Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/qcWIdz52MlMFKTS0U6zOARMkf6Y.roa
File: qcWIdz52MlMFKTS0U6zOARMkf6Y.roa (raw, json)
Hash identifier: KObruXikVHQS09yj/1DuXXyCEv99+qAjtgu4926r6go=
Subject key identifier: A9:C5:88:77:3E:76:32:53:05:29:34:B4:53:AC:CE:01:13:24:7F:A6
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C66
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qcWIdz52MlMFKTS0U6zOARMkf6Y.roa
Signing time: Mon 15 Jan 2024 21:09:22 +0000
ROA not before: Mon 15 Jan 2024 21:09:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 203.79.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3174 (0xc66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:22 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A9C588773E763253052934B453ACCE0113247FA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:db:e8:3a:c9:a4:64:43:9d:63:48:56:c3:04:
3a:ab:c4:5c:e0:12:8c:4a:49:ce:05:9e:c6:a5:2f:
ab:be:c8:8a:8d:41:47:f4:a5:ee:84:d6:9b:f6:68:
c5:93:25:75:dd:b9:5d:b4:a2:66:88:b0:a3:7f:7d:
86:5c:91:8f:cd:06:8e:53:a4:d8:21:d0:7e:fc:59:
72:0c:27:fd:d3:21:09:57:ff:8f:f0:8c:d6:b7:ee:
aa:a3:39:f8:45:36:19:81:9e:98:a4:56:72:c7:0a:
1c:1e:3d:09:0d:d2:d6:c0:11:01:2a:31:49:9c:fb:
5d:4b:1c:69:60:46:75:e4:2f:a8:5f:05:16:c6:4b:
6c:14:45:9d:63:30:98:3a:64:ac:fa:62:b7:b6:f2:
68:61:6c:a3:4e:a8:4b:ca:bb:e1:e1:a2:ec:fd:1c:
3c:90:2d:60:a9:13:e1:76:63:50:96:7f:51:9c:c4:
9c:00:ef:3b:5c:13:02:46:e9:ca:65:47:01:ae:11:
7b:b1:d8:45:50:18:c2:35:21:16:8b:cf:a9:65:92:
35:a0:d7:b7:04:94:fd:01:44:12:0d:da:e9:71:83:
f0:68:05:c1:9c:f3:2d:53:b0:a2:b6:10:6f:b2:ad:
1c:d9:23:36:87:3a:91:19:c1:21:0c:c8:77:e9:ed:
8f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C5:88:77:3E:76:32:53:05:29:34:B4:53:AC:CE:01:13:24:7F:A6
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qcWIdz52MlMFKTS0U6zOARMkf6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.224.0/22
Signature Algorithm: sha256WithRSAEncryption
27:1f:1b:18:e8:a3:36:bc:ca:eb:af:0d:f1:5c:c6:25:e7:b5:
a0:7e:cd:c3:74:4c:63:dc:3f:3c:bb:ac:dc:6b:d4:0f:c7:1f:
b1:2e:6f:91:50:d3:d0:15:35:f8:ba:6e:7b:1e:b5:25:45:d9:
28:7d:21:d1:97:00:82:3d:5c:93:ad:a0:d2:d9:1d:a7:99:79:
86:34:05:0a:5c:1b:36:86:c8:6e:55:f6:e9:2e:fa:00:35:e6:
9c:e5:95:eb:45:a0:22:6d:88:cc:47:d2:d6:86:3b:7d:60:a0:
b5:2a:73:c3:8e:a4:6f:db:14:ce:9d:8e:94:46:98:8c:f7:2c:
0d:99:66:f2:ee:f2:d8:2d:e2:e7:e0:dd:25:0b:58:07:f2:84:
c3:7a:fd:18:91:3a:0c:84:3a:f8:ec:ea:63:56:08:fb:d7:40:
66:94:b7:ac:77:c7:1e:b8:8e:d0:3d:96:0e:f1:ed:e0:e1:9f:
12:8c:fd:e8:ce:19:89:a0:da:75:29:22:f1:de:63:87:48:17:
84:bd:66:13:5e:45:3c:b2:ef:99:29:ee:52:a2:0b:d0:d4:7a:
1b:57:5b:f1:b9:55:73:99:49:38:52:e9:0a:a6:29:32:91:a1:
6e:aa:ac:d1:12:ce:c9:3e:d1:87:f8:9f:59:52:7a:53:22:7b:
42:b1:48:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:27 2025 by rpki-client