Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_UgfpInLf69sYPtFZW11mxKNTvU.roa
File: _UgfpInLf69sYPtFZW11mxKNTvU.roa (raw, json)
Hash identifier: 3T/T8L+xkEsPNK6tYqCGygTVCc0mHBm2fh0KJHMZSFo=
Subject key identifier: FD:48:1F:A4:89:CB:7F:AF:6C:60:FB:45:65:6D:75:9B:12:8D:4E:F5
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08F0
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_UgfpInLf69sYPtFZW11mxKNTvU.roa
Signing time: Sun 07 Feb 2021 05:59:40 +0000
ROA not before: Sun 07 Feb 2021 05:59:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 39.12.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2288 (0x8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 05:59:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD481FA489CB7FAF6C60FB45656D759B128D4EF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fd:1c:9a:1f:e6:09:25:a0:be:ec:0e:7e:01:
b6:db:ee:51:d2:bb:f7:59:82:28:ed:3e:91:c9:7e:
f9:01:b5:5e:64:b4:63:e4:51:2d:80:65:81:4c:bb:
b8:05:e7:2e:42:ca:94:37:ce:7d:6b:60:06:80:84:
b1:d2:58:b9:ab:f6:f9:88:31:cd:03:b2:28:2c:d1:
d8:3b:18:ed:b1:87:21:e2:95:59:72:a2:1f:37:a0:
49:9f:6e:99:57:70:bc:bd:e3:67:bd:01:99:69:28:
e5:81:6a:a3:ba:06:3f:fc:ec:89:08:90:db:2f:00:
dc:f9:12:fc:56:73:94:08:a2:e4:ba:2d:75:e5:a4:
aa:f4:bf:ab:e4:3d:e5:d1:ec:a1:47:0b:23:2d:51:
fd:cf:6b:5f:7b:0e:76:08:ea:29:f1:65:f1:6d:d8:
d1:f0:7a:8c:bf:a5:ee:96:5a:22:60:d0:5f:16:c8:
8e:0e:20:09:61:4d:4c:5a:1b:1e:ac:e7:d8:d0:4c:
c4:0b:08:b9:b0:b9:a9:51:cb:dd:02:b9:34:c2:ef:
c4:b7:51:a0:ce:6c:06:f6:6c:1a:da:56:1f:ee:67:
2c:92:d5:7c:5a:49:a3:6a:08:6d:cc:ce:74:a6:3f:
ce:79:4d:15:e0:0a:77:6f:12:31:05:b5:b5:89:5c:
bc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:48:1F:A4:89:CB:7F:AF:6C:60:FB:45:65:6D:75:9B:12:8D:4E:F5
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_UgfpInLf69sYPtFZW11mxKNTvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a6:be:1b:10:12:06:55:ec:e9:a3:bd:47:9b:9e:31:a6:0f:a0:
e9:2c:e8:eb:3e:f9:d6:cb:a7:be:0e:e7:a6:1d:bb:45:97:c6:
13:33:c6:42:26:9b:04:8f:f4:32:89:ca:2b:e3:91:07:4c:0a:
2a:1f:b0:3e:1f:99:07:9b:a1:4c:5d:6a:26:dd:e1:29:3e:e4:
6b:ee:af:d5:3b:66:1b:9c:d3:26:5e:1b:e8:3b:e8:4f:2e:8d:
cc:c3:74:8b:a4:58:4d:43:57:bc:43:93:f9:9a:a5:a8:2b:5f:
87:83:07:11:15:28:e2:f7:c9:98:23:81:6f:ab:7e:ed:05:43:
a9:70:9c:dd:85:c2:44:93:6d:3d:d1:87:67:8e:13:8e:60:28:
83:09:65:b7:a2:be:cb:c8:8e:bc:ac:c9:31:84:41:55:e4:6f:
49:ba:af:79:75:d8:95:e8:09:e9:2c:da:f6:ef:53:a4:dd:df:
fa:68:a0:26:ce:52:ec:6b:1d:5e:7d:d1:51:72:8b:29:95:8d:
d8:5f:88:76:f1:b5:50:74:3f:b0:d8:d8:3f:e2:8b:97:9a:ff:
c0:d5:d8:bd:92:b5:11:e2:2d:b3:a0:df:68:28:f5:84:6d:98:
36:fa:85:63:5b:3a:48:be:69:6b:c0:97:cb:9e:2b:2e:17:3c:
c5:bd:be:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:04 2025 by rpki-client