Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YFgb5ry9m5uR7DEjA9tSaQNxxP4.roa
File: YFgb5ry9m5uR7DEjA9tSaQNxxP4.roa (raw, json)
Hash identifier: GULCB8GEOMVut8Prb3b5LFyt3Dlss3tTxAyRxlPuqeg=
Subject key identifier: 60:58:1B:E6:BC:BD:9B:9B:91:EC:31:23:03:DB:52:69:03:71:C4:FE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D38
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YFgb5ry9m5uR7DEjA9tSaQNxxP4.roa
Signing time: Mon 15 Jan 2024 21:25:22 +0000
ROA not before: Mon 15 Jan 2024 21:25:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3384 (0xd38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:22 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=60581BE6BCBD9B9B91EC312303DB52690371C4FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6b:23:8f:25:13:9a:c7:65:6e:15:29:db:8b:
ff:07:ce:cd:1d:0b:05:98:e8:30:ec:00:2a:a7:78:
c4:b7:a2:49:bf:67:57:d3:26:61:96:19:03:2e:c8:
64:71:36:25:6b:a5:6b:8f:e0:c9:dd:5e:fa:6f:29:
e9:79:7d:a3:72:4c:90:63:50:67:25:4b:a1:03:9e:
f4:4e:aa:f0:b3:4c:14:d3:db:be:4a:c2:80:98:54:
5d:92:e8:42:d1:48:13:fe:fb:ce:06:12:84:e3:d0:
02:1c:4a:d2:a9:c7:7b:58:17:61:2d:a4:e9:a7:de:
17:8d:98:5b:0d:50:41:17:8f:40:b3:46:63:7c:8b:
5b:79:97:ea:b9:6b:a9:0b:e4:b0:78:19:fa:33:9a:
5f:a6:89:d3:43:2b:62:11:6c:86:15:57:1d:c6:fa:
29:81:63:37:27:fd:65:ae:93:90:d9:37:99:e1:e3:
90:ff:11:7d:af:ae:23:bf:7b:97:a9:7c:e1:65:df:
d0:21:d4:96:9f:b9:34:9c:73:20:6d:35:d1:d5:3c:
d6:5d:9b:e0:99:21:94:30:c5:7f:b2:f2:93:58:b5:
f3:3a:13:59:97:c8:f6:14:29:95:fa:5e:44:30:3f:
ba:07:b1:c9:8f:a6:fa:0e:6d:f5:02:e2:39:88:82:
35:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:58:1B:E6:BC:BD:9B:9B:91:EC:31:23:03:DB:52:69:03:71:C4:FE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YFgb5ry9m5uR7DEjA9tSaQNxxP4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
28:d6:1d:30:4a:13:85:bc:9d:c8:99:b1:23:ad:75:78:72:00:
92:8f:15:a5:8f:9e:4f:ad:5b:61:5b:00:c0:d1:f8:f3:c9:61:
12:c2:d6:bd:f9:a6:9a:f1:f5:24:76:52:8c:1c:ab:a4:9f:3c:
0e:41:88:75:01:19:f5:8c:12:84:e0:ef:7d:bb:68:99:88:3b:
11:e8:2a:86:af:37:6e:fa:f5:e0:4e:35:6e:5b:f5:3c:30:68:
a6:7c:ad:bd:32:8c:cf:a0:59:39:f8:a3:d5:c7:eb:fa:95:c2:
08:90:ee:79:85:06:fc:5e:bd:3f:b5:7c:8e:9b:62:45:ec:27:
71:bc:af:15:55:31:20:43:78:bf:af:81:42:b7:5e:df:5b:20:
06:0a:f0:33:1d:e3:62:15:88:2c:c0:ea:84:79:b8:75:f0:86:
03:78:0a:7f:3d:60:8e:f0:6d:bf:d8:e9:2c:8e:69:80:18:d9:
33:a8:a4:ba:53:54:0d:bd:ed:8b:f8:ef:b8:86:24:e3:be:e5:
91:53:78:8e:41:e6:81:d3:40:b0:0f:2b:44:0c:e8:91:17:68:
d8:35:e9:6f:59:dd:ba:e1:51:c8:a6:80:6c:77:57:25:0e:65:
a7:87:f7:4a:66:a3:82:72:9a:5c:b5:40:19:27:2c:37:84:a8:
c1:b2:c8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:48:59 2025 by rpki-client