Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/jztC2t0z1Qww7LmVJdlPduT-zgE.roa
File: jztC2t0z1Qww7LmVJdlPduT-zgE.roa (raw, json)
Hash identifier: 60Fkn3jHPC3GeUsKHaRYPBb7sYAu/5nUbDTffTvwOOQ=
Subject key identifier: 8F:3B:42:DA:DD:33:D5:0C:30:EC:B9:95:25:D9:4F:76:E4:FE:CE:01
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0785
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/jztC2t0z1Qww7LmVJdlPduT-zgE.roa
Signing time: Tue 29 Sep 2020 10:03:53 +0000
ROA not before: Tue 29 Sep 2020 10:03:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 124.199.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1925 (0x785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F3B42DADD33D50C30ECB99525D94F76E4FECE01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b3:fe:5c:11:16:87:7c:36:8b:ee:00:7e:06:
35:24:6c:fd:8b:bb:1c:6d:8f:1a:1b:8b:2a:dd:07:
06:42:1e:61:1a:a3:87:ab:e8:da:73:2e:47:ff:71:
ea:3e:ed:d4:95:96:e9:94:f5:2c:16:a7:a5:d5:bb:
81:18:36:f4:ef:af:1f:3a:db:25:82:b4:57:51:fa:
7e:f1:48:6e:8e:8c:fd:e0:b8:5a:8e:13:fe:37:a1:
71:c9:0e:0f:da:1d:1d:d6:c8:e3:39:08:1a:65:75:
46:2b:d6:35:98:14:62:44:a4:f3:69:07:6f:13:b2:
fb:6d:a5:02:71:7b:83:27:45:0c:24:78:a1:f2:a0:
ed:2a:8f:31:b6:c5:9c:e4:dd:63:34:9f:b5:ec:56:
88:38:25:e2:84:24:8e:56:83:a6:c0:4d:1c:53:ea:
8a:aa:38:7a:ea:eb:9b:4d:5f:39:2a:fc:12:82:f8:
f3:a0:1b:14:3b:38:95:5f:6c:b7:92:c1:5a:4c:5b:
94:f3:ef:d3:de:d4:58:d9:c0:6d:37:09:61:ae:bf:
3f:9b:ec:cd:fd:0c:3c:45:52:a7:c5:9b:d8:6a:9b:
86:26:6e:63:73:7f:06:78:03:80:e3:95:37:41:29:
8a:ff:2a:a7:56:cb:17:26:1d:a4:1c:21:94:d0:4b:
f7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3B:42:DA:DD:33:D5:0C:30:EC:B9:95:25:D9:4F:76:E4:FE:CE:01
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/jztC2t0z1Qww7LmVJdlPduT-zgE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.96.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:6d:1d:28:71:3f:2a:ea:e9:80:ff:94:f4:da:fb:42:85:27:
ef:e3:76:4e:9a:0e:25:02:23:9b:69:7a:6f:8c:1a:11:ca:22:
e2:9e:7b:88:d8:bf:77:42:a2:15:00:1c:3d:0e:c2:40:cc:b5:
1c:73:d1:c5:b9:5f:e9:27:50:a0:d7:37:e8:e5:b8:9c:06:0c:
df:ab:e4:bf:8f:7a:4c:eb:d0:a2:93:04:6f:57:bf:1b:30:cf:
11:1a:77:4b:12:fc:5d:a7:de:c6:98:ba:b7:3c:d8:14:f0:d6:
e0:b4:24:82:1f:42:ad:cb:ca:54:9d:ec:cb:a2:66:e9:5d:92:
95:26:4c:41:7b:d3:0f:59:ac:a1:54:b1:fb:45:bf:cc:e5:9c:
22:08:0b:d9:6b:02:73:59:e9:50:de:f3:b4:b5:76:9c:7c:0c:
ad:5c:1c:fb:1f:7a:59:a7:12:d7:31:98:69:16:5d:f9:e6:8d:
d8:dc:30:c5:bd:ab:9b:28:d9:59:f8:27:40:aa:40:9d:0f:9f:
c8:07:34:b4:44:b8:bc:ec:39:79:9f:24:95:c6:b1:aa:d5:cc:
3d:c6:24:1b:e5:0f:8f:b2:c8:65:ec:67:41:95:4e:73:4d:d6:
56:73:56:c5:96:e0:76:a7:49:a8:4f:c2:f7:28:eb:d2:6e:72:
e1:a2:0f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:07 2025 by rpki-client