Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/ganD__0Pw7SVRF7xYveDRRDAcnI.roa
File: ganD__0Pw7SVRF7xYveDRRDAcnI.roa (raw, json)
Hash identifier: mVd3TQwTzuIDybBl3Wg9dpVQ7PrDRdUYc7iXDYrs7/o=
Subject key identifier: 81:A9:C3:FF:FD:0F:C3:B4:95:44:5E:F1:62:F7:83:45:10:C0:72:72
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 08B8
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/ganD__0Pw7SVRF7xYveDRRDAcnI.roa
Signing time: Sun 07 Feb 2021 11:54:52 +0000
ROA not before: Sun 07 Feb 2021 11:54:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 203.145.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2232 (0x8b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Feb 7 11:54:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=81A9C3FFFD0FC3B495445EF162F7834510C07272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:69:7c:91:66:45:53:5c:97:56:81:01:99:68:
b1:c8:28:f8:9b:7a:b6:d0:ce:6a:65:53:ee:2c:46:
1e:4f:80:12:07:ba:ae:16:2e:53:48:26:ba:2c:89:
12:dd:09:21:ee:71:90:88:73:24:c3:50:cc:ec:bf:
54:10:b1:39:68:26:b4:49:02:50:b4:a1:57:5c:28:
ef:d0:09:53:16:55:65:21:4c:49:f0:ae:80:d5:18:
24:b1:75:d9:49:cb:e9:08:50:09:d5:2d:6c:80:fa:
85:86:0c:c9:a5:be:31:bf:bd:da:fd:b0:e8:8c:0b:
c5:86:c3:43:0d:96:b2:cc:67:f3:0b:1f:bf:1a:06:
3a:6b:d7:b8:7e:e1:49:2e:53:a0:03:6f:5a:dc:ac:
53:f9:5d:e5:62:6f:6c:d0:6d:2c:70:9d:de:17:a4:
14:58:a7:6f:52:f3:f8:43:2d:6b:d7:be:15:ef:d8:
62:71:e8:58:25:29:e4:20:cc:c2:f7:97:e2:2a:76:
eb:5c:bf:bb:97:87:71:a9:9b:a0:2f:56:53:17:04:
e2:03:6c:a0:0b:dc:3c:48:06:50:70:02:e0:6e:35:
67:12:9d:f2:d5:1d:45:ae:26:4e:20:97:b5:f6:07:
b3:9d:49:ee:b7:94:78:61:c7:15:f2:17:e8:cd:10:
fd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A9:C3:FF:FD:0F:C3:B4:95:44:5E:F1:62:F7:83:45:10:C0:72:72
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/ganD__0Pw7SVRF7xYveDRRDAcnI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.200.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:ad:52:8c:3e:76:46:dc:65:04:17:38:ae:ff:f7:7e:c7:04:
0e:59:f9:d1:6c:1f:24:72:6c:f2:e2:bb:0e:ac:4c:dc:c2:9a:
fa:ac:2d:15:01:60:f7:65:cd:2d:b5:85:49:72:79:f6:52:92:
fc:39:ae:53:ea:c6:93:1b:0f:59:de:3b:93:7c:db:c1:1d:c1:
13:4e:b9:0d:2e:c5:2c:d4:0e:2f:87:d4:40:35:9b:8a:0b:b6:
78:79:78:ff:1b:dd:be:a7:a6:3b:c1:72:f3:63:3d:2b:77:57:
e0:85:50:d1:89:22:81:b5:33:fc:c9:e4:21:3d:d1:b5:0b:37:
4a:8e:c2:0e:79:2b:66:b9:47:27:fb:99:b5:6c:f7:d3:59:90:
1b:45:a6:7d:c1:08:4a:1f:db:36:96:16:44:e1:a2:0d:de:d2:
36:5b:be:9f:c4:9b:e0:8d:23:d6:ee:01:dd:d9:e3:33:44:9a:
2c:cb:9a:42:5a:0c:92:22:82:8d:b0:e5:a6:84:76:8d:cc:df:
c8:66:78:51:50:3b:1d:b4:7a:ef:07:5a:9b:d1:78:da:25:59:
34:3c:be:f0:18:ff:b1:cb:6b:09:fe:98:5e:8d:47:26:8f:cf:
cb:62:9b:58:24:a4:3c:97:f4:b8:1b:10:21:be:f2:da:70:1d:
84:e3:69:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:28 2025 by rpki-client