Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/U89JxTLptKYgD2NULHIpHgqgwRs.roa
File: U89JxTLptKYgD2NULHIpHgqgwRs.roa (raw, json)
Hash identifier: A5cRBx6pS+zXtVRzsDqUqjrsoyVb8flsVvj0q4Q0TG4=
Subject key identifier: 53:CF:49:C5:32:E9:B4:A6:20:0F:63:54:2C:72:29:1E:0A:A0:C1:1B
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0995
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/U89JxTLptKYgD2NULHIpHgqgwRs.roa
Signing time: Wed 29 Sep 2021 02:38:09 +0000
ROA not before: Wed 29 Sep 2021 02:38:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 210.69.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2453 (0x995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=53CF49C532E9B4A6200F63542C72291E0AA0C11B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d0:e8:4d:1d:c3:55:c5:e6:64:d3:1e:ad:6f:
de:9c:0e:e9:40:6d:ee:3d:47:24:e2:b3:43:f3:55:
5c:48:79:98:1b:e8:15:07:61:a0:10:fa:ff:45:bf:
58:56:a2:50:e7:4c:d4:ac:df:e3:b9:59:8c:82:ad:
4f:5a:30:bd:18:7d:ee:0f:b6:9f:3f:73:12:28:43:
50:12:7e:34:e5:52:ce:aa:8f:45:a2:3d:3f:da:9a:
5a:59:87:67:75:d6:b4:92:73:68:fe:74:52:0b:63:
47:22:e6:e1:f3:a9:f5:05:33:f3:94:cc:b5:c0:2e:
f2:ec:2c:3d:fd:7f:45:f9:6a:a7:54:48:68:a8:65:
e9:0c:c1:db:a6:4f:eb:8c:8f:2a:79:31:15:db:e5:
d7:25:82:71:c3:fc:c8:3a:86:c5:fb:05:55:51:de:
f9:86:15:33:da:8f:bc:79:4d:f3:49:8b:c3:93:9c:
c2:71:88:1b:fe:41:5e:65:3b:aa:e4:69:d3:95:21:
1a:d5:3f:26:57:18:a0:1a:1a:b4:bb:e9:b1:e7:87:
f9:8a:da:8a:2c:63:12:78:72:dc:6a:2b:8e:5d:be:
ca:dc:5c:4b:a2:d0:89:ed:1f:34:03:c4:ac:52:a2:
49:08:01:78:1e:f1:d7:47:34:51:07:70:48:7e:0d:
11:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CF:49:C5:32:E9:B4:A6:20:0F:63:54:2C:72:29:1E:0A:A0:C1:1B
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/U89JxTLptKYgD2NULHIpHgqgwRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
51:58:cc:6a:11:e8:d8:34:22:09:22:c2:91:3d:da:e5:a2:70:
53:62:3d:77:b1:30:56:7d:86:7f:ab:c2:39:95:32:ff:bb:e4:
47:f4:d4:c4:8f:a5:73:5b:1d:47:fd:b9:1f:ea:ee:c5:a6:08:
76:a0:9a:32:96:ce:14:14:75:67:c9:73:17:fb:7e:51:20:ff:
a5:32:eb:da:6d:a2:17:84:7e:2b:d2:67:05:30:25:c1:95:be:
ff:43:a7:af:67:ff:36:4a:b1:41:6e:30:e7:63:c6:84:90:1e:
5a:88:12:b2:67:17:aa:a1:03:42:f0:98:ef:39:59:e1:8d:51:
60:c1:62:0e:b6:5b:38:65:30:af:a8:93:22:76:61:86:4b:1e:
dd:dc:5d:9c:e9:a6:f3:12:1e:73:c1:7c:99:22:f5:ba:e6:95:
76:74:c8:b0:c0:d1:f2:06:5a:1c:30:55:58:f8:48:91:24:96:
41:07:83:23:80:f1:2d:18:6a:f9:89:c6:0d:03:7c:7f:f2:2f:
85:7b:50:3e:a9:51:8a:f6:d3:06:cf:95:57:59:18:51:ea:ef:
c7:1d:a2:be:5a:99:c0:a2:10:fd:f4:ca:72:34:8b:8c:8a:58:
c7:6a:a1:94:6b:b7:f4:e0:9c:6d:a1:d8:a7:20:d1:90:9d:98:
2c:8c:5b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:37 2025 by rpki-client