Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/K_4K9ukLfugB_4KUFzNWiC7mPq4.roa
File: K_4K9ukLfugB_4KUFzNWiC7mPq4.roa (raw, json)
Hash identifier: wupGQRPopaQZtvqILo5zQ2vgt3cABIRDbndwlYCljZk=
Subject key identifier: 2B:FE:0A:F6:E9:0B:7E:E8:01:FF:82:94:17:33:56:88:2E:E6:3E:AE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D0C
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/K_4K9ukLfugB_4KUFzNWiC7mPq4.roa
Signing time: Mon 15 Jan 2024 21:24:27 +0000
ROA not before: Mon 15 Jan 2024 21:24:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 2001:f10::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3340 (0xd0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:24:27 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2BFE0AF6E90B7EE801FF8294173356882EE63EAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:db:ed:40:65:96:d1:0a:7d:9a:2b:8d:59:
14:e5:e0:a3:a2:6f:7c:52:f5:75:c8:71:f6:83:24:
44:06:bd:3c:4c:0e:44:4f:a9:ff:0e:19:9d:5e:a7:
3a:f8:1c:9b:22:04:5c:b2:a7:0c:f1:0d:26:28:fa:
f6:e2:b1:f0:29:4a:82:09:31:ce:cf:22:67:90:9a:
15:cc:22:c5:aa:89:27:4a:48:d0:5e:91:8e:37:e0:
90:ad:86:17:44:a1:f3:6d:60:0c:ce:46:8a:2c:22:
6a:91:94:16:ab:58:4d:8b:77:8e:04:5f:41:be:9b:
ce:ea:41:5e:73:93:15:57:bf:c9:1d:32:92:a9:f9:
61:98:b8:02:44:a6:41:7b:4f:d3:13:24:01:68:a9:
a8:49:3a:59:3c:71:4d:b5:30:1b:ad:27:5b:bc:43:
ca:56:e3:97:ba:db:7f:a3:ce:67:ac:b0:76:bb:53:
6b:bd:b4:8e:bf:f3:69:2a:d0:cb:2e:b3:11:48:61:
90:e6:84:78:b4:bb:c2:c5:d4:bf:fc:d6:ee:d6:db:
44:93:bd:d2:05:48:84:9b:1c:a5:bc:96:b3:9b:b3:
42:64:05:70:78:4c:1d:3f:02:22:eb:53:a0:88:b7:
ba:7c:7a:70:d8:7c:0d:35:7b:e7:b2:16:53:e0:bc:
31:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:FE:0A:F6:E9:0B:7E:E8:01:FF:82:94:17:33:56:88:2E:E6:3E:AE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/K_4K9ukLfugB_4KUFzNWiC7mPq4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f10::/32
Signature Algorithm: sha256WithRSAEncryption
bb:dd:2f:d9:07:2e:08:9f:c1:3f:db:50:c3:c1:57:81:47:7c:
f4:43:39:b9:5f:8c:fd:87:be:fb:30:f4:4e:f3:8c:18:07:84:
5f:fe:ae:15:93:6d:f2:6b:6f:00:2c:16:95:85:93:8c:e1:c7:
fd:fc:f1:8b:97:a6:8f:39:23:85:5b:39:70:37:cf:54:59:71:
7b:45:c3:af:6b:52:c0:a9:f9:ab:98:f4:8f:21:0d:7f:93:3e:
c2:30:7c:24:28:fc:19:97:79:a3:09:0a:80:c8:c3:73:2b:7a:
98:63:15:76:d6:13:10:c8:1c:2f:f9:f9:e8:9a:bf:47:54:88:
a5:67:62:d9:f4:a2:ad:55:93:e3:f5:80:ca:47:58:27:7a:fc:
2d:ff:a3:55:84:3f:cc:6c:ea:5f:6f:0f:92:a7:93:50:fc:f6:
9e:73:f0:2e:f5:86:cd:a4:ff:ab:74:9d:0c:72:15:cb:9b:8e:
78:51:bd:55:a8:c8:f5:90:0c:99:96:7b:ab:93:97:33:4b:a2:
8a:2d:f1:d8:0d:77:cf:b7:5d:b9:a0:9b:73:2c:86:49:f5:0c:
91:b1:8e:44:c3:f3:38:45:f9:01:36:8d:a6:48:d6:05:5c:b9:
1f:21:a4:8d:4c:83:11:ca:29:e4:12:61:21:bd:ca:04:2a:9b:
e9:bc:2b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:00 2025 by rpki-client