Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/99J6rRIC81Sb71Me4iZhzgw-bPE.roa
File: 99J6rRIC81Sb71Me4iZhzgw-bPE.roa (raw, json)
Hash identifier: 28q80SrC4/COFNJCSVoNShowNagpSrPhWo40Vy5hr3o=
Subject key identifier: F7:D2:7A:AD:12:02:F3:54:9B:EF:53:1E:E2:26:61:CE:0C:3E:6C:F1
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 08D8
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/99J6rRIC81Sb71Me4iZhzgw-bPE.roa
Signing time: Sun 07 Feb 2021 11:53:28 +0000
ROA not before: Sun 07 Feb 2021 11:53:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 61.57.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 7 11:53:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F7D27AAD1202F3549BEF531EE22661CE0C3E6CF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:55:dd:64:71:c7:82:0e:2f:50:74:1a:50:
d3:43:59:36:fc:f3:53:17:b1:83:a3:91:4f:60:ca:
ec:7c:28:18:36:55:c9:e1:d4:c4:99:62:b6:0b:fc:
41:58:a6:96:20:63:a6:c2:05:cd:fc:ad:76:3c:f6:
bf:11:e5:60:51:98:ba:be:e6:10:ee:24:61:ad:69:
6a:89:a1:3e:b1:f5:48:72:cb:98:d1:b0:0d:1a:e6:
d1:57:29:2b:1f:2b:42:53:8c:c8:dc:ab:2c:28:77:
b7:77:cd:2b:e4:9e:4b:44:63:b5:64:d2:8f:8d:e2:
52:2a:a9:3f:6e:a6:c6:34:9e:a7:05:bc:d4:82:ba:
b3:b0:b9:5c:0b:68:f2:d8:44:f9:26:e0:38:8a:8e:
ed:dc:43:5a:29:2b:c7:88:04:39:29:57:2e:d5:4b:
3b:70:01:61:53:32:09:0e:e5:d6:85:d3:59:74:d2:
a9:45:72:0e:58:e4:b0:f3:6a:f4:94:c1:bb:49:fe:
5f:10:0e:9d:16:dd:86:ef:ba:ed:86:32:9e:07:fc:
28:f3:68:0b:af:f3:1c:7f:89:1f:ef:ca:aa:ae:db:
6e:78:9e:9f:fb:f7:74:af:d7:27:45:50:5a:27:aa:
b7:88:5c:b3:04:00:5f:c0:47:5b:b8:87:35:ba:66:
e5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D2:7A:AD:12:02:F3:54:9B:EF:53:1E:E2:26:61:CE:0C:3E:6C:F1
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/99J6rRIC81Sb71Me4iZhzgw-bPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.32.0/19
Signature Algorithm: sha256WithRSAEncryption
c0:be:22:91:33:9e:f2:2d:48:ee:c6:68:b8:27:80:fd:f7:0f:
59:43:ed:9d:c6:ee:e6:22:28:cb:71:a5:90:a9:41:e7:2d:e9:
64:0c:9a:55:6f:3f:4a:c3:5f:01:09:a8:9b:49:f1:1a:59:1d:
4c:fa:65:1e:52:6f:75:7e:6e:6d:34:4c:8e:14:a3:20:4e:0e:
1c:59:29:f7:ec:a1:ec:2f:f6:07:eb:82:69:78:9a:3f:e6:88:
70:d1:f3:94:4e:d8:b3:f9:c4:84:20:ac:25:43:7c:24:99:0c:
c1:5c:76:ab:1f:57:1e:48:fe:0a:03:75:76:fb:c7:29:72:8c:
b1:c4:cb:ab:6a:3e:eb:41:c5:e2:82:c6:54:a7:7b:62:99:c6:
05:74:db:b5:11:ff:ed:d3:2e:28:c6:9f:cc:f0:c0:cc:10:8d:
96:96:65:46:8f:4a:cc:63:54:93:9e:5f:4c:af:ba:ad:7a:4f:
cf:73:17:51:3a:0f:55:44:81:b1:65:89:85:0d:68:c1:56:f8:
0f:c1:25:b4:55:9d:97:cd:b0:cb:4e:46:68:a0:15:3a:16:b6:
8c:29:b0:6b:d2:f3:ed:86:3f:bc:c9:86:18:60:f1:ca:65:71:
50:e3:1d:fd:e4:28:94:42:97:c6:7a:fb:f8:77:14:9d:26:c9:
2a:5c:f1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:41 2025 by rpki-client