Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/mQlLO-UnPNbnCADwsf97wvrHE2o.roa
File: mQlLO-UnPNbnCADwsf97wvrHE2o.roa (raw, json)
Hash identifier: 7J3EZkWEiyc1ro3rnm5ixrrXnBO1VsHH+v5peknNADw=
Subject key identifier: 99:09:4B:3B:E5:27:3C:D6:E7:08:00:F0:B1:FF:7B:C2:FA:C7:13:6A
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0775
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/mQlLO-UnPNbnCADwsf97wvrHE2o.roa
Signing time: Tue 29 Sep 2020 10:00:19 +0000
ROA not before: Tue 29 Sep 2020 10:00:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 203.145.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1909 (0x775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 29 10:00:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=99094B3BE5273CD6E70800F0B1FF7BC2FAC7136A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a0:6b:62:91:1d:03:4c:83:12:f3:fe:66:aa:
b5:96:86:eb:f7:91:31:0f:df:bf:a5:8e:9f:51:5b:
27:75:61:e2:8b:68:44:8a:54:ac:fa:b4:31:2b:8c:
17:ce:13:53:de:b0:77:e7:80:34:b0:23:47:e2:ba:
78:84:80:ec:40:cd:5b:b8:f8:c0:e8:d2:c9:8e:df:
ef:7c:47:01:91:b4:f3:b7:f2:68:f9:35:aa:f6:2e:
38:49:5b:0c:b7:dd:be:63:01:9f:9f:dd:1a:91:e0:
51:1d:32:7d:3e:64:30:cd:e5:46:ac:ac:d0:e5:fc:
cd:a4:2f:5e:40:52:1e:87:12:f8:a5:b6:8c:1b:f6:
49:3c:b1:cc:b3:54:35:e4:7c:55:b7:98:5b:4f:07:
92:e2:66:be:8a:be:c3:16:13:3f:ac:bd:65:78:a7:
60:18:6a:41:b3:6d:9e:99:12:0d:29:f9:26:b8:6d:
67:52:ee:5a:19:0e:d2:46:f3:79:b8:ff:8d:fc:ae:
29:76:3c:ed:10:24:18:73:35:ad:b1:1e:c2:ae:c6:
fe:48:1a:eb:f7:10:2f:c7:60:5a:b4:80:a2:fc:66:
5b:53:99:c9:32:87:c2:07:68:e8:c5:28:4c:12:fb:
97:81:d8:36:26:07:c2:60:52:64:46:82:b8:09:1b:
7e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:09:4B:3B:E5:27:3C:D6:E7:08:00:F0:B1:FF:7B:C2:FA:C7:13:6A
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/mQlLO-UnPNbnCADwsf97wvrHE2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.200.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:46:ae:d8:0c:97:df:8c:20:22:57:09:c9:d8:f0:72:dd:02:
07:30:e8:18:dd:a0:e0:80:28:be:98:3c:95:a0:e9:32:25:b1:
dd:c3:01:13:1b:98:4e:50:35:6a:4e:c4:c3:32:05:d6:93:f8:
8e:b2:ec:be:80:5c:2f:bd:f2:7e:c5:d4:80:78:5c:3c:81:6a:
af:53:74:5c:34:4d:e2:29:46:61:6a:a1:4a:51:7c:e2:3a:fa:
17:9b:db:b9:aa:b6:62:0e:a9:0f:99:0f:26:8a:12:20:c6:60:
73:b1:4b:66:72:7c:df:8b:d1:6a:c3:1f:19:33:ee:72:f4:0f:
93:46:ef:cc:07:4c:e4:a8:6a:23:4a:84:21:2b:d9:44:2e:ca:
66:f5:26:e5:12:8e:41:5c:1f:fb:e4:ce:7c:c3:93:35:2e:c7:
8c:0a:88:05:79:fe:e0:e0:e4:49:5a:3b:10:56:21:a6:a2:a5:
17:4f:9a:2f:09:95:e1:2d:78:2c:55:76:00:1b:80:97:3c:ce:
06:36:74:90:12:81:64:93:8a:54:b7:b1:c2:f5:fd:70:fe:cc:
07:6b:99:3d:04:63:86:71:42:49:a1:bd:c3:41:f5:2a:dc:68:
cb:92:36:9b:f3:97:a9:18:7b:81:2b:24:f2:63:9b:f6:f8:d1:
79:0f:47:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:41 2025 by rpki-client