Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTT/uTeReaWsIA5lN20p85dmBG2vN6Y.roa
File: uTeReaWsIA5lN20p85dmBG2vN6Y.roa (raw, json)
Hash identifier: MJsTJhlRaumgAScEuxZmDd0Z3awKmEaJOzSP14AAPo8=
Subject key identifier: B9:37:91:79:A5:AC:20:0E:65:37:6D:29:F3:97:66:04:6D:AF:37:A6
Certificate issuer: /CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Certificate serial: 0A34
Authority key identifier: B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/uTeReaWsIA5lN20p85dmBG2vN6Y.roa
Signing time: Thu 15 Sep 2022 02:50:55 +0000
ROA not before: Thu 15 Sep 2022 02:50:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 203.118.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2612 (0xa34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Validity
Not Before: Sep 15 02:50:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B9379179A5AC200E65376D29F39766046DAF37A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e3:f5:5c:48:fe:5d:fe:36:85:f0:ff:5d:77:
3b:2d:a9:6d:a1:6e:99:f1:dc:c8:78:fc:21:7c:f0:
b4:1c:da:da:e0:8e:27:a1:c9:9f:aa:a0:32:31:46:
b2:f8:01:83:25:7a:81:fc:dd:14:df:71:1d:c9:d1:
26:61:aa:45:87:4a:66:4b:fa:8d:fc:4d:64:65:2f:
bf:c9:2e:46:03:c2:09:84:8b:2a:f7:98:51:d1:f9:
10:c9:0d:57:ee:20:46:07:0d:0b:b7:9e:48:95:9d:
64:39:9c:c6:69:5c:76:b0:56:6f:e3:fb:74:f1:ab:
f4:28:61:93:f9:6b:95:3b:73:05:09:01:03:9b:24:
90:b6:c4:91:eb:9e:63:5c:16:6b:57:d9:8f:a9:f4:
7b:58:d2:e9:7d:31:b6:54:8d:ae:73:b0:ac:0e:e0:
f8:0a:11:95:52:94:3b:07:28:9b:14:01:d6:fe:b6:
e2:f1:22:cb:c1:fc:65:89:15:6e:75:f9:44:95:4d:
e6:ef:04:79:2b:2f:a1:75:8a:a1:a9:f4:cf:f3:46:
fa:23:dc:0e:e1:a4:c0:25:ac:71:85:54:32:eb:07:
7e:80:78:85:a4:84:e4:02:71:ca:e5:41:31:65:d5:
91:fb:2f:9f:0d:c7:57:6a:29:73:65:c3:6c:32:a6:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:37:91:79:A5:AC:20:0E:65:37:6D:29:F3:97:66:04:6D:AF:37:A6
X509v3 Authority Key Identifier:
keyid:B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/tOxh7X6MZPIQMX3MfoCKnBktiEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/uTeReaWsIA5lN20p85dmBG2vN6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.118.224.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:9c:96:4f:3b:d0:84:5f:2b:df:c4:7c:58:11:64:5d:ff:9f:
1b:df:00:75:61:0d:2e:00:ae:52:92:c7:00:f1:b1:5c:32:48:
f7:cb:bd:a4:32:c8:f2:75:e8:2e:ce:9a:59:f0:cd:74:e8:88:
00:01:b8:5a:b3:0f:19:06:84:99:e0:ee:2d:c0:c1:22:bd:08:
92:2b:d6:31:68:a6:04:7d:b4:53:42:6e:27:07:e3:f4:ae:8d:
fd:f1:a9:ab:b5:b3:6d:0e:b1:e9:9d:e1:63:bd:3f:1d:b6:b9:
93:76:9d:b7:f8:73:2d:2c:63:58:1a:ba:11:72:3a:54:68:ac:
d8:67:4e:57:c7:d1:89:98:36:72:ac:6c:79:94:5e:e6:5c:f5:
57:ee:83:da:a9:69:58:fe:37:14:a7:21:1b:86:9b:95:ae:ac:
9f:61:08:6d:34:d8:fd:f5:04:de:9e:94:d7:80:81:d9:b4:9a:
03:23:a4:a6:61:5c:6f:d7:71:ce:2a:3b:4e:43:45:c0:2a:5c:
89:c3:84:fa:a2:e8:6b:c9:2a:2a:ef:09:46:d7:c9:16:9a:98:
00:30:66:23:31:82:34:a2:82:29:66:53:13:5b:10:9a:5b:bc:
02:89:66:2f:3f:8e:95:8e:52:b6:f3:d6:6e:e6:cc:6d:ee:20:
0d:20:3e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:40 2025 by rpki-client