Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/OvRCG6kg1G7Cct3IxtgisauPp7Y.roa
File: OvRCG6kg1G7Cct3IxtgisauPp7Y.roa (raw, json)
Hash identifier: N316zmSRD2oODApUNwU3F7beDyXuCO81dKGOhwq9f4U=
Subject key identifier: 3A:F4:42:1B:A9:20:D4:6E:C2:72:DD:C8:C6:D8:22:B1:AB:8F:A7:B6
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BB7
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OvRCG6kg1G7Cct3IxtgisauPp7Y.roa
Signing time: Fri 01 Sep 2023 08:50:54 +0000
ROA not before: Fri 01 Sep 2023 08:50:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9674
IP address blocks: 27.240.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2999 (0xbb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3AF4421BA920D46EC272DDC8C6D822B1AB8FA7B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7b:c1:2e:78:1a:ec:3f:a5:dd:24:2d:55:ba:
cd:a4:18:6b:9e:b3:57:d6:68:ac:32:bb:b3:45:d2:
ca:8a:1d:96:17:f4:10:cd:cf:f2:b4:83:41:91:c9:
ad:2a:61:3d:0d:fa:a0:7f:5e:f3:c1:6e:72:ff:3e:
dd:bc:57:48:6e:c1:14:0e:92:c9:53:86:5a:61:e8:
29:75:dc:5c:26:f2:63:cc:27:ed:0f:a7:68:28:0a:
e0:13:f2:4d:8a:bc:28:9a:2e:38:79:d9:f6:c7:e6:
36:38:ef:ff:ea:06:b3:50:0c:80:d3:d6:35:99:31:
80:29:bc:1f:1e:f1:de:92:b3:01:53:09:1e:85:20:
e8:a0:3c:a3:54:8e:f8:24:7b:0d:b4:e6:81:08:34:
d3:6e:50:53:9b:45:4c:43:8b:33:f8:b9:f3:44:96:
55:6f:ac:ca:bd:56:07:73:2b:de:76:fd:e9:00:a1:
c8:a1:fb:04:bf:d8:1e:a2:28:6c:c7:5f:1c:fe:ae:
6a:2b:e9:0e:2d:ac:63:ae:2e:c0:0a:be:03:81:85:
54:73:bb:df:7d:09:94:ea:88:73:c7:57:e3:4a:07:
2d:52:07:fa:83:76:bb:cd:7e:d0:e7:46:ae:c8:1b:
17:8d:b5:50:e4:4c:99:c0:cc:2a:93:77:76:8a:49:
0f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F4:42:1B:A9:20:D4:6E:C2:72:DD:C8:C6:D8:22:B1:AB:8F:A7:B6
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OvRCG6kg1G7Cct3IxtgisauPp7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.240.0.0/13
Signature Algorithm: sha256WithRSAEncryption
29:ba:65:36:1e:82:c8:5a:d3:c2:42:95:96:82:89:46:ac:9c:
cd:73:f1:f7:e8:03:6e:18:5b:fc:b7:68:49:4d:db:e9:55:b0:
4a:f5:d0:5d:8f:e1:89:90:f8:7d:3f:4a:99:a6:11:e4:c8:1f:
a5:15:e7:1a:a1:a8:55:e0:49:5f:77:58:88:58:a0:ab:c7:13:
b6:95:f0:73:c1:bf:0f:54:14:15:5c:22:6c:66:39:a4:a7:2b:
ba:69:ad:da:b0:c0:0e:8c:80:3d:00:09:c8:ac:8e:d1:e0:28:
c2:b6:a2:69:c0:e4:ff:0a:b2:73:ad:a3:98:d8:53:03:4f:12:
27:3b:4c:d3:82:ab:3a:36:45:63:55:88:a1:ca:4c:7a:51:18:
cb:cd:44:48:b5:e5:c8:aa:3e:1f:ec:92:92:18:7a:13:34:42:
dc:b1:65:de:86:7e:6c:b2:c9:72:e7:a3:08:12:2f:ad:27:9a:
dc:98:ef:36:2f:db:7e:b0:e2:eb:d0:0d:ed:7b:22:ad:3f:e3:
cd:bc:47:71:a9:7a:8d:ae:ea:66:81:73:b0:81:23:94:9e:f2:
d1:91:81:3a:09:98:55:06:ff:67:e9:e9:2c:88:98:35:17:1a:
13:ed:d3:c8:54:50:f2:bc:3e:e2:0a:5c:0c:c5:f0:89:cc:a1:
6c:6f:33:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:57 2025 by rpki-client