Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/ROQO5isQ-993RdPv5k_nAOM1nfA.roa
File: ROQO5isQ-993RdPv5k_nAOM1nfA.roa (raw, json)
Hash identifier: RklzeBixcxrKUaEd96I2jHoHAkKX10GZz8uA5N15F4Q=
Subject key identifier: 44:E4:0E:E6:2B:10:FB:DF:77:45:D3:EF:E6:4F:E7:00:E3:35:9D:F0
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ROQO5isQ-993RdPv5k_nAOM1nfA.roa
Signing time: Thu 15 Sep 2022 02:38:40 +0000
ROA not before: Thu 15 Sep 2022 02:38:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 61.67.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=44E40EE62B10FBDF7745D3EFE64FE700E3359DF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8f:5f:1d:6b:24:12:32:9f:08:1d:2d:ec:79:
34:3f:94:86:8d:c7:ab:d3:ec:ce:58:71:b4:85:95:
8c:dc:16:91:2b:74:e8:71:0e:56:f9:13:57:eb:c0:
cc:cc:6a:75:21:97:fe:5a:bc:e9:22:6d:00:fd:58:
3e:d8:13:75:84:2f:4b:ab:ae:f7:b8:59:31:8c:43:
47:2a:78:c7:11:89:cc:13:72:62:85:7d:30:84:67:
6c:ca:80:e1:aa:3a:2b:df:89:1e:f0:15:5b:d5:e0:
92:23:cb:8a:f9:e1:07:55:2a:fd:47:66:39:22:10:
7f:75:ac:c3:cc:38:11:62:c3:16:4b:0f:c6:19:95:
59:09:a8:80:37:69:02:fe:57:08:1b:e5:0f:14:ab:
3d:b8:7d:c3:6e:b6:4f:bc:71:7c:52:af:f0:fc:d6:
b3:e8:22:bb:2d:bf:8e:18:4c:35:85:9d:47:0b:5e:
03:da:36:4e:98:10:22:5b:9e:d4:22:2a:1a:da:9f:
63:e6:63:02:6b:ea:16:ed:d2:13:cd:61:c5:9b:0c:
c9:2b:a1:4c:27:7b:2b:53:ea:1c:de:77:fb:82:1d:
93:b5:c5:6e:62:4e:1a:39:33:83:9a:71:6a:15:88:
39:c0:f9:83:37:99:49:88:53:59:01:b8:69:f6:20:
b4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E4:0E:E6:2B:10:FB:DF:77:45:D3:EF:E6:4F:E7:00:E3:35:9D:F0
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ROQO5isQ-993RdPv5k_nAOM1nfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
78:55:44:f7:8c:b2:d5:73:85:21:de:55:6c:14:d6:ad:df:af:
a5:7a:01:65:a1:60:4c:52:a8:61:a5:fa:b5:74:22:d3:60:e5:
2b:37:0c:c1:8d:e4:81:a9:12:21:c4:6c:23:8f:93:37:32:8c:
70:d2:33:8a:33:6b:e5:eb:83:3f:a8:11:9a:1d:8f:b7:d4:4d:
dd:38:59:1d:7f:2e:b3:ad:2f:ee:38:ea:f4:f1:b1:01:b0:aa:
58:e9:14:46:22:5e:fa:e8:51:7f:3b:12:63:f2:62:d1:20:1a:
a0:67:16:e6:75:3c:56:ba:a3:17:f1:d3:94:70:fb:ad:04:f3:
16:a6:4b:0b:6c:f0:25:c9:c3:24:a7:d6:46:5e:30:08:b7:d9:
8f:3b:cb:de:40:ac:53:12:3f:7c:93:96:bc:4f:55:ba:3f:94:
59:30:c9:fb:e7:63:66:a3:17:d0:cc:18:2b:14:46:c7:8c:0a:
bf:00:b5:ca:7c:11:7e:34:23:3d:b4:80:d9:50:7c:3a:ec:ac:
c0:2a:23:4c:3c:22:13:c8:5f:ae:47:af:70:cd:ec:ed:63:e4:
1b:89:cc:85:90:d2:3e:40:df:c1:87:22:c5:b7:1a:2c:c0:dc:
d4:ec:16:d7:20:a5:56:64:30:8b:53:ea:48:6a:fa:06:38:52:
0b:b3:c3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:31 2025 by rpki-client