Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/z-UZ3nWsVo-ChRJeDtr9LCI3bfA.roa
File: z-UZ3nWsVo-ChRJeDtr9LCI3bfA.roa (raw, json)
Hash identifier: JeUcz438SMzw9pbmlWqexo8kW4gy22Vb6xNlB2RRDkw=
Subject key identifier: CF:E5:19:DE:75:AC:56:8F:82:85:12:5E:0E:DA:FD:2C:22:37:6D:F0
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0996
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/z-UZ3nWsVo-ChRJeDtr9LCI3bfA.roa
Signing time: Wed 29 Sep 2021 02:38:09 +0000
ROA not before: Wed 29 Sep 2021 02:38:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 124.199.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2454 (0x996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CFE519DE75AC568F8285125E0EDAFD2C22376DF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:0a:c7:80:71:3d:9a:5d:df:ed:04:f0:1a:
03:7d:5d:b3:21:43:c6:d5:db:3a:41:c2:83:43:97:
02:2c:ae:c0:10:06:ee:59:a4:fc:2e:3f:fb:8e:f7:
ae:07:18:6f:9c:ae:99:5a:57:58:f6:0a:f9:59:03:
5e:cf:52:0f:dc:d7:0f:9e:1a:f5:e9:c5:83:5a:64:
41:5d:a8:66:68:ea:b4:da:20:80:9e:b5:76:ab:c6:
8e:f0:48:15:03:03:ad:7a:7e:95:25:00:15:bf:19:
f2:d9:c5:66:c6:76:24:c1:41:c5:86:b2:3b:49:db:
f0:d1:6a:3d:ab:07:a2:73:fe:5f:1c:6b:e4:ca:ae:
a6:36:c8:55:65:86:1a:80:9f:3f:ad:2f:6e:b4:27:
de:f6:0c:80:e7:10:c1:37:eb:50:5c:b4:55:a8:c2:
91:29:7c:48:0b:d5:10:63:65:89:76:dd:b8:a3:bb:
58:93:37:c0:69:22:b4:fa:d6:77:10:af:1d:90:5c:
5b:54:d9:d4:81:6f:d2:1c:db:b1:87:8f:0d:65:6a:
a0:e9:4d:c7:f1:13:e0:62:a8:5c:82:ae:4d:41:ee:
f9:85:08:2c:bd:10:10:fc:82:8c:db:8a:a0:84:cc:
00:4e:2d:8e:7d:9e:87:51:bf:1a:7f:5d:d2:71:cc:
71:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E5:19:DE:75:AC:56:8F:82:85:12:5E:0E:DA:FD:2C:22:37:6D:F0
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/z-UZ3nWsVo-ChRJeDtr9LCI3bfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.96.0/20
Signature Algorithm: sha256WithRSAEncryption
21:34:46:b1:2c:dc:89:36:b4:b1:78:74:12:e6:85:13:73:4a:
e2:97:59:1d:fa:04:26:4d:d3:23:40:06:3a:e2:69:96:83:3d:
fe:1e:9d:45:49:54:87:0d:cf:4d:48:17:d3:5b:34:22:5f:8e:
75:96:41:32:5c:fe:63:41:58:8d:db:db:f3:43:8a:d3:f8:63:
5c:2c:86:2f:64:4d:da:f3:4d:98:18:ad:28:c6:4c:b7:31:f3:
46:f7:e9:2b:02:6a:e4:1f:f4:45:b2:27:a1:96:5a:ec:1d:a6:
c7:0e:b8:2d:f3:6c:5e:b3:1c:82:5b:90:98:4d:1c:30:fa:5a:
b6:94:c1:4d:6d:02:fe:29:ba:09:af:80:e8:3e:c6:8e:56:0b:
89:bb:75:3b:8e:f9:cd:a3:4a:8b:28:d8:80:4e:ca:96:1a:9d:
db:d8:c9:39:cd:4e:7a:58:30:64:78:cb:d3:82:3f:66:a1:2d:
c5:a3:40:38:75:54:b0:aa:45:f9:14:c5:3b:e9:2a:b7:ab:ba:
2e:81:2f:e3:78:ef:13:5e:24:a5:74:01:76:bc:7f:65:dc:ef:
8e:09:dd:f8:dc:79:dc:c0:fb:88:39:3b:e0:fa:54:ba:fc:60:
31:93:b9:7f:a6:27:c2:f5:26:a8:a6:07:0b:fb:30:24:f1:c1:
94:92:f6:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:34 2025 by rpki-client