Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/UZW22ISinKHrtM1Zb1n0tVUrIcg.roa
File: UZW22ISinKHrtM1Zb1n0tVUrIcg.roa (raw, json)
Hash identifier: BMf4ehEI4MmV6f73+BW0PNcCctNccRs6En4Q6oWth40=
Subject key identifier: 51:95:B6:D8:84:A2:9C:A1:EB:B4:CD:59:6F:59:F4:B5:55:2B:21:C8
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CE6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UZW22ISinKHrtM1Zb1n0tVUrIcg.roa
Signing time: Mon 15 Jan 2024 21:23:41 +0000
ROA not before: Mon 15 Jan 2024 21:23:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.187.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3302 (0xce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:23:41 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5195B6D884A29CA1EBB4CD596F59F4B5552B21C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:27:6d:8a:3f:25:52:af:ad:ee:10:e0:62:
f7:74:8f:ab:f9:94:2e:dd:0b:33:d2:61:15:07:ad:
8e:66:81:69:cf:5c:3b:29:24:fd:13:d3:a5:5c:bd:
f2:ad:ca:c4:8b:fb:2a:1a:8e:db:e4:c9:7c:96:0f:
bc:b2:e5:e5:31:9f:fd:36:36:bb:2a:f9:e9:c2:06:
05:6e:cd:87:3f:e6:05:92:5e:1d:78:fd:6a:54:b8:
d4:22:ef:4d:73:28:ec:fe:e6:54:55:e1:e8:50:14:
11:5d:d0:a6:ee:43:25:b2:40:13:db:82:60:44:b1:
a8:14:8d:c2:00:98:c2:1a:68:b4:5b:2f:25:d8:6d:
87:7c:41:3b:6b:32:5e:a2:ee:fe:8a:5e:57:d2:0c:
6a:61:83:1b:ff:70:8c:fd:48:7b:25:56:45:89:fe:
54:fb:3c:23:3d:c7:94:23:6a:d7:51:f3:d6:12:3a:
02:61:b0:44:29:04:ae:09:2b:1c:21:27:e7:98:65:
eb:94:26:c2:4c:8a:41:64:b6:26:37:dd:8b:c2:7c:
c5:c5:e3:5b:79:06:43:68:d3:73:39:4b:88:0b:58:
3f:69:4b:30:e1:58:86:07:2b:f4:e0:df:43:12:60:
b4:08:64:e8:fd:83:39:a4:b4:a4:ce:4c:b6:df:90:
23:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:95:B6:D8:84:A2:9C:A1:EB:B4:CD:59:6F:59:F4:B5:55:2B:21:C8
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UZW22ISinKHrtM1Zb1n0tVUrIcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
65:94:90:21:9e:90:1d:44:ed:69:7e:93:11:23:fc:0f:89:08:
17:80:ab:88:46:f0:88:ea:96:7a:da:0f:aa:10:ff:90:f4:d6:
9a:87:0c:a0:fb:aa:1c:c6:f9:43:9b:3b:8b:31:2e:d5:1f:6b:
4b:69:c7:8a:27:a7:2b:53:5c:44:89:5b:87:3e:72:6d:35:bf:
80:da:7f:d3:46:af:f3:84:43:2b:0c:13:55:5d:40:53:28:e7:
76:63:05:bc:4e:db:62:d8:62:e5:d3:18:b6:4d:0c:87:00:bf:
83:50:19:38:b7:7c:2d:3b:83:7f:0f:f1:22:5b:9e:79:fe:29:
a9:86:b8:4a:11:5c:19:f6:03:d8:56:aa:34:02:57:68:50:72:
f5:a1:14:d5:54:39:be:3e:25:9c:6a:b8:93:7a:5a:c3:bd:f6:
e4:f8:5c:71:41:74:22:9d:c8:fd:9b:51:7f:4b:76:92:e3:af:
5f:47:5a:cb:9a:fa:8a:db:65:10:00:28:d2:fa:1d:68:6c:48:
06:32:43:33:fa:ab:80:7e:55:ce:c4:e3:44:df:da:60:11:38:
2f:77:5d:ae:db:19:16:ad:0c:62:6a:08:4d:39:f0:ff:94:63:
22:17:4e:8e:c0:d2:c1:c9:4a:0f:30:96:0a:a7:29:c6:75:ee:
c8:b3:87:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:18 2025 by rpki-client