Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/dqa_x1uz_EKAafEfNWCYdNOWzTU.roa
File: dqa_x1uz_EKAafEfNWCYdNOWzTU.roa (raw, json)
Hash identifier: W6lnPyyNrDaOhAGE9NLm105oxQJ0Cawh4tWYCgqr0qc=
Subject key identifier: 76:A6:BF:C7:5B:B3:FC:42:80:69:F1:1F:35:60:98:74:D3:96:CD:35
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AD4
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/dqa_x1uz_EKAafEfNWCYdNOWzTU.roa
Signing time: Tue 23 Aug 2022 09:19:07 +0000
ROA not before: Tue 23 Aug 2022 09:19:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 36408
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2772 (0xad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 23 09:19:07 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=76A6BFC75BB3FC428069F11F35609874D396CD35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:b8:87:f1:cc:ca:db:18:de:07:fc:2b:54:
0d:30:33:8a:bf:06:36:a9:a8:d7:ca:e5:13:ab:61:
e8:03:6d:f4:9f:af:9f:ff:a2:27:48:ee:23:62:e9:
e6:d8:e3:97:59:83:ed:11:cd:77:b6:4b:93:77:27:
6f:6b:92:05:c0:41:89:91:ca:ae:46:04:a9:c6:1d:
f8:53:c3:04:b0:76:b8:65:f8:a3:c7:b4:3e:6b:ef:
1e:a1:d0:27:24:55:d8:98:68:13:63:5d:db:3c:d5:
05:e8:b6:c3:ff:51:b3:36:24:32:d4:ce:95:97:fe:
0c:d5:d4:72:3b:c4:74:bc:ea:69:ab:c0:a0:5d:03:
3d:cf:28:1d:78:25:8c:9f:2b:a2:25:02:9a:5b:07:
ef:10:66:fd:27:30:09:69:0c:7a:42:2f:b9:22:d5:
4a:e0:40:76:8a:84:d4:5b:45:f9:20:0a:21:6f:c3:
3d:a7:26:86:01:68:2a:6e:7f:a8:5b:37:07:ce:ef:
63:82:5a:8a:59:1e:e8:a4:ad:e5:2a:de:8f:f7:e9:
80:39:3d:2f:73:e0:ba:eb:a7:4a:d1:43:c3:0e:60:
68:fb:8e:1c:68:e7:16:d8:33:83:84:91:b5:84:9e:
29:3d:6d:da:95:5c:e0:9a:ba:a1:ee:8b:2a:3c:d7:
42:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A6:BF:C7:5B:B3:FC:42:80:69:F1:1F:35:60:98:74:D3:96:CD:35
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/dqa_x1uz_EKAafEfNWCYdNOWzTU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:2f:93:60:10:69:68:dc:20:7d:87:b1:7c:8f:5b:12:ef:b2:
07:b0:95:e4:1c:35:37:52:9f:f6:e7:3a:84:ef:09:2b:38:ff:
a0:5b:cb:b7:0b:21:57:60:22:17:23:f1:65:5a:de:b7:d7:12:
71:bc:c7:00:2e:68:e0:8f:14:5e:2a:30:3c:05:01:08:cb:c0:
7e:d7:bb:29:45:12:4a:2d:5d:e1:6c:de:af:dc:a1:cf:b6:0b:
65:5b:25:e0:39:fc:a6:05:2c:f5:d1:df:99:df:19:9f:dc:d2:
f5:41:6e:90:6c:a8:73:7b:e3:f9:bd:1f:a6:69:43:d2:69:f2:
29:56:ab:28:4f:0a:e1:44:d3:2d:1d:20:1d:24:34:ed:be:b1:
ef:72:25:6e:22:41:85:b1:65:ed:eb:20:69:1d:a4:89:57:65:
c8:12:f1:f4:88:c0:ed:d4:31:b9:b1:10:d1:c6:7c:7b:63:04:
0b:70:5d:50:ee:b2:ca:57:83:d2:be:92:d5:8c:49:a3:ca:3c:
b4:9c:75:12:67:e6:59:ff:30:e0:e3:17:9b:3e:95:b3:50:5c:
1d:ef:a9:8b:48:f2:26:24:c1:6f:7b:4b:75:5e:6e:6a:08:eb:
4c:62:67:78:6c:57:da:b9:5a:7b:7a:ff:40:10:6c:54:d9:7e:
78:20:1b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:28 2025 by rpki-client