Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/fPOjXtFDHUbzEH6d04KCgv9_HNI.roa
File: fPOjXtFDHUbzEH6d04KCgv9_HNI.roa (raw, json)
Hash identifier: AtmBLmZnv2RszerX+YrlULVx/kRDT2gwNaMu+cocwIY=
Subject key identifier: 7C:F3:A3:5E:D1:43:1D:46:F3:10:7E:9D:D3:82:82:82:FF:7F:1C:D2
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0788
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/fPOjXtFDHUbzEH6d04KCgv9_HNI.roa
Signing time: Tue 29 Sep 2020 10:03:54 +0000
ROA not before: Tue 29 Sep 2020 10:03:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 124.199.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1928 (0x788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7CF3A35ED1431D46F3107E9DD3828282FF7F1CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:f8:0a:f5:ef:f8:10:39:99:51:fb:91:00:
9a:a5:6b:fa:c7:47:04:1f:37:d2:c3:cb:8e:09:da:
a0:00:ba:8e:9f:50:02:5f:9a:53:fd:8d:c7:e0:35:
a0:d5:d9:71:c1:bb:69:ab:45:d9:0e:b4:de:77:a6:
e4:0c:ce:83:0f:56:19:2c:43:f2:47:2d:be:01:4b:
85:d1:a9:cd:bf:db:e9:38:50:d8:0c:18:4f:8a:57:
c7:f4:2a:70:4f:f5:a2:f9:5a:89:00:a4:ab:11:38:
ff:21:94:6e:02:dd:a3:37:43:a9:1c:e0:c2:b3:bf:
ca:4f:4d:fe:c1:78:32:77:36:ef:b3:4a:e7:71:ef:
3f:e2:e7:dd:83:f5:fa:32:d5:b9:9f:66:08:10:18:
14:db:e7:93:a3:72:0d:7b:37:64:db:8d:f3:9f:82:
3d:a3:04:b9:39:e6:bc:02:5a:4e:25:df:9a:a6:89:
33:61:8a:d1:82:fe:5f:2f:16:f1:f0:65:47:b9:f6:
fa:63:7a:19:a7:a3:3f:9e:0f:7c:1f:c2:8f:52:d9:
44:02:4a:4b:ed:d5:77:a3:76:df:c9:11:59:6f:16:
22:9a:ee:08:1d:7e:97:36:7e:f1:26:8c:55:72:50:
a4:74:c9:79:e7:b1:97:ca:38:49:21:fd:58:9d:c1:
3d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F3:A3:5E:D1:43:1D:46:F3:10:7E:9D:D3:82:82:82:FF:7F:1C:D2
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/fPOjXtFDHUbzEH6d04KCgv9_HNI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.64.0/19
Signature Algorithm: sha256WithRSAEncryption
34:4e:1f:5c:ed:9d:0c:96:ae:f9:57:0b:87:5b:d2:e7:c2:da:
34:3d:ff:49:ef:4d:ae:7b:6f:01:36:96:09:04:1d:77:93:4e:
ba:6c:b9:4b:f2:60:51:1b:fb:be:e4:8f:f9:ec:ae:b0:79:a8:
97:7e:8b:20:fb:91:62:45:f4:e5:6b:f5:a1:e2:d6:a8:44:15:
3a:3e:f8:64:75:67:8f:a2:97:17:83:6b:d1:3b:be:2e:59:29:
24:da:02:f4:0b:ff:e0:a2:28:8e:9c:9f:ac:90:a0:e5:e3:e3:
de:f9:92:6a:42:ca:61:09:63:bd:62:6a:b7:2a:a6:56:aa:bb:
03:17:4f:b9:b5:59:fb:83:5b:97:e2:4b:c8:11:92:d1:e1:a9:
71:3e:68:5e:74:50:c8:03:e5:8b:be:e0:b8:0d:95:4e:b6:19:
65:c1:8b:dd:23:f5:d1:8d:bb:00:ec:59:c5:f9:f6:49:f3:69:
9e:e3:a3:f7:9c:ec:d6:9c:f3:9b:e6:d2:ee:0d:13:e4:4f:13:
21:ce:09:a1:e1:60:dd:96:33:d1:ea:f5:39:cc:5e:4a:dc:fd:
b4:84:09:10:37:cb:2e:8d:3e:5c:f7:85:13:c0:8f:8e:1d:6b:
99:b7:1e:5f:c4:80:f5:7a:45:67:22:72:ae:0f:bc:32:3c:da:
8e:df:a9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:23 2025 by rpki-client