Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/mjFOfQ24SZQj-KySr0aAsDYQLRw.roa
File: mjFOfQ24SZQj-KySr0aAsDYQLRw.roa (raw, json)
Hash identifier: jCQcmRt44j0HptqFhDFerF4PxOLmS7nOPIrkUslUpZU=
Subject key identifier: 9A:31:4E:7D:0D:B8:49:94:23:F8:AC:92:AF:46:80:B0:36:10:2D:1C
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 08B6
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/mjFOfQ24SZQj-KySr0aAsDYQLRw.roa
Signing time: Sun 07 Feb 2021 11:54:51 +0000
ROA not before: Sun 07 Feb 2021 11:54:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18426
IP address blocks: 203.145.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2230 (0x8b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Feb 7 11:54:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9A314E7D0DB8499423F8AC92AF4680B036102D1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:29:8b:2d:71:56:f1:a3:4b:0c:e5:2a:34:b4:
e8:3c:cc:49:b3:db:ac:5d:54:9d:38:e4:3f:a3:29:
ae:a9:a2:d3:00:ab:bb:2f:30:a3:17:f5:54:dd:cb:
d5:17:87:c8:99:72:4d:a8:c4:1b:0d:13:89:e2:30:
e6:c8:a9:3e:b9:0a:10:c9:93:dc:a8:b5:51:d2:8d:
f4:2a:7e:4b:b8:6e:10:23:36:d4:be:53:8e:1b:5e:
0b:e3:e5:86:4b:91:dc:97:51:17:03:f8:eb:43:5e:
c8:6f:80:a5:62:c4:a0:35:fb:e2:d1:be:35:d3:77:
3a:54:a8:e0:0d:99:58:d9:a0:4d:6f:09:25:c8:df:
08:61:57:f8:7a:50:6c:61:2b:fc:22:04:56:fd:25:
21:f4:9b:6b:e5:3e:b9:b8:f9:32:62:fe:16:d6:ed:
a9:65:ec:fa:ef:d2:0c:e0:43:20:f8:d5:76:23:d0:
46:f5:ca:02:b5:1f:df:e5:fc:c2:56:f4:f8:7f:2b:
19:38:6c:ea:38:7c:6d:8f:14:af:38:57:65:d1:0a:
64:26:20:e6:4e:fe:a6:5c:d9:15:68:b5:52:e6:01:
14:d4:41:3f:9c:fa:5c:82:e7:02:d3:f0:32:5e:9e:
3c:4c:b2:27:0e:f6:44:ec:f1:ff:41:68:fb:84:2b:
4f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:31:4E:7D:0D:B8:49:94:23:F8:AC:92:AF:46:80:B0:36:10:2D:1C
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/mjFOfQ24SZQj-KySr0aAsDYQLRw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.192.0/21
Signature Algorithm: sha256WithRSAEncryption
61:50:6d:85:e5:14:2e:e3:e6:af:85:b6:36:1c:15:54:44:fe:
c7:8c:12:f2:8f:d1:40:eb:3c:82:e6:07:a8:c4:7c:e6:a9:a5:
ba:82:0b:25:a0:ed:ad:d3:13:3e:2d:95:e9:03:53:6c:bc:3f:
b7:fa:24:b6:ee:26:6f:ce:ae:48:6f:e5:ab:0c:a2:0d:2f:ff:
33:21:39:69:84:63:ac:6c:74:f0:21:c9:1e:d9:de:f6:c6:5d:
71:89:04:06:6c:81:a0:1b:58:80:87:df:3c:02:a8:83:0b:50:
a6:3e:f4:d4:3d:05:da:c0:94:50:51:89:03:1e:38:ec:38:a4:
62:ae:dc:6f:5a:d9:80:07:7b:cd:09:35:f5:e6:d7:e4:e1:ce:
34:5a:cc:86:9a:52:f3:45:a3:4f:80:71:22:91:3f:65:d7:00:
39:f8:70:2e:a8:03:60:00:be:f9:8c:1b:51:7f:87:07:52:de:
9b:10:0c:32:2c:61:7d:ec:ee:b9:fb:b4:bc:2e:a1:58:50:30:
b8:0a:e7:25:64:fc:c7:2f:ea:84:d1:1f:3b:24:70:ff:9f:98:
c6:d6:be:76:08:20:b2:f1:7e:89:9d:90:19:0c:fc:5e:b2:ca:
d2:df:04:dd:67:fb:2d:67:d5:74:4f:42:8e:da:27:86:63:2d:
16:7e:7c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:58 2025 by rpki-client