Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/kBCzrjJDw4q_cLmKOsE6AxTXl78.roa
File: kBCzrjJDw4q_cLmKOsE6AxTXl78.roa (raw, json)
Hash identifier: DkobNReoTln8iEA0dnNkzS/viM88JoHRRITHNZ3urXY=
Subject key identifier: 90:10:B3:AE:32:43:C3:8A:BF:70:B9:8A:3A:C1:3A:03:14:D7:97:BF
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DEC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kBCzrjJDw4q_cLmKOsE6AxTXl78.roa
Signing time: Mon 15 Jan 2024 21:35:28 +0000
ROA not before: Mon 15 Jan 2024 21:35:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3564 (0xdec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:35:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9010B3AE3243C38ABF70B98A3AC13A0314D797BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:65:0f:dc:ba:c4:8a:68:cb:c9:af:f0:f7:67:
d2:3c:b5:19:7c:27:d0:fa:d0:74:02:f2:7a:87:0c:
1f:5c:8b:2d:80:b0:09:24:37:8a:20:23:8d:9c:84:
8f:96:6f:07:93:2e:87:20:61:3b:49:05:75:c9:7c:
e9:ea:53:4a:9c:01:59:1e:8a:aa:08:1f:98:b7:0e:
1e:62:4d:55:40:1b:e8:5b:06:c2:dc:79:eb:27:8d:
50:2b:14:19:0d:db:7c:0d:aa:ce:23:ac:fc:80:36:
de:3a:cc:61:6f:7c:28:ec:54:c1:18:24:da:1b:86:
f4:45:31:97:1f:ed:29:27:6c:db:cf:af:1a:45:9b:
98:17:47:69:59:66:55:a2:b0:9a:eb:32:df:e9:58:
82:8e:40:ed:06:2d:cc:cd:22:72:a9:01:3b:47:42:
6d:b9:a0:e8:de:26:ad:bf:55:29:06:c2:43:8f:07:
d4:4f:29:ee:1f:33:43:cd:bc:34:e6:c2:1f:7c:84:
53:da:ee:e0:b9:c4:8c:75:e9:ed:71:63:8d:f2:59:
83:6c:c7:83:86:c3:11:b0:1e:05:81:c4:54:e4:29:
8a:0d:43:61:8f:36:9c:a0:f6:cc:c1:e4:ca:3d:07:
25:6e:29:10:5d:07:bb:78:7f:b7:73:6f:c0:da:0d:
89:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:10:B3:AE:32:43:C3:8A:BF:70:B9:8A:3A:C1:3A:03:14:D7:97:BF
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kBCzrjJDw4q_cLmKOsE6AxTXl78.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.175.0/24
Signature Algorithm: sha256WithRSAEncryption
93:d9:dd:bf:0f:d9:22:43:9f:fa:22:dd:75:05:2c:c0:1b:52:
51:8e:ec:60:21:4e:e6:ab:2e:2e:3b:cc:1d:e8:11:9e:74:19:
5f:3c:1a:ab:04:6b:9f:c8:7e:31:aa:1a:e7:9a:3c:a0:fe:11:
c2:a1:17:ab:ae:0e:d5:94:5a:78:ec:6c:81:01:4c:45:ab:be:
b3:24:a7:00:f5:95:68:93:70:c0:87:df:f7:46:01:f7:ab:c4:
0d:6a:8c:e8:4e:6f:a9:21:8f:27:21:b1:4f:f1:ec:52:dd:10:
04:24:04:19:fc:17:c4:3e:6e:f9:85:da:c1:2c:2d:da:fa:1c:
4d:1c:ea:70:7a:b1:ec:24:e2:9a:ee:60:19:07:12:62:c1:0b:
80:08:6c:af:48:7f:ae:64:d9:b3:93:c1:fe:29:93:1f:2c:68:
a1:4f:59:88:0d:3b:22:cc:68:97:1f:6a:21:50:1a:6d:0c:b9:
0f:35:84:95:4e:97:d9:03:7e:5d:76:29:84:cc:e0:e5:e0:8a:
26:03:9a:c3:c8:47:f6:fc:21:6d:1d:f2:87:c4:32:ed:1f:7e:
15:fc:62:7d:11:87:6b:8a:01:8c:40:9a:38:df:7b:a6:12:13:
ad:d7:99:f6:52:b5:20:23:d4:f0:f4:ef:a7:a6:35:88:a2:1e:
01:0e:b2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:57 2025 by rpki-client