Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/7X_VaDzcznhDq80ODIc5Uu7WW1E.roa
File: 7X_VaDzcznhDq80ODIc5Uu7WW1E.roa (raw, json)
Hash identifier: 5VHq+qS/TOadFwjLvvCXzvwu5HCfShEDkSqlWiKRCd8=
Subject key identifier: ED:7F:D5:68:3C:DC:CE:78:43:AB:CD:0E:0C:87:39:52:EE:D6:5B:51
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: F9
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/7X_VaDzcznhDq80ODIc5Uu7WW1E.roa
Signing time: Tue 21 Feb 2023 02:32:29 +0000
ROA not before: Tue 21 Feb 2023 02:32:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 2400:5ea0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249 (0xf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Feb 21 02:32:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ED7FD5683CDCCE7843ABCD0E0C873952EED65B51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:55:f7:20:fe:88:9a:a1:4c:54:c6:ff:e6:88:
22:a2:76:21:b1:56:2e:71:ba:64:df:1b:a6:13:f5:
dc:fd:8b:5c:99:e5:0b:a7:52:75:7c:cd:8a:37:ee:
95:1f:f0:c5:cd:3c:89:c8:3c:e4:04:e5:da:c4:b7:
d7:b2:9e:03:49:b1:3d:0c:1c:d8:39:a2:bc:c1:69:
2f:91:e9:61:5a:ee:e0:eb:2f:42:36:56:12:c7:4f:
16:b8:8b:c4:5a:4e:c8:32:32:73:fc:2d:ac:b8:4a:
16:25:f7:6c:26:08:44:d3:26:8d:95:b9:ef:9c:6e:
e2:c7:38:1f:7c:16:3a:b4:4a:a6:96:b0:81:f4:1a:
07:9f:fa:6d:65:88:61:af:ad:dc:b3:b1:7e:61:18:
6a:bd:a9:5f:09:20:2d:40:85:2e:e8:f6:86:6e:3e:
10:7f:92:a0:d6:3b:36:5b:b9:ad:c9:0d:9f:3e:1a:
04:4c:e8:67:0c:13:bf:6e:cc:47:3b:14:bb:9a:0c:
01:a7:ba:57:ac:c0:25:31:f2:1d:d6:58:58:a1:a0:
ea:df:bc:71:14:35:2f:19:ae:ad:a6:76:b9:6e:ce:
43:e5:d7:a4:2c:1a:4b:8b:61:f8:df:d5:f4:d1:6e:
7a:50:9f:dd:f6:09:32:ef:6c:06:a1:9c:fe:25:fb:
ea:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7F:D5:68:3C:DC:CE:78:43:AB:CD:0E:0C:87:39:52:EE:D6:5B:51
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/7X_VaDzcznhDq80ODIc5Uu7WW1E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:5ea0::/32
Signature Algorithm: sha256WithRSAEncryption
2d:25:d0:73:5c:d0:1e:24:9e:68:8b:99:ae:98:80:b2:6c:52:
cb:96:b9:a9:1b:89:88:4b:6f:9d:25:dd:52:c5:8f:29:c8:27:
4a:6f:c9:03:fb:22:7f:64:25:d4:03:8b:d7:96:cf:e9:67:ac:
2f:99:e9:52:9f:5c:bc:b9:93:41:b6:f9:d8:11:db:35:d7:fb:
6e:41:43:3a:91:a3:e6:72:56:31:2f:ff:5f:62:a4:0f:f4:5e:
78:0c:34:4f:e3:7c:d1:8a:cb:be:0d:e6:ed:ed:ec:28:67:f6:
31:f2:67:24:37:4d:29:1f:46:1a:91:e7:19:cb:27:88:75:ba:
fc:fc:51:71:a1:96:f7:7f:03:64:48:b3:44:92:e2:54:16:9c:
4e:66:25:19:b0:67:cb:8a:24:f9:68:f3:28:fe:32:da:8f:41:
b6:5a:60:1d:34:9a:95:ce:25:ce:2e:36:b5:18:76:7b:31:69:
cf:c4:3e:4d:35:7f:ac:05:6b:d8:56:a7:ca:6a:9d:06:6d:d8:
4e:33:32:27:c0:18:26:db:0f:ec:d2:60:e7:b8:68:f5:bb:03:
62:06:0e:af:b6:9a:03:fb:d5:8d:6b:01:0d:87:4c:1e:e2:70:
3f:08:e1:a2:08:5c:4d:8e:c6:7a:81:1a:11:56:04:34:5a:b5:
a3:db:ca:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:24 2025 by rpki-client