Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ua9rR96taGI4Pk_G9YWBhlNmYa8.roa
File: ua9rR96taGI4Pk_G9YWBhlNmYa8.roa (raw, json)
Hash identifier: yyiChoebAy5LaQ+kPhTlELs5FhNPiNtDEdHQNJ4q9v8=
Subject key identifier: B9:AF:6B:47:DE:AD:68:62:38:3E:4F:C6:F5:85:81:86:53:66:61:AF
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C09
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ua9rR96taGI4Pk_G9YWBhlNmYa8.roa
Signing time: Fri 01 Sep 2023 09:13:54 +0000
ROA not before: Fri 01 Sep 2023 09:13:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3081 (0xc09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:13:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B9AF6B47DEAD6862383E4FC6F5858186536661AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:66:15:2e:38:be:8e:55:95:60:96:e8:be:7e:
57:3c:4c:7b:08:cb:27:93:25:fa:4a:f9:5b:f0:67:
a3:81:48:83:86:d1:e3:dc:eb:74:b8:42:d2:62:76:
d5:8e:8f:30:30:b9:8d:52:ba:f0:40:58:ed:43:b5:
3c:83:43:6b:08:87:5c:62:b4:f4:d2:a0:ce:ba:9e:
52:1f:0d:cd:6b:37:04:30:80:2c:cc:35:60:86:56:
05:aa:6c:10:99:6a:34:2d:d1:dd:28:d4:fa:5c:8b:
04:65:6b:5d:bf:51:14:a6:be:e1:03:83:9b:81:03:
f5:6d:75:8d:c5:2d:63:84:12:49:7e:5a:0b:b7:12:
cd:e9:09:a2:e0:4a:fd:6c:37:e5:54:4e:86:6b:c9:
85:0b:58:1e:9e:44:bb:48:b5:db:66:ca:d0:33:04:
99:de:09:6f:c4:0d:14:04:00:16:f1:93:62:80:c4:
72:c7:77:46:c4:8e:20:e6:ce:c4:78:9f:1b:03:93:
16:81:c7:db:78:87:77:e3:06:60:89:40:6b:59:27:
ae:c4:41:50:75:52:4b:14:32:b9:32:8d:4b:2d:39:
ef:95:4a:9a:90:92:6b:15:67:47:88:e3:6e:8b:a9:
f9:0f:2c:d2:db:3a:86:fa:35:7b:12:7d:c7:bb:bc:
0a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AF:6B:47:DE:AD:68:62:38:3E:4F:C6:F5:85:81:86:53:66:61:AF
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ua9rR96taGI4Pk_G9YWBhlNmYa8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
7e:97:86:dc:56:0a:65:39:c5:69:3e:46:61:7b:a0:21:36:65:
16:94:48:bc:c5:d2:d2:59:fa:c0:1d:e4:3f:a3:0b:13:43:85:
a9:f0:ed:3c:7a:e8:75:89:d9:a2:05:88:2c:81:41:eb:41:01:
a0:16:22:e7:9d:7b:63:2d:ed:65:2b:03:5d:2f:9f:e2:82:0f:
01:60:de:47:e5:50:33:6c:c0:c9:75:26:b2:24:25:8c:3b:02:
6c:e7:a7:b5:a8:13:a3:02:f9:23:98:29:03:95:47:ca:68:d3:
ad:48:0f:a2:1b:96:e3:44:de:92:9a:00:11:c3:de:fc:97:0f:
a2:cc:ad:90:ef:fa:de:49:13:fa:ff:ea:6b:87:e1:47:cb:7e:
1c:25:07:ee:d2:fc:2d:75:61:75:a4:52:47:57:ce:e2:95:ec:
4b:eb:1b:0f:39:3e:42:f1:6a:82:da:5a:1e:87:99:07:70:ef:
e0:41:0d:2f:ac:79:32:77:37:74:d9:2e:7e:90:60:75:bc:34:
21:d7:8b:70:22:10:42:50:d5:e3:f8:59:24:e4:d6:2d:ed:65:
8f:67:47:6e:3f:e3:6f:10:85:e5:c7:ea:1b:08:97:15:e4:ed:
49:53:48:6a:4c:dc:65:98:09:c4:61:69:1e:c5:09:97:31:f4:
a7:ef:a2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:35 2025 by rpki-client