Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/2EDV57rtQiDUxwAnAXSzLwM6cjg.roa
File: 2EDV57rtQiDUxwAnAXSzLwM6cjg.roa (raw, json)
Hash identifier: G/dn7Ey4xrf8xWOf5w+zmpsavpWemHqbzoUvnw1GMlg=
Subject key identifier: D8:40:D5:E7:BA:ED:42:20:D4:C7:00:27:01:74:B3:2F:03:3A:72:38
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: 7C
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/2EDV57rtQiDUxwAnAXSzLwM6cjg.roa
Signing time: Sat 20 Aug 2022 03:37:20 +0000
ROA not before: Sat 20 Aug 2022 03:37:20 +0000
ROA not after: Tue 07 Mar 2023 02:33:36 +0000
asID: 38047
IP address blocks: 2400:5ea0:852a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124 (0x7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Aug 20 03:37:20 2022 GMT
Not After : Mar 7 02:33:36 2023 GMT
Subject: CN=D840D5E7BAED4220D4C700270174B32F033A7238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:77:40:e0:ef:3b:f1:65:91:ff:ad:23:09:92:
7a:8e:73:6e:9f:a2:9d:a5:9c:90:b7:73:b1:ef:ee:
6c:a2:8a:a4:c5:95:0a:cd:46:08:14:fa:71:0b:dc:
3c:09:e2:71:a2:d6:bf:2e:1d:95:75:79:c4:d4:19:
cd:1e:a4:b7:9c:17:1c:26:42:3b:94:d0:24:ec:8d:
c0:38:f6:6a:e8:ed:0d:91:b4:db:43:aa:26:08:f1:
92:5d:c1:7b:c8:e2:68:d5:d5:e5:4a:d7:71:83:e1:
06:25:21:4f:aa:ad:b9:20:b0:22:69:9a:d3:b8:fa:
3c:f1:b3:bd:7f:c7:60:5d:bc:83:c6:b3:4c:39:f1:
c1:7e:aa:29:7f:e9:70:0a:87:30:ac:29:40:34:59:
e7:8e:3a:8f:ed:6c:60:a5:f9:6d:a7:19:26:e0:6f:
9e:3e:8b:37:1d:f3:6c:88:cc:ff:fa:6d:fa:2e:6b:
84:2d:11:28:90:7f:f5:b3:2d:7c:36:13:ae:d9:00:
02:25:4f:f7:04:bd:ca:66:86:15:ed:39:c2:4a:0b:
75:4e:af:cc:41:c1:da:37:5f:eb:27:cb:40:be:9e:
10:93:11:f5:50:d4:36:86:f7:0b:30:f2:27:a9:62:
7c:84:1f:c9:cb:af:62:50:c9:21:b3:63:5f:1c:ea:
d7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:40:D5:E7:BA:ED:42:20:D4:C7:00:27:01:74:B3:2F:03:3A:72:38
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/2EDV57rtQiDUxwAnAXSzLwM6cjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:5ea0:852a::/48
Signature Algorithm: sha256WithRSAEncryption
62:76:94:de:d3:81:e0:2e:62:fe:70:14:5e:2f:89:e7:fe:4b:
30:77:1e:37:b3:bb:a5:84:a2:ef:90:3e:9a:f1:a3:2c:a4:68:
59:81:c9:d4:e5:98:45:da:31:47:34:16:14:82:7a:0a:be:b8:
38:7c:98:67:80:b1:a8:bc:c9:69:e3:ab:5f:3e:31:1d:d4:66:
7d:b8:81:a3:97:79:54:fd:09:b0:ef:2f:fd:72:5e:58:ea:8d:
ca:80:fc:df:6f:43:12:63:88:4f:df:28:45:bf:ea:c8:36:17:
da:c3:c3:86:2d:5b:c5:90:3f:03:aa:e4:65:80:fa:e6:3a:e4:
3e:0e:37:0e:62:53:65:eb:87:80:a7:05:c8:7a:51:78:d5:63:
f4:c4:47:5e:9e:4a:cf:5c:92:71:a6:1b:a3:aa:92:6f:56:53:
28:64:e2:45:f7:e0:ed:97:33:d4:10:4f:26:60:31:0e:bf:e9:
1b:06:aa:57:fd:b2:6c:23:c8:94:31:ae:4d:17:ad:67:cb:2b:
ec:5f:a6:73:3e:94:aa:15:b2:c5:44:cf:91:ec:24:01:cb:9d:
a1:fa:57:51:a6:e0:54:ca:db:65:0d:b1:4c:31:8a:f3:e5:88:
1d:49:36:a5:00:af:5a:0b:0d:8e:82:77:9f:c5:7c:70:6c:2b:
1e:01:fb:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:12 2025 by rpki-client