Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/BDu32NYkXuRGVeHfm5fzkvdNH3k.roa
File: BDu32NYkXuRGVeHfm5fzkvdNH3k.roa (raw, json)
Hash identifier: wJzjCTrYacRq8YS9sqENCDFLSX8WtN2Hp7EnQdZRyEc=
Subject key identifier: 04:3B:B7:D8:D6:24:5E:E4:46:55:E1:DF:9B:97:F3:92:F7:4D:1F:79
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0784
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/BDu32NYkXuRGVeHfm5fzkvdNH3k.roa
Signing time: Tue 29 Sep 2020 09:51:34 +0000
ROA not before: Tue 29 Sep 2020 09:51:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 211.77.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1924 (0x784)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 09:51:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=043BB7D8D6245EE44655E1DF9B97F392F74D1F79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:21:1d:80:56:e3:d0:1a:a1:a9:4f:1a:56:54:
29:59:8e:40:d3:35:21:a5:ca:a0:ad:cc:7d:cb:c8:
a1:87:83:47:3f:9d:f7:ad:4f:ba:a2:8d:ae:f0:2d:
1c:25:2f:a9:5f:6a:3e:c4:47:88:f1:af:31:df:10:
e0:d3:17:14:65:69:b2:a9:e0:bd:8d:93:ec:70:8c:
7a:11:75:06:1c:02:86:4b:af:fe:b6:3f:47:e7:64:
fc:21:9f:51:3c:1e:e4:67:30:3d:6f:47:81:66:bd:
9d:ba:eb:30:5d:5c:3c:2f:a9:45:ca:43:59:e7:60:
5f:81:38:7e:6d:05:b0:54:b6:98:3f:5d:47:75:9d:
fc:f4:5e:ba:91:c9:b2:50:53:de:6e:4d:d9:cc:29:
bc:cc:f6:35:4e:8e:b2:eb:76:02:81:7c:4d:e3:93:
ef:fe:0b:78:68:ab:40:36:66:26:95:ff:db:bc:85:
25:4e:4d:94:3e:f9:33:eb:f1:65:fb:0b:f9:16:ac:
80:b8:6e:a8:87:f5:67:90:fb:c8:a8:0d:54:89:a8:
df:11:09:2e:d4:f3:55:34:1f:54:f4:4f:0d:3a:e3:
4e:8d:ff:05:4e:66:4a:d2:7b:de:4c:2e:38:c7:52:
97:82:b1:75:1c:0a:b9:65:6d:b6:cf:98:09:06:30:
b5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3B:B7:D8:D6:24:5E:E4:46:55:E1:DF:9B:97:F3:92:F7:4D:1F:79
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/BDu32NYkXuRGVeHfm5fzkvdNH3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3f:1f:ea:7f:c3:ee:bf:9f:f0:67:13:0b:dd:96:ef:cc:1a:87:
97:19:15:e5:ed:99:00:04:09:ba:8c:a0:a8:93:ef:7d:23:df:
bc:cf:00:06:e4:43:31:09:a3:69:51:21:72:b5:44:a9:98:1a:
2e:de:e7:d0:6c:06:83:d7:00:80:25:cd:dc:ba:93:0c:5c:a4:
e5:98:10:09:0e:34:66:8c:e0:15:fa:12:9d:42:b7:3a:5e:13:
ad:dd:37:c5:7e:07:a3:cf:5c:44:d2:f1:24:43:7a:9d:a9:59:
3e:8e:6e:6e:54:b5:22:34:0f:f4:ef:46:da:b0:33:b3:d5:ad:
ce:43:f1:9c:a7:1a:f9:71:0f:7a:e3:ba:bf:a9:b7:0c:62:93:
9a:3a:fb:88:8b:2e:63:04:b0:5e:dc:e4:19:41:ac:b0:8a:e7:
44:d5:41:84:9d:93:64:85:3d:a6:97:47:11:7e:9b:8c:98:4d:
51:d0:ca:0e:50:14:aa:25:47:57:a6:a3:d6:96:81:fe:49:00:
46:bb:2b:f3:56:3b:f4:5f:32:a5:cc:aa:f5:60:5a:1a:2e:eb:
e6:af:1d:33:ac:6a:bd:1c:e7:ce:f7:99:55:b2:b7:e0:07:b5:
09:8a:ec:5c:c2:8a:b9:41:fc:b2:49:5f:7b:f6:3a:6d:a8:37:
03:e7:5c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:28 2025 by rpki-client