:65:e5:69:59:06:da:51:c0:d0:d6:5d:29:
8b:19:f2:b7:76:49:eb:1c:78:54:30:ee:eb:bf:35:
35:58:0a:c1:e2:b4:f8:48:b6:e9:5d:50:b7:6f:01:
3f:c7:65:e0:7f:b4:cb:b0:3e:94:75:20:18:49:9b:
1f:f5:80:95:b5:7b:b2:3a:1f:79:6d:d4:42:f7:29:
74:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AF:96:D5:87:75:92:10:18:01:14:0B:FF:64:43:89:D2:C6:42:06
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/xa-W1Yd1khAYARQL_2RDidLGQgY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.232.0/21
Signature Algorithm: sha256WithRSAEncryption
69:11:f7:16:2b:c1:2d:35:de:db:bd:79:a5:38:11:58:1a:27:
4e:92:9c:df:f0:0b:41:37:81:73:1d:9e:b2:99:98:6b:e3:fe:
12:46:87:87:eb:8c:2f:81:44:62:9d:36:91:3f:aa:71:5a:bf:
b7:f7:0f:ba:f2:07:91:90:50:97:ed:37:95:b3:2a:ae:e0:c3:
62:91:30:16:00:c1:a5:21:57:7c:da:63:37:4e:d6:df:d5:dc:
41:3b:69:bd:95:76:82:b3:79:e0:f6:e5:5d:13:4e:bb:31:34:
99:d2:c8:a0:dc:75:44:5b:6a:a3:b3:da:e2:36:f6:36:e8:e8:
b5:f9:32:47:7a:87:c7:3f:13:e7:da:b6:bd:e3:bf:43:78:9f:
9d:52:11:a8:d3:97:c4:31:31:46:46:2d:2b:1b:0f:5c:8b:69:
e2:2e:7a:06:7d:91:d3:4c:b9:9b:7c:99:62:07:ce:c3:ea:c7:
1a:8f:ad:6c:d0:26:9f:43:37:c3:36:84:a5:12:05:bb:dc:57:
35:2b:8b:86:a5:84:5a:eb:25:6b:93:94:c0:47:ed:f1:24:35:
65:31:c4:9c:d7:ac:e9:56:1e:71:32:4f:64:94:8a:52:7a:d1:
12:cb:7c:19:2a:e2:97:ff:53:83:90:db:37:06:cb:8c:fc:af:
7e:56:6a:04
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org