Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/J5HvgVWYC6fu3JKx6L33nGn8ut0.roa
File: J5HvgVWYC6fu3JKx6L33nGn8ut0.roa (raw, json)
Hash identifier: dXAUIlEQwPHJW6x6201LwaLhtKIlXaBzlP/K2tvX/pg=
Subject key identifier: 27:91:EF:81:55:98:0B:A7:EE:DC:92:B1:E8:BD:F7:9C:69:FC:BA:DD
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: F2
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/J5HvgVWYC6fu3JKx6L33nGn8ut0.roa
Signing time: Fri 29 Sep 2023 06:46:30 +0000
ROA not before: Fri 29 Sep 2023 06:46:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 2400:b0a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Sep 29 06:46:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2791EF8155980BA7EEDC92B1E8BDF79C69FCBADD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6e:14:17:f5:65:61:d7:84:61:f9:dc:14:fd:
66:da:bf:1c:4a:29:14:ca:51:92:58:93:43:71:d2:
00:d0:dd:62:90:5b:48:66:8a:76:1c:30:37:fd:fc:
48:e0:db:d6:24:bf:a2:c5:a2:71:66:0a:33:d6:a9:
83:88:2b:01:e4:3c:de:a2:7d:e8:9e:70:9b:94:ef:
1d:ac:a4:fc:da:54:04:3d:05:03:1a:d5:c8:c8:37:
10:e1:66:d6:84:cc:cf:fd:d5:c4:2c:86:60:a3:7a:
0c:40:e7:59:c5:c5:5a:ee:bc:44:43:7f:38:de:b2:
af:20:ed:22:5d:16:13:e9:42:d1:d2:02:ff:5b:21:
51:2e:0b:d5:20:de:62:f0:71:ab:38:9a:dc:b2:d3:
2e:aa:16:d0:27:12:ba:1f:6b:49:7a:b2:d5:10:9d:
05:e7:78:3c:80:07:be:12:81:19:ef:bb:e7:2a:7e:
5a:8d:b4:f1:cc:f6:e7:a7:07:af:14:3a:be:c3:5e:
a3:38:b3:16:de:37:bb:c0:9d:28:9b:19:48:b5:32:
ad:6d:3a:a8:89:dc:0e:39:99:38:41:ad:0e:c1:6b:
e6:4b:b6:4b:0f:97:07:2e:19:bb:f8:60:c0:9d:a9:
e6:ce:77:0d:3d:30:ac:9d:e6:c2:cb:0d:67:29:6c:
62:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:91:EF:81:55:98:0B:A7:EE:DC:92:B1:E8:BD:F7:9C:69:FC:BA:DD
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/J5HvgVWYC6fu3JKx6L33nGn8ut0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b0a0::/32
Signature Algorithm: sha256WithRSAEncryption
57:c1:f1:25:10:93:b2:a1:30:63:cf:45:17:28:26:5f:c1:9b:
31:99:ea:a0:e9:6c:35:5e:c2:e9:26:ae:05:20:68:6b:5e:57:
55:96:f1:fa:15:7e:50:22:bd:9a:7b:91:56:78:2e:2c:e9:48:
1e:02:8b:79:f4:1f:c5:03:f2:a9:66:6f:06:93:4d:36:7e:f2:
51:9f:d1:56:64:94:50:6f:d5:36:a7:0a:cb:12:b6:09:85:72:
4b:9a:ca:79:b8:fb:79:af:1f:c4:71:86:b2:67:3d:85:cf:76:
70:2a:b3:a7:ea:14:47:4d:fa:ba:af:e4:5e:62:6d:36:73:9b:
5e:1c:3f:6d:8c:c3:7a:03:b3:d0:e4:85:59:d0:1c:5c:34:71:
98:1c:67:31:17:70:6d:de:66:e2:e7:77:18:5a:ee:72:3c:48:
b6:29:aa:c4:13:e0:2c:35:17:cb:b9:ad:bc:bd:ec:ca:48:28:
1a:b0:15:ef:6a:61:fa:59:70:b0:c6:68:99:8c:9a:a0:65:81:
40:88:62:93:6f:66:08:24:4c:00:e3:05:9e:3e:aa:ac:d3:84:
0b:51:d1:a1:d0:1f:0e:48:48:8a:67:84:8e:dd:96:4c:cc:39:
8a:4a:8f:99:cf:be:b9:ec:ff:fd:ca:03:73:99:c9:2b:85:1a:
a1:41:92:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:59 2025 by rpki-client