Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/3Rir2IWYBtZNeRi8iNfZmj9pgNM.roa
File: 3Rir2IWYBtZNeRi8iNfZmj9pgNM.roa (raw, json)
Hash identifier: N/wKvkbph64Dx1Kkw37jY1ul3MJkng3kXyKt71oHd3c=
Subject key identifier: DD:18:AB:D8:85:98:06:D6:4D:79:18:BC:88:D7:D9:9A:3F:69:80:D3
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08DA
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/3Rir2IWYBtZNeRi8iNfZmj9pgNM.roa
Signing time: Sun 07 Feb 2021 11:53:29 +0000
ROA not before: Sun 07 Feb 2021 11:53:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 163.29.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2266 (0x8da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DD18ABD8859806D64D7918BC88D7D99A3F6980D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:78:65:85:bc:5b:4f:4c:1f:36:54:8a:26:e7:
88:8c:0c:30:8e:f2:0e:65:c2:32:ae:05:44:fe:50:
db:3d:20:2d:f4:bc:f9:db:b3:ce:ac:45:a0:53:63:
c8:46:93:99:cf:67:0f:82:a5:78:2a:cc:7e:99:89:
5a:b0:48:7f:7d:5e:10:89:95:53:3e:7b:bb:9d:b9:
f5:93:72:38:f3:aa:13:ea:b6:81:80:a8:56:cc:57:
fc:fc:95:64:b6:f7:a9:ad:ef:2b:51:c0:bd:33:cf:
09:16:2c:58:21:21:58:43:b1:ee:46:29:e8:8e:0c:
cf:9d:e1:90:1e:22:9a:44:4b:ea:69:ed:da:79:c9:
24:9d:09:7d:48:9b:80:ca:42:19:ad:90:6d:53:7e:
9e:e1:f1:c2:f7:3a:c4:07:bb:6b:a6:81:40:22:6f:
0c:c3:e3:8e:a1:09:74:90:da:49:f3:45:70:8d:29:
ab:ee:56:9a:79:54:bc:f5:7d:da:ef:ee:e0:60:76:
e5:97:4c:f3:ec:e9:ba:0f:0a:a5:71:9b:c2:cb:27:
c8:5e:59:3d:dc:2a:1d:c4:fb:ed:2f:45:90:a9:2c:
9f:17:95:1a:5c:c6:89:68:24:df:eb:1b:34:b5:6f:
fe:e5:c3:c3:f1:3b:cc:81:5b:cf:6f:11:15:12:13:
a3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:18:AB:D8:85:98:06:D6:4D:79:18:BC:88:D7:D9:9A:3F:69:80:D3
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/3Rir2IWYBtZNeRi8iNfZmj9pgNM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.29.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ce:ef:00:bc:65:67:ff:f0:3b:39:40:04:3a:38:af:e3:f8:af:
67:c2:c8:0c:be:70:12:ec:32:93:54:4a:b8:0e:e1:ca:2e:24:
1a:6f:40:1f:9e:25:f8:4a:5b:02:82:8f:33:3e:a3:44:93:66:
a4:19:92:27:b5:4c:40:9c:54:f8:44:7d:ae:e0:24:ae:60:31:
b9:1e:e6:a0:aa:16:31:18:c9:d4:91:1e:bc:73:0a:d1:76:9d:
b1:67:18:f1:c8:d7:88:5c:86:98:e8:3d:cc:df:9f:33:2d:bf:
e6:c9:cc:67:b6:29:87:b7:04:61:a2:fc:0c:4e:38:8d:e2:5e:
c8:35:e9:ff:33:41:a3:ee:64:03:71:f7:ee:87:55:61:dc:99:
bc:df:0d:59:12:84:0b:9e:17:02:46:ad:9e:92:83:18:b7:1f:
eb:97:61:6e:e3:e4:42:93:16:68:95:3a:22:6d:b2:3f:99:76:
9f:ab:72:d9:62:e0:6c:7f:10:1b:f2:cb:db:04:cd:f1:98:af:
7f:8d:d3:06:a2:d1:4c:fc:42:0b:f1:3f:0e:99:e2:96:b3:fb:
46:30:2c:d7:18:d3:7c:39:84:d3:ef:05:53:9a:c1:22:f5:25:
7f:a2:9a:08:5c:e6:6a:0c:26:0e:91:3e:23:c5:50:9e:cc:f1:
ae:b1:0f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:31 2025 by rpki-client