Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/jYYbEQyEJHqeAIfepcEZZQkhJ08.roa
File: jYYbEQyEJHqeAIfepcEZZQkhJ08.roa (raw, json)
Hash identifier: B1Ys2gQVxiKPmYeSRBWLw6pM8HCDqwBNWmlzZ62DtPg=
Subject key identifier: 8D:86:1B:11:0C:84:24:7A:9E:00:87:DE:A5:C1:19:65:09:21:27:4F
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 076E
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/jYYbEQyEJHqeAIfepcEZZQkhJ08.roa
Signing time: Tue 29 Sep 2020 10:00:18 +0000
ROA not before: Tue 29 Sep 2020 10:00:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131601
IP address blocks: 114.29.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1902 (0x76e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Sep 29 10:00:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8D861B110C84247A9E0087DEA5C119650921274F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f8:48:e4:a8:82:28:98:46:1b:31:68:44:85:
fc:e9:e7:23:fa:2b:d8:7c:3e:1a:36:ee:5c:55:31:
d4:22:22:c1:9f:de:25:50:44:1a:de:52:07:1c:ec:
d4:a0:fe:12:12:04:aa:d4:31:3d:82:64:cf:c4:fc:
b3:77:14:37:e3:f9:a4:31:c2:80:91:76:aa:c8:3a:
5a:d3:fa:fe:2f:2a:b6:03:e9:bb:8a:20:1d:d5:a4:
ed:f7:a2:fc:aa:54:e4:4f:30:20:59:2b:36:8f:0a:
25:5b:bc:69:cb:e7:32:96:29:9e:34:1e:13:81:2a:
08:19:68:3d:ad:74:a7:3c:71:b5:b3:57:d8:f4:ce:
ac:c2:05:9b:5d:b7:3f:07:fc:8b:63:f4:72:74:bf:
e5:d1:c8:0a:70:06:9d:57:8c:b3:5f:07:74:79:3a:
b5:de:77:2d:50:a3:91:09:76:c0:d3:f4:01:0c:ef:
01:fa:c2:58:7e:22:da:97:0b:3b:69:5d:43:15:9b:
24:23:17:40:3b:26:9e:e5:25:2e:e8:d6:44:c4:df:
bc:d3:5d:91:8f:91:28:c9:01:48:20:df:4f:51:62:
1a:60:fc:c8:97:ba:3e:9d:b5:16:ab:0e:01:51:66:
0c:65:bf:1f:8c:b5:bd:54:9c:59:28:18:f4:1a:31:
35:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:86:1B:11:0C:84:24:7A:9E:00:87:DE:A5:C1:19:65:09:21:27:4F
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/jYYbEQyEJHqeAIfepcEZZQkhJ08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.244.0/22
Signature Algorithm: sha256WithRSAEncryption
04:01:2b:fe:a7:e7:cb:83:f7:77:2b:ad:f9:46:c9:78:e9:4b:
23:b8:d0:14:25:a9:2e:c5:3c:d3:bf:66:90:c3:8a:fa:56:c5:
de:a9:6f:a6:7f:8f:60:83:9a:6a:40:17:4e:23:d5:a8:4b:ae:
e6:65:23:73:76:5e:5e:fe:c4:f3:03:0a:89:39:ab:c5:3e:e7:
cb:68:76:5c:90:45:2c:8b:a1:00:06:25:84:29:5a:e9:17:be:
1e:0d:de:3c:29:6c:97:fe:71:a2:92:4e:6d:92:94:ba:f6:39:
7f:d7:59:62:db:0f:c1:a2:97:59:8b:0f:d2:18:79:ed:61:45:
76:e9:10:aa:e7:47:d1:05:fe:ec:31:4d:f4:37:73:b5:7b:7f:
c0:5d:31:e9:07:f3:70:f9:8c:4a:a5:1f:15:cc:39:3e:ed:b5:
ac:c4:9e:99:91:61:23:7e:0a:24:e4:b9:00:95:7f:5d:62:55:
28:07:fb:57:fb:70:44:08:32:ff:68:36:a3:3b:1f:db:91:ba:
30:20:e4:f1:d2:f6:c6:03:85:9f:d7:de:69:55:c6:b4:53:4f:
67:42:ec:e6:85:94:ec:a8:b2:99:34:04:4e:8a:61:19:55:3f:
60:77:cf:33:d7:c4:43:92:f8:73:7c:f1:5d:a9:a7:d2:59:7f:
8c:cf:29:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:21 2025 by rpki-client