Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/EX1O2mNK7MoTg4vmBAKKtdrG7vc.roa
File: EX1O2mNK7MoTg4vmBAKKtdrG7vc.roa (raw, json)
Hash identifier: vhcto6lKYOy/LGhSPtxmxdSXsmhPv0Yh+W4kHtxrWVY=
Subject key identifier: 11:7D:4E:DA:63:4A:EC:CA:13:83:8B:E6:04:02:8A:B5:DA:C6:EE:F7
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0379
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/EX1O2mNK7MoTg4vmBAKKtdrG7vc.roa
Signing time: Wed 29 Sep 2021 02:54:03 +0000
ROA not before: Wed 29 Sep 2021 02:54:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134522
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 889 (0x379)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 29 02:54:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=117D4EDA634AECCA13838BE604028AB5DAC6EEF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f5:fd:0f:3e:88:19:fe:b7:82:0f:6c:18:81:
23:6f:f8:78:03:cc:4f:d1:77:42:46:ca:07:bb:32:
69:ad:0e:3c:5b:c4:ed:7e:06:21:7e:2e:b9:56:a7:
f4:15:df:79:ec:d9:1b:f7:27:39:a4:f1:f6:9f:97:
5b:a9:69:1a:e8:56:62:52:64:3e:e6:f2:62:e6:ee:
08:17:5c:63:09:d5:1c:4e:6d:f3:3f:d1:25:62:9f:
20:68:6d:ca:a6:4e:ef:d4:65:cb:49:a6:e6:ae:4e:
5f:1e:48:23:bc:6a:d2:94:26:63:8e:fe:f0:ab:90:
8b:b2:93:3e:6a:ea:ef:b5:b2:c9:c4:f2:1c:3e:e9:
9d:78:c7:ef:03:15:79:17:b8:7b:16:ac:5f:a7:57:
49:60:eb:f4:cf:51:4a:c5:61:a7:0f:b1:1d:40:ba:
49:33:8b:42:b4:d3:ea:38:fc:0e:94:f2:3c:db:3c:
b3:cf:46:0d:c7:3a:f3:65:94:1d:7a:e0:95:79:b4:
bd:2b:d3:a6:30:37:27:93:fe:a0:d3:d7:19:fb:33:
83:35:35:65:d1:ad:6c:a1:c3:47:5b:d7:ef:f2:96:
9a:5a:e9:79:dd:73:8b:5e:d6:8c:8e:7d:58:9b:0e:
2f:e6:23:75:17:39:91:e5:1a:e1:da:19:dc:9e:9e:
ed:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:7D:4E:DA:63:4A:EC:CA:13:83:8B:E6:04:02:8A:B5:DA:C6:EE:F7
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/EX1O2mNK7MoTg4vmBAKKtdrG7vc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
b0:80:32:60:04:ed:e4:39:eb:b3:bc:91:e9:5d:1e:ad:ea:34:
bd:6c:f6:1e:bc:a6:6b:43:e0:56:66:e3:99:ef:4c:57:f6:70:
91:5c:24:6b:4e:14:62:ea:3b:a2:b6:90:28:5d:eb:36:4a:e4:
1e:4f:8e:14:f3:7d:63:7c:4e:ce:b7:8b:45:cc:d8:ad:f8:f9:
2a:2d:73:8a:7c:b1:2e:b6:5e:a9:35:ea:e7:e6:12:f9:39:18:
1d:c1:b8:58:11:f3:69:90:c5:fa:59:35:28:9c:b3:55:1d:d9:
7c:02:b8:7f:4d:d4:13:19:1b:8e:c6:a6:e4:b1:aa:bc:f6:b7:
3b:92:95:cd:12:e2:de:89:00:bb:20:a5:52:af:64:11:83:0e:
e5:ed:65:10:45:5d:05:83:77:b0:ea:fb:9b:b4:fe:72:6e:69:
be:8f:23:f5:3a:36:4e:9d:54:af:84:d4:75:84:f0:de:73:87:
91:43:69:3f:b0:88:f8:28:30:c4:8b:91:47:a7:36:da:b1:05:
90:0d:20:fe:15:a8:fb:0b:33:fc:bf:5d:58:07:3b:0b:69:c4:
5b:01:2b:05:3a:29:26:18:35:84:8e:76:b8:f6:0f:66:89:21:
3d:12:29:57:17:63:1f:57:10:38:47:81:f2:55:5e:0f:ad:88:
8e:2a:ec:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:57 2025 by rpki-client