Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/dveVhNgtyND21L4VFvYEXYpmPxA.roa
File: dveVhNgtyND21L4VFvYEXYpmPxA.roa (raw, json)
Hash identifier: kMn+ebsIZ6hjz7xLfGij4W4d7zrtJkotVEJxNWvbEBI=
Subject key identifier: 76:F7:95:84:D8:2D:C8:D0:F6:D4:BE:15:16:F6:04:5D:8A:66:3F:10
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0789
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/dveVhNgtyND21L4VFvYEXYpmPxA.roa
Signing time: Tue 29 Sep 2020 10:03:54 +0000
ROA not before: Tue 29 Sep 2020 10:03:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 210.69.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1929 (0x789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=76F79584D82DC8D0F6D4BE1516F6045D8A663F10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:12:e3:b1:09:e6:8b:d1:ae:db:02:86:2a:
c4:3b:89:43:9e:58:24:c4:eb:ed:6a:fd:3e:61:5c:
96:fc:27:64:ff:18:b6:ae:6f:cd:27:a2:65:17:2f:
53:d1:d4:21:4d:90:f7:35:09:3b:35:1e:3d:59:8f:
1e:32:ab:09:87:11:56:13:5c:86:6e:7c:48:de:1b:
c4:d8:c9:c5:d7:ab:52:b4:ef:17:12:9a:27:7c:cd:
4a:48:e2:bc:98:84:66:4c:51:ef:52:11:ca:92:ed:
8b:2c:7b:4c:6c:44:d0:81:8a:a9:96:73:48:7c:11:
1e:cd:52:c3:b2:41:ec:7f:7a:d0:56:3e:34:0e:1b:
fa:44:30:51:4a:b0:49:91:9b:6f:89:01:05:b2:6b:
6f:04:71:34:2d:84:4f:97:0f:a6:73:4d:cf:a5:83:
9d:90:48:65:40:45:fb:9c:7c:16:0b:2f:07:f7:37:
aa:36:b9:6c:b0:62:ea:be:e5:e9:c3:1f:2c:91:82:
db:c4:bd:f7:b8:3d:5d:1a:04:82:90:3e:bb:54:7f:
fe:34:b8:d0:39:79:05:ec:7f:bd:19:53:75:05:c7:
0e:2b:87:06:5a:68:af:80:c0:e9:7b:75:b3:e2:3b:
2b:31:2a:1d:de:81:c0:88:14:f8:bd:b5:5b:4f:da:
60:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F7:95:84:D8:2D:C8:D0:F6:D4:BE:15:16:F6:04:5D:8A:66:3F:10
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/dveVhNgtyND21L4VFvYEXYpmPxA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:9d:0e:17:27:6f:63:b3:ba:c7:6e:e9:06:a0:2b:c8:47:47:
0b:e4:38:5c:a2:5d:4e:dc:46:97:83:ed:00:36:43:e8:1b:88:
92:9b:60:51:ad:2f:0c:b6:23:a2:6b:36:48:f5:f1:32:c3:4c:
b2:79:23:16:c9:35:3b:99:90:76:4c:22:9b:98:20:f8:37:c0:
75:96:b1:3c:32:e1:6f:ce:37:50:27:49:5e:da:23:fa:50:ff:
69:03:ab:21:63:c3:cc:2a:6a:f1:8e:4e:c4:6d:07:13:cf:53:
59:e0:3f:d7:45:64:35:4c:f0:aa:fa:73:b5:ae:45:2c:ca:dc:
57:bd:2d:32:c2:8d:61:16:fb:3f:de:6f:37:31:c1:95:a1:96:
1d:38:d6:75:a0:e2:de:cb:ec:e7:22:b7:64:69:5d:6c:d5:ec:
40:20:2f:68:ed:71:1e:d2:69:ea:32:ab:38:1f:a3:d2:2c:ba:
ea:fc:97:9b:31:3a:b2:71:6e:6b:94:ba:12:3f:bf:3b:9b:c4:
28:ba:f6:67:02:b2:19:58:e2:bd:6b:89:3c:db:62:20:b7:2e:
13:1f:34:b2:19:c6:25:f1:bd:a4:dc:7a:63:da:0b:ae:5b:25:
7a:fb:02:f7:46:e3:e2:37:0a:1e:01:64:a6:25:6f:c3:ba:67:
ca:b6:35:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:12 2025 by rpki-client