Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/-_7oDEVuu1z4AwP7SkooFRyE7g4.roa
File: -_7oDEVuu1z4AwP7SkooFRyE7g4.roa (raw, json)
Hash identifier: APcPLfJKAblf5+72yJzFB4wuzsty5V8qeFnaZdhoUkE=
Subject key identifier: FB:FE:E8:0C:45:6E:BB:5C:F8:03:03:FB:4A:4A:28:15:1C:84:EE:0E
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08F2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-_7oDEVuu1z4AwP7SkooFRyE7g4.roa
Signing time: Sun 07 Feb 2021 11:42:31 +0000
ROA not before: Sun 07 Feb 2021 11:42:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 211.77.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2290 (0x8f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 11:42:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FBFEE80C456EBB5CF80303FB4A4A28151C84EE0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a2:f1:47:59:13:19:19:54:7e:33:f3:f0:1f:
6c:af:49:a6:3a:aa:25:dc:63:58:f9:4b:a2:a3:cb:
10:9d:f8:12:73:3a:ef:5f:fc:a4:e9:bc:7a:5d:2c:
25:d9:a8:b5:13:08:b2:26:5a:d0:f7:5f:33:49:3d:
0e:1c:66:ab:8e:81:f2:76:17:f7:d9:88:ad:0d:8b:
88:fb:78:8b:53:55:ab:ac:1b:08:a2:93:85:6d:b7:
76:25:d8:b9:01:f9:78:47:3c:77:36:09:1c:75:bd:
88:b4:10:68:d3:c3:18:de:86:d8:a5:1e:b9:b5:e4:
8c:6e:80:1c:c7:7e:3d:87:2c:3e:54:c0:15:46:70:
ef:e2:67:da:68:44:71:27:e9:41:0e:f0:58:95:b8:
02:87:d0:21:3b:32:ea:6a:35:67:1a:01:dd:86:07:
cc:a3:94:3a:f6:ce:f9:9b:92:9a:3e:a3:24:c9:5c:
01:40:d2:a1:97:bd:c5:2a:6b:62:1a:15:89:8f:67:
5f:b2:65:bf:69:39:e8:cd:7d:fa:6f:53:ed:f2:6d:
8c:00:17:ee:42:28:ef:c5:60:f9:e3:88:70:83:f8:
47:e2:3e:84:2b:67:fc:c4:58:48:36:0e:34:fd:e1:
20:14:29:26:ae:1e:1a:b2:99:2a:d1:50:f9:2e:09:
7f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:FE:E8:0C:45:6E:BB:5C:F8:03:03:FB:4A:4A:28:15:1C:84:EE:0E
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-_7oDEVuu1z4AwP7SkooFRyE7g4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
47:cc:a3:70:9a:8f:ad:a2:0c:6a:39:9d:3c:d6:a4:00:b5:44:
c1:a9:eb:2b:a4:05:c4:b8:c0:a9:ce:53:7d:00:90:69:da:85:
23:1d:c3:9a:4b:31:b0:ed:77:89:d4:91:d0:17:53:0b:c8:1f:
28:6f:22:fe:c4:07:87:02:b2:b8:e1:18:b9:c1:03:f1:85:67:
c2:1a:fa:8b:6f:f7:fc:94:31:44:27:df:76:17:23:e3:0b:71:
56:69:08:3c:f7:38:79:e9:50:63:86:9b:41:39:b6:67:75:cb:
3e:7d:9c:2a:54:74:4f:c9:82:7a:6a:5d:3b:af:0b:b0:c6:ce:
6b:0c:be:25:78:d5:06:81:9e:14:b9:d3:35:de:69:ed:3d:42:
c5:f1:e8:16:0b:60:c1:11:7f:98:74:2a:77:99:47:74:65:a8:
20:49:42:cc:90:65:d7:b8:88:94:37:0d:3c:10:75:09:fa:ca:
1d:9f:f1:2e:51:56:bd:03:cd:ed:91:38:e1:70:4c:74:cb:7d:
2e:94:d7:f0:e8:fb:1c:aa:96:b0:eb:6c:a5:60:2a:29:8b:f2:
9a:35:1b:f5:3f:5c:7c:0c:55:a2:b3:6c:50:7e:cd:9e:ba:64:
1f:4a:f4:b0:d8:67:4d:0e:11:cd:34:80:20:1d:2d:2f:8c:e9:
f0:6f:ee:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:12 2025 by rpki-client