Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/cOsGP-DPt89OpHamL15u7M1u6QQ.roa
File: cOsGP-DPt89OpHamL15u7M1u6QQ.roa (raw, json)
Hash identifier: NJrGaZQ+lJF7OIAO57Hcy4sUwJhu8t9hO0z+k7K72Co=
Subject key identifier: 70:EB:06:3F:E0:CF:B7:CF:4E:A4:76:A6:2F:5E:6E:EC:CD:6E:E9:04
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0B4B
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/cOsGP-DPt89OpHamL15u7M1u6QQ.roa
Signing time: Fri 01 Sep 2023 08:48:47 +0000
ROA not before: Fri 01 Sep 2023 08:48:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18411
IP address blocks: 119.30.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2891 (0xb4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 1 08:48:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=70EB063FE0CFB7CF4EA476A62F5E6EECCD6EE904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c9:c5:0d:5a:2d:9f:e7:f8:13:8f:eb:33:75:
53:7a:01:53:02:f9:2a:42:73:68:d0:2c:fd:9e:f5:
09:56:03:2a:7b:13:35:ee:8e:03:6b:5a:ba:99:0f:
42:28:82:d1:f4:dc:1c:c7:92:0c:ec:11:14:4b:be:
1c:c0:33:23:70:2d:8b:9c:fa:88:2a:7a:21:fc:70:
ca:54:93:b4:87:89:ad:4c:a7:46:a6:d2:c7:00:47:
42:9e:cf:c1:6c:71:0a:87:10:fa:a2:45:79:16:e8:
1d:c0:c3:5b:00:db:af:65:8a:f6:72:7f:c1:e5:5b:
40:1f:07:4d:d1:63:5c:0a:51:08:d6:e4:6a:74:c6:
8b:e8:fe:8d:fc:b9:ef:da:65:07:fc:0f:21:e9:24:
42:68:80:31:5b:5e:c9:b0:6e:cf:35:92:9c:98:f2:
d7:11:8d:0b:a6:cb:4b:6a:6b:65:d1:9f:f7:c0:cd:
d2:4a:ae:c3:df:21:a0:48:9d:aa:7b:5a:0e:26:a9:
ce:03:a6:1c:fd:87:a7:8c:06:7c:61:fd:c9:49:66:
45:bc:09:b4:43:84:7a:02:85:48:37:12:2d:27:a7:
68:f3:fd:b3:ed:e8:6a:e2:26:cd:62:b3:14:99:8c:
cd:cc:a4:f0:ae:d6:85:49:d1:d2:63:23:a6:7f:c0:
f6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EB:06:3F:E0:CF:B7:CF:4E:A4:76:A6:2F:5E:6E:EC:CD:6E:E9:04
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/cOsGP-DPt89OpHamL15u7M1u6QQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.30.16.0/20
Signature Algorithm: sha256WithRSAEncryption
c7:00:07:14:70:cb:ab:26:e5:b0:64:01:e2:4d:32:32:f2:5f:
c2:63:f2:77:d2:64:78:66:4e:78:74:9c:b1:ae:96:3c:c0:7c:
7d:89:b3:03:7c:1f:32:01:5c:c4:f3:ae:c4:86:5d:86:1f:48:
9a:db:f1:ea:fc:bc:f4:ab:c7:00:45:f2:06:0d:bb:1c:43:28:
31:f3:cc:30:19:ed:b2:6e:8f:0d:cd:02:e5:30:be:14:0b:42:
27:78:e4:74:9b:82:26:62:0f:75:f9:1d:31:3e:4a:8f:5a:6a:
e6:2c:1a:96:3b:f9:99:5a:9f:18:01:1b:91:6b:07:ee:2e:18:
ba:5d:33:e2:8a:0c:e3:d4:9b:43:d3:cf:26:8d:9e:1d:21:b7:
41:23:7a:11:b4:f7:36:e2:d6:25:d7:70:1c:6d:57:85:b0:bb:
88:23:c5:60:04:bb:0a:91:86:2a:44:0a:1b:da:a8:55:39:a6:
ef:55:67:a7:fd:d9:74:6f:d5:75:9f:10:98:f1:c1:b8:53:fe:
34:8d:2e:f1:26:cc:ee:be:92:6d:8a:3f:de:b3:35:56:69:7e:
78:a5:c8:22:fd:ce:83:4d:b5:0f:0c:bd:94:6f:82:fc:78:7c:
b1:63:4a:de:8c:03:bc:1b:a2:b4:f2:1f:54:ca:70:ac:e9:63:
36:12:27:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:47 2025 by rpki-client