Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/MNOJ8TnJc5mCmrKSTDllLmshF04.roa
File: MNOJ8TnJc5mCmrKSTDllLmshF04.roa (raw, json)
Hash identifier: X37PA39+0HjknXGOvw27Xb+jvwDlIt3JLf4NA2tfQMQ=
Subject key identifier: 30:D3:89:F1:39:C9:73:99:82:9A:B2:92:4C:39:65:2E:6B:21:17:4E
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0B83
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/MNOJ8TnJc5mCmrKSTDllLmshF04.roa
Signing time: Fri 01 Sep 2023 08:54:44 +0000
ROA not before: Fri 01 Sep 2023 08:54:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4782
IP address blocks: 61.67.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2947 (0xb83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 1 08:54:44 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=30D389F139C97399829AB2924C39652E6B21174E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:24:0c:1b:2f:47:04:c5:d5:af:7a:65:58:72:
fa:17:2a:26:3e:3d:45:a7:26:e0:bc:1b:0a:29:a0:
17:3e:ba:5b:25:3a:b9:7c:38:9a:8b:b5:21:8a:4f:
6e:28:89:31:a4:11:9c:2e:7a:bd:a0:7b:73:4c:06:
c3:fe:10:91:d7:f6:83:98:6b:72:aa:77:84:4e:9a:
07:72:8b:3e:b6:9d:2f:06:94:04:bd:2e:4a:77:05:
7a:44:1b:5d:76:d3:95:65:5a:7c:7e:1c:2b:07:c9:
cc:ad:d5:a4:c1:94:c1:b5:d4:0f:e5:5a:48:be:cb:
8d:c0:ee:60:c5:f4:73:b0:28:9e:73:8a:d4:86:a6:
4d:cd:79:d4:aa:6c:7e:c4:b1:62:e6:31:b1:e9:4b:
de:cd:d7:88:4f:fa:c0:20:87:58:a1:80:55:f1:37:
94:73:ea:be:74:61:bf:19:fc:f8:a3:32:4c:92:93:
88:2c:82:fb:2f:b5:bc:50:50:ef:16:0b:e0:4b:cb:
b2:35:7f:6c:07:b0:86:5d:70:40:d2:e1:1c:bc:12:
8c:09:36:d2:9e:b5:91:05:5d:3c:92:a8:f8:51:13:
6f:28:4f:b4:5f:61:15:4f:32:56:ae:e8:0b:82:d4:
41:8e:88:64:aa:5f:ea:b8:df:08:6c:48:d6:33:3c:
bf:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D3:89:F1:39:C9:73:99:82:9A:B2:92:4C:39:65:2E:6B:21:17:4E
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/MNOJ8TnJc5mCmrKSTDllLmshF04.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
35:ca:4b:97:02:34:93:d1:b8:bd:a5:21:8e:95:70:87:03:ae:
03:ad:60:ca:18:ce:a7:ac:3d:79:0f:fc:9b:08:2a:2e:c1:27:
72:43:55:87:c7:eb:c2:db:51:19:8d:a7:ad:29:b5:08:c5:d4:
3d:13:8c:80:12:6d:6e:e7:ad:68:8a:40:36:ff:bb:a6:fc:19:
d9:15:74:13:6d:03:64:4b:e4:72:b0:91:e9:85:a8:5d:36:5d:
c4:30:ba:95:7f:32:02:9e:aa:28:97:5c:2d:a1:05:77:54:e4:
23:3e:12:b4:b1:e5:97:3c:4c:72:3d:0e:12:29:84:d5:c5:d7:
57:2b:92:ef:dd:20:2f:16:96:cb:7a:6f:91:9b:f2:9c:37:10:
d3:24:7a:4b:c6:06:e0:d7:3b:27:1f:4e:16:15:f8:20:44:92:
08:22:1b:1b:71:56:46:1e:ca:07:65:a2:e3:34:d9:fb:ec:af:
7f:0b:13:96:a6:23:dc:4c:2c:a4:77:51:c1:31:57:09:ef:30:
c6:c8:20:00:df:db:c7:b5:03:94:4f:e6:6d:52:24:52:2b:8c:
7c:9e:ad:b6:4d:4d:b4:bd:61:39:bb:c7:10:de:12:d8:6d:62:
2d:fd:2b:ae:b5:81:7b:eb:d7:f7:af:ce:0b:b1:f7:4b:ed:83:
19:7f:5e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:47 2025 by rpki-client