Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/-c7ara9EITFdsfhKPvsZ50lvImg.roa
File: -c7ara9EITFdsfhKPvsZ50lvImg.roa (raw, json)
Hash identifier: /9bYn4lIdMGaRl+3/uF+S3MmouAHIsbJXhM8h7fZCR8=
Subject key identifier: F9:CE:DA:AD:AF:44:21:31:5D:B1:F8:4A:3E:FB:19:E7:49:6F:22:68
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08EA
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/-c7ara9EITFdsfhKPvsZ50lvImg.roa
Signing time: Sun 07 Feb 2021 11:53:39 +0000
ROA not before: Sun 07 Feb 2021 11:53:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 61.60.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2282 (0x8ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F9CEDAADAF4421315DB1F84A3EFB19E7496F2268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:51:d1:a3:13:73:25:8c:e9:6f:1c:dc:22:73:
b8:0b:32:7e:37:a0:74:75:8b:3e:c5:23:fa:75:da:
11:ac:7e:4a:f5:03:af:62:ab:40:ef:df:59:43:2d:
35:ba:a3:04:ba:d0:fa:5a:4b:f4:6f:cb:bb:8e:8a:
02:cf:4d:d4:e8:d2:68:79:ad:cd:85:29:95:b5:ae:
3c:fb:fe:ff:62:e5:7a:db:59:b5:67:0d:16:25:34:
6d:2e:19:b1:4b:a6:37:ee:96:da:40:8e:bb:52:87:
53:9c:80:df:62:35:c5:f3:cd:c9:e9:ed:5d:8e:43:
fd:ad:10:51:4e:9d:74:e2:d0:cb:64:81:4f:d7:47:
1e:85:ec:ea:92:0f:27:82:6a:5f:c8:8a:d1:dd:f3:
58:8c:0a:34:59:4b:7d:61:07:94:f0:5e:b6:98:01:
fb:dc:7f:68:83:b0:1f:74:96:33:75:87:0f:bd:92:
74:5f:a1:15:a7:ab:03:2d:fc:39:10:c3:e0:ec:33:
a4:c4:b3:28:f7:00:80:ba:da:1c:94:40:01:40:01:
fa:a9:6d:f9:77:b8:9e:5a:de:d1:1d:29:fe:0b:91:
10:94:bc:f7:70:15:70:19:d3:80:97:1f:3f:19:8a:
05:35:fe:b9:32:52:78:a2:81:9c:4c:26:0e:35:7b:
36:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:CE:DA:AD:AF:44:21:31:5D:B1:F8:4A:3E:FB:19:E7:49:6F:22:68
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/-c7ara9EITFdsfhKPvsZ50lvImg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.0.0/17
Signature Algorithm: sha256WithRSAEncryption
57:92:26:43:88:f7:87:3d:a3:c5:36:8a:2e:62:eb:f8:a9:d6:
68:aa:ce:a1:33:ea:89:4f:63:93:26:b2:e8:70:9c:02:52:57:
eb:35:0a:a6:82:86:a9:52:2e:ad:39:28:2b:f9:4a:35:70:2d:
0b:01:39:79:c9:75:d4:78:e7:39:bc:b2:82:33:90:cf:78:1a:
41:8f:af:5a:c3:1a:36:a6:1d:b9:9b:9b:42:08:78:a0:3d:8e:
74:af:10:02:14:cf:f5:77:1f:ac:ed:0c:21:ee:70:94:a9:af:
ae:31:ad:97:d9:18:b9:ca:7a:fc:3e:02:6a:87:a8:dc:54:4c:
d0:9b:43:68:b9:ae:c5:07:76:5c:60:74:c9:ca:d2:d5:46:d9:
00:a4:05:75:85:bb:ec:82:91:2c:01:2f:9d:89:ab:ff:b0:99:
20:53:3d:d0:c4:a2:f2:be:da:26:2f:9d:87:e7:dd:61:6f:c9:
0e:d6:44:7f:24:0b:20:bd:0b:51:60:1b:1f:93:4b:0d:3c:af:
87:ba:06:82:65:5c:7c:6c:e6:0f:81:be:f4:41:aa:31:78:97:
e0:8b:c7:07:45:83:dd:d5:8d:74:dd:ad:da:29:75:90:9c:ff:
55:6d:2b:36:df:f0:99:2c:46:1c:43:b8:5e:03:9f:11:e4:4b:
30:98:97:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:00:26 2025 by rpki-client