Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MKY/JzNtYjPzvvjKo5-5gn_ESkBgVDE.roa
File: JzNtYjPzvvjKo5-5gn_ESkBgVDE.roa (raw, json)
Hash identifier: Z/LdsZaUdHtdwF325dkk+OCaPizNSfV1FLDkxj2ojOY=
Subject key identifier: 27:33:6D:62:33:F3:BE:F8:CA:A3:9F:B9:82:7F:C4:4A:40:60:54:31
Certificate issuer: /CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Certificate serial: 0A48
Authority key identifier: 9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/JzNtYjPzvvjKo5-5gn_ESkBgVDE.roa
Signing time: Thu 15 Sep 2022 02:39:39 +0000
ROA not before: Thu 15 Sep 2022 02:39:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7478
IP address blocks: 211.76.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2632 (0xa48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Validity
Not Before: Sep 15 02:39:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=27336D6233F3BEF8CAA39FB9827FC44A40605431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a3:76:06:e0:83:4f:99:87:80:0c:4f:cf:dd:
af:d9:1c:3c:98:cc:4d:ed:78:a8:41:95:2d:78:c4:
2f:d7:0e:31:2e:9e:51:8d:b6:21:e4:6e:41:45:6a:
fb:71:7e:54:c8:51:0f:bc:8a:71:00:3d:61:6e:92:
7d:18:64:a6:e6:90:67:42:53:a9:24:44:4f:a0:48:
cb:9a:fc:17:6d:83:9d:35:25:f2:7a:c6:ca:f9:9c:
bc:89:35:d2:34:4f:e5:2c:82:24:80:42:95:ba:9e:
2a:9d:ea:1c:d1:42:36:4a:b8:32:65:3c:52:1a:62:
05:b6:91:4e:b4:c6:af:1c:c9:64:47:98:43:eb:b4:
bb:95:77:ca:55:3f:6c:3f:a2:6a:da:89:ac:af:99:
fc:de:0b:55:43:0e:25:df:70:14:e2:ee:4d:2b:99:
d7:ff:50:50:45:14:c6:bc:d9:d6:5e:93:4d:ff:9e:
29:9b:01:ec:8d:f5:20:4d:a1:45:36:e4:4d:c9:a2:
81:52:e1:b6:12:76:75:bf:18:8d:ae:87:e8:16:fa:
33:a3:3a:4e:70:c9:8b:ea:33:b0:27:f5:f5:3a:75:
85:1d:43:1f:8c:f4:39:cd:27:30:cd:9b:ea:fc:f4:
f8:af:3f:08:94:b0:1b:ec:1f:83:de:eb:f6:20:8c:
12:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:33:6D:62:33:F3:BE:F8:CA:A3:9F:B9:82:7F:C4:4A:40:60:54:31
X509v3 Authority Key Identifier:
keyid:9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/JzNtYjPzvvjKo5-5gn_ESkBgVDE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.0.0/19
Signature Algorithm: sha256WithRSAEncryption
82:c0:78:bd:64:f5:63:c5:46:46:ed:4a:8d:a5:95:04:6c:fb:
90:e5:ec:2c:6a:b9:28:75:88:78:1c:4c:f8:1b:0b:56:59:f6:
66:0f:78:df:fc:e5:13:63:c9:42:fd:29:e3:87:a7:ca:fe:da:
30:e0:a5:15:70:d9:fe:c8:95:e5:03:76:9e:7d:90:69:a1:cf:
51:e5:49:7b:97:23:da:fe:50:74:b5:a2:1c:b7:a1:65:55:b9:
0a:2d:2d:79:23:12:5f:81:c8:21:7d:cd:6a:72:a6:97:ce:bf:
b3:db:a4:b4:e3:dd:41:a1:f1:ae:9a:d4:70:87:9c:cd:55:15:
da:dc:d2:8a:7d:88:ec:10:2f:51:bd:eb:a5:0c:08:62:88:2e:
50:b0:db:ae:5e:25:b5:c2:00:b1:f9:f9:2d:8a:ab:99:1e:db:
ff:86:b5:2f:e1:c3:6e:38:39:a4:9b:13:59:97:06:f8:45:ed:
67:f4:ab:e6:b3:a2:63:66:95:e2:d7:33:13:a6:4f:95:48:fb:
98:b1:fb:a5:9d:bf:f0:4a:d7:3d:2d:20:94:12:33:04:6a:fc:
40:b8:b4:9b:c5:b7:48:50:af:0a:4e:ec:5d:a9:26:4d:a5:b6:
0b:d8:ff:a0:0c:76:e6:e0:22:20:fd:0c:7c:90:f0:e1:df:68:
b6:b5:b1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:30 2025 by rpki-client