Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/7_N6ip0oy_-i9o82CP79-fdsKdA.roa
File: 7_N6ip0oy_-i9o82CP79-fdsKdA.roa (raw, json)
Hash identifier: /Npglv0O7MvqPASCpIjoVHsMxOUe1qnizI3+DmXdKU8=
Subject key identifier: EF:F3:7A:8A:9D:28:CB:FF:A2:F6:8F:36:08:FE:FD:F9:F7:6C:29:D0
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BB5
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7_N6ip0oy_-i9o82CP79-fdsKdA.roa
Signing time: Fri 01 Sep 2023 08:50:54 +0000
ROA not before: Fri 01 Sep 2023 08:50:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18412
IP address blocks: 39.12.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2997 (0xbb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EFF37A8A9D28CBFFA2F68F3608FEFDF9F76C29D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:59:c4:07:eb:1d:b3:63:80:2e:d6:a1:54:
3b:cc:cb:6b:63:00:f0:86:f4:e6:a3:31:db:a7:9e:
8c:0f:4f:41:3c:34:15:e8:c9:fb:d8:6e:d1:a7:ce:
1e:09:4f:a0:df:1b:ba:38:3c:33:38:3f:5e:e3:73:
33:08:e9:7c:27:68:df:b6:b1:07:64:5b:a5:37:c3:
06:a6:ee:3d:3e:6b:0d:82:76:3f:a4:23:92:87:26:
1e:5e:68:e1:a1:cc:78:0f:c5:eb:de:02:7e:2b:77:
e5:11:19:ff:52:fa:f7:ec:e3:a6:3f:a3:c4:7a:43:
c9:36:30:15:76:3d:a8:e2:c2:55:cf:fd:aa:a4:96:
8d:30:39:e6:35:fa:fe:be:95:10:c6:6e:ad:d1:9b:
86:5d:97:c1:b5:d5:9a:92:ec:3d:fe:d5:95:00:61:
32:a5:a2:94:92:e2:f5:68:30:a3:ee:04:07:7c:02:
82:a7:03:f4:70:f6:11:4b:e3:7b:84:fa:88:20:e3:
d7:73:a2:b4:c1:7a:71:37:6f:bb:6d:a3:f4:50:67:
be:a4:2c:74:a0:a8:64:e4:51:ad:4d:12:5a:c1:d5:
c2:34:08:47:3a:62:26:19:06:1a:72:37:03:39:f2:
fe:49:16:f1:f4:dd:1b:27:bd:37:46:9a:88:6a:d2:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F3:7A:8A:9D:28:CB:FF:A2:F6:8F:36:08:FE:FD:F9:F7:6C:29:D0
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7_N6ip0oy_-i9o82CP79-fdsKdA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.0.0/18
Signature Algorithm: sha256WithRSAEncryption
27:f8:db:f8:14:92:6e:7b:91:26:d6:a3:19:eb:4d:90:fd:88:
00:61:55:30:10:3c:24:3e:02:8d:e5:18:ef:5e:88:c3:21:fb:
2d:8f:d4:39:5d:f6:86:5b:4d:25:80:6b:1c:98:78:3d:84:c8:
ed:54:15:88:c2:5d:28:12:14:62:a9:88:51:f5:4a:93:28:2d:
5f:a9:24:2d:f2:ed:f3:a5:b9:ef:6e:ea:3b:bc:d3:01:b7:fe:
78:0f:c7:5d:03:aa:df:67:89:dd:6b:57:0d:93:cb:d2:4e:35:
b8:4b:35:de:9e:31:fa:6e:a9:03:d1:4f:d0:73:4d:3d:49:d4:
da:50:e7:77:e1:8f:98:ff:82:bb:43:3d:78:9c:19:ab:36:b7:
30:76:18:71:33:9a:76:0d:bb:46:4e:9d:2a:54:6f:57:ae:92:
c8:c9:a3:a3:35:c8:86:c1:20:07:8a:c4:c1:a9:58:d3:9c:a8:
d4:d3:e0:7a:28:7f:13:c9:9d:3e:6e:07:28:51:de:6a:7f:fa:
2a:48:14:93:db:53:d9:86:73:4c:46:a9:1b:4c:a2:91:3d:20:
4a:c3:46:b1:14:10:f6:3f:1c:4f:0c:7b:0e:cc:00:6d:56:73:
d7:ff:09:b9:1f:d9:ad:55:08:fa:4a:53:eb:9f:c9:0a:8f:ab:
2a:3b:f5:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:52:47 2025 by rpki-client