Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MKY/9uhR-mKX6mRebbCuzPlY7eqB4QA.roa
File: 9uhR-mKX6mRebbCuzPlY7eqB4QA.roa (raw, json)
Hash identifier: SqQt0t4mH5yQ/Tu+22ALFgwTwsJBA7FkPqDxSHKgbCo=
Subject key identifier: F6:E8:51:FA:62:97:EA:64:5E:6D:B0:AE:CC:F9:58:ED:EA:81:E1:00
Certificate issuer: /CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Certificate serial: 095E
Authority key identifier: 9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/9uhR-mKX6mRebbCuzPlY7eqB4QA.roa
Signing time: Wed 29 Sep 2021 02:40:31 +0000
ROA not before: Wed 29 Sep 2021 02:40:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7478
IP address blocks: 210.244.192.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2398 (0x95e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Validity
Not Before: Sep 29 02:40:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F6E851FA6297EA645E6DB0AECCF958EDEA81E100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0e:c0:8f:cd:eb:63:79:32:30:db:95:15:97:
9a:91:05:e5:c6:2c:2c:1e:a9:b2:51:a6:43:e3:6e:
6b:83:43:9d:26:6e:bb:e2:6f:06:ea:2b:05:74:46:
27:46:af:16:b1:b0:0c:53:ae:c6:65:1b:80:f4:5b:
ef:eb:6e:78:ec:74:9e:db:3e:ca:4d:8c:c2:aa:9d:
c1:3b:bf:81:ce:29:22:6e:ca:ed:65:fd:04:54:b4:
a6:54:c9:a5:10:6d:d4:fe:39:71:d3:61:9b:4b:3f:
aa:fd:e5:15:63:a6:7e:01:9e:a3:af:53:fd:2a:42:
ed:46:d8:a6:89:0c:92:09:99:cf:8c:a3:48:94:b9:
85:32:94:13:b2:3e:98:61:66:fd:e7:b1:c4:0a:b2:
ea:d9:87:96:18:35:ae:58:57:d1:27:f0:7a:42:48:
7c:45:6e:91:a3:25:f5:a6:38:06:60:38:ad:84:22:
93:d3:9f:37:d3:94:81:b7:b9:75:a2:55:8b:ba:ee:
6e:59:a9:fd:51:3a:57:0c:c9:ad:57:b6:7c:d0:f0:
3c:1e:b6:d8:86:23:5e:1e:7f:24:44:c6:80:59:8b:
79:ea:4e:09:aa:12:a3:81:a7:91:fa:42:23:96:9e:
c6:fc:7c:78:c4:7e:1e:77:a4:8e:1d:28:a6:18:05:
78:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E8:51:FA:62:97:EA:64:5E:6D:B0:AE:CC:F9:58:ED:EA:81:E1:00
X509v3 Authority Key Identifier:
keyid:9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/9uhR-mKX6mRebbCuzPlY7eqB4QA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.192.0/19
Signature Algorithm: sha256WithRSAEncryption
9f:8c:02:02:f9:24:a2:ea:18:b1:f6:d1:51:e5:06:39:80:3a:
6f:ae:16:d6:6e:76:53:09:75:b6:89:01:8d:97:2a:60:0d:68:
13:8f:56:d7:d0:b1:29:f8:65:47:2d:c5:9d:45:84:86:cb:4d:
ce:05:39:05:7f:25:20:de:f6:e7:84:a9:6a:88:95:76:a7:8b:
ab:b0:65:4b:7c:d8:a4:96:dc:27:76:a0:c3:60:2e:b6:ab:d3:
e0:7f:2e:dc:ae:f3:e4:09:21:02:0d:91:88:85:c5:fc:c9:6c:
fb:a2:da:2c:fb:20:c1:a8:d7:5b:43:d0:98:6e:18:22:7d:50:
cc:a2:85:6d:73:03:96:47:2e:72:55:87:eb:e3:c9:ac:d9:4b:
55:c4:78:b8:48:41:1d:97:c5:56:55:3b:65:ce:bd:f1:c8:b2:
6b:61:cc:70:0d:e5:ec:5f:a0:c2:ec:58:f5:cd:87:79:ce:3a:
5d:b4:cd:fe:48:36:71:90:82:64:a1:0f:2e:fc:0f:5b:0a:4b:
bd:89:59:1a:85:a0:54:c3:a3:3f:0e:78:50:6a:a2:60:f5:29:
01:89:72:5c:54:ca:bc:17:bd:99:df:65:db:42:ec:c4:2b:c4:
cf:22:e2:9f:96:01:e6:79:4e:a2:50:b9:8c:24:ee:f5:fc:bc:
cf:bd:e7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:02 2025 by rpki-client