Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTT/405ZwwjsE1fhLzL7fc7Z0G2JFww.roa
File: 405ZwwjsE1fhLzL7fc7Z0G2JFww.roa (raw, json)
Hash identifier: PaFrunKCY5KrBCInSuveY15yFjL8fw3Wib++lL5o4uo=
Subject key identifier: E3:4E:59:C3:08:EC:13:57:E1:2F:32:FB:7D:CE:D9:D0:6D:89:17:0C
Certificate issuer: /CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Certificate serial: 094A
Authority key identifier: B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/405ZwwjsE1fhLzL7fc7Z0G2JFww.roa
Signing time: Wed 29 Sep 2021 02:53:13 +0000
ROA not before: Wed 29 Sep 2021 02:53:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9416
IP address blocks: 203.118.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2378 (0x94a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Validity
Not Before: Sep 29 02:53:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E34E59C308EC1357E12F32FB7DCED9D06D89170C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d9:5c:ba:4f:be:be:bc:86:7c:b6:4c:ff:b9:
9c:07:2d:fd:d1:4a:f0:8b:93:d8:59:9c:79:1d:00:
ee:a4:09:39:f8:a6:ab:f0:c6:44:41:67:37:55:44:
ea:97:ac:a0:5d:6b:1f:70:88:cc:cc:3b:4c:f7:e6:
b4:38:63:76:6a:55:73:87:76:ea:83:1c:22:49:02:
5e:d1:de:42:e5:fa:48:43:9a:db:74:9a:c0:c4:51:
ed:8e:0a:67:43:16:d4:47:3c:7c:15:4e:fa:58:a5:
76:bb:c7:32:a3:e5:71:0f:a8:14:46:84:30:25:ed:
c6:8f:c9:70:47:8a:76:49:93:5f:37:8e:0a:41:da:
b4:41:b4:5b:3d:78:31:d5:a6:80:61:71:d6:12:99:
99:45:8d:1d:96:87:47:7d:94:3f:c1:97:86:4b:41:
9e:f0:56:b4:0f:da:dd:7f:ff:27:f5:00:41:94:d4:
9f:8d:c2:80:b9:13:62:e8:f3:0c:e2:65:07:67:b9:
34:28:9e:81:15:7c:6d:77:28:87:14:58:ba:ec:b0:
6e:3f:0c:f5:a3:77:78:7b:97:ee:59:f3:f1:f3:47:
4f:ec:d0:fe:5f:23:61:69:29:ca:87:86:45:78:c2:
27:a6:1b:ec:49:67:18:e7:8b:2c:83:c7:9b:cb:63:
04:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4E:59:C3:08:EC:13:57:E1:2F:32:FB:7D:CE:D9:D0:6D:89:17:0C
X509v3 Authority Key Identifier:
keyid:B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/tOxh7X6MZPIQMX3MfoCKnBktiEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/405ZwwjsE1fhLzL7fc7Z0G2JFww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.118.224.0/20
Signature Algorithm: sha256WithRSAEncryption
43:61:5b:34:5c:e0:00:92:30:90:5d:00:49:b0:c5:95:27:a4:
06:db:a3:7f:79:bf:cc:f1:99:43:5d:2f:ed:8a:ad:d3:78:41:
ab:4f:52:b0:ad:4e:fb:a2:2e:73:9c:f1:c4:d2:a3:50:69:a6:
a9:10:8f:52:76:63:46:81:b1:53:de:b3:48:80:31:6e:60:0c:
cc:5f:54:f2:8d:a0:52:19:98:50:37:81:79:97:db:5e:7f:03:
74:80:e8:42:78:11:bc:18:2e:6f:32:a9:17:1a:21:4d:da:8b:
b5:23:1f:2a:63:dd:db:58:17:0d:1f:63:45:f3:82:d4:9d:7e:
94:d1:a9:13:a0:7f:fd:29:75:49:41:e1:6a:b0:b7:8a:13:22:
ff:44:1b:da:aa:76:8a:43:f4:9a:5b:e2:22:2a:c2:5c:df:4a:
4d:48:d1:78:24:e6:c6:15:bf:99:f4:11:bd:79:e1:87:3b:ba:
d0:1e:23:cc:f7:c5:34:57:37:90:cf:20:d4:92:c1:f7:90:48:
20:76:8a:72:43:ed:04:59:23:79:8e:d1:e3:54:13:c9:16:fa:
aa:8c:8e:97:59:44:91:68:10:f1:5d:d3:fb:ed:28:62:4e:d2:
6c:32:ef:3b:50:ae:e3:8c:4a:28:dd:ff:a1:83:6b:a5:4a:c7:
16:6a:8f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:50 2025 by rpki-client