Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/YAhqUal92-NzD3yUNdvzEdPtdtE.roa
File: YAhqUal92-NzD3yUNdvzEdPtdtE.roa (raw, json)
Hash identifier: e2Aef4sKKg7vflwaYcEG5ydSqayLCmp6iEbIBwLqIVk=
Subject key identifier: 60:08:6A:51:A9:7D:DB:E3:73:0F:7C:94:35:DB:F3:11:D3:ED:76:D1
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/YAhqUal92-NzD3yUNdvzEdPtdtE.roa
Signing time: Thu 15 Sep 2022 02:38:44 +0000
ROA not before: Thu 15 Sep 2022 02:38:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 124.199.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=60086A51A97DDBE3730F7C9435DBF311D3ED76D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:da:63:5d:c5:fe:d5:b8:d2:f9:5d:02:9f:c6:
2e:6e:d9:53:e7:bb:a5:0b:5c:d0:23:91:53:ae:58:
ac:3b:f1:52:f2:75:bf:02:61:3d:21:e4:6d:26:6f:
d5:02:ef:78:f9:e7:d9:9f:21:c7:56:e3:ba:9c:94:
c1:a8:97:5a:f7:7e:78:53:af:7a:a5:f6:24:a5:80:
99:0d:66:42:db:ff:0f:8d:51:b5:7e:a0:50:60:8e:
8e:fa:86:1a:97:d1:08:45:70:25:ae:73:bb:31:53:
34:5f:fd:b6:4f:3b:a9:86:88:25:e4:87:5f:cc:b9:
8a:26:63:9a:b9:a0:3d:92:81:d3:45:47:80:27:52:
6b:1d:2f:6e:ce:7e:ad:45:45:c7:19:f1:eb:4c:a1:
b5:06:51:53:ba:42:36:5b:86:c1:3a:3b:d8:a3:1f:
cd:a6:59:d1:76:9a:33:74:97:c5:04:6c:73:f0:ba:
80:5a:7c:cd:53:f4:b2:18:d8:19:f1:34:a2:28:6b:
62:a4:78:59:ed:7b:3c:dc:6e:d0:ca:fa:e5:95:41:
b6:cc:6b:a1:be:2b:c4:7e:a7:72:cf:25:fc:de:e9:
68:31:d4:25:54:f4:64:4e:0a:1f:7e:c9:25:a6:ce:
fa:5f:2d:de:9e:e0:ce:47:39:03:22:f9:61:57:71:
52:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:08:6A:51:A9:7D:DB:E3:73:0F:7C:94:35:DB:F3:11:D3:ED:76:D1
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/YAhqUal92-NzD3yUNdvzEdPtdtE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.64.0/19
Signature Algorithm: sha256WithRSAEncryption
85:d3:57:20:79:d7:ef:39:16:20:ff:f2:51:25:49:5a:f2:4a:
c9:bd:f6:72:f4:16:82:d4:c3:2b:fa:62:f8:1d:5c:34:85:8b:
b1:38:03:98:be:59:99:37:b4:8d:c8:6e:2f:88:c3:0f:6a:73:
cf:9b:b3:b3:5b:c7:78:5b:51:d6:59:b6:64:96:94:bf:30:0e:
02:b5:cf:bc:d6:fc:76:f4:27:3b:08:97:82:99:72:ae:22:92:
57:70:3d:41:5e:69:f6:49:88:ba:d1:24:88:d6:d2:58:41:f9:
80:14:ed:3e:d0:bb:05:17:be:bd:63:9a:56:11:b6:4c:6c:5b:
a4:56:b6:e7:2e:49:67:e3:c8:9a:07:11:1b:37:3b:22:fe:2c:
4a:bb:3c:19:5e:c2:15:3b:0a:d8:ea:82:b5:55:c1:0b:5b:67:
40:84:99:00:62:88:4d:47:4c:4f:0a:f9:79:d7:37:1e:d2:67:
c3:5c:8a:66:c0:50:ca:49:e3:73:f1:2f:91:01:2b:21:35:ac:
19:b9:03:2d:52:0f:5b:d3:20:40:b0:b3:40:c4:fa:f5:39:a7:
8b:0a:79:8d:c5:14:6e:1e:51:b0:b4:6e:69:41:aa:6a:9f:ba:
8f:c6:45:7e:10:a5:32:eb:c6:4d:7a:ce:fb:3c:06:41:fd:5a:
06:fe:ee:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:18 2025 by rpki-client