Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/ONMg4OAWJU0IDXEJWCAybOCGvs8.roa
File: ONMg4OAWJU0IDXEJWCAybOCGvs8.roa (raw, json)
Hash identifier: +20d/v++dp5eWOv14Ni4woAnKgWuKc4a0OfZ784gjnY=
Subject key identifier: 38:D3:20:E0:E0:16:25:4D:08:0D:71:09:58:20:32:6C:E0:86:BE:CF
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 0E3F
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/ONMg4OAWJU0IDXEJWCAybOCGvs8.roa
Signing time: Tue 29 Sep 2020 10:05:12 +0000
ROA not before: Tue 29 Sep 2020 10:05:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 2403:b340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3647 (0xe3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Sep 29 10:05:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38D320E0E016254D080D71095820326CE086BECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5e:64:e9:78:b1:15:68:82:86:90:8d:db:40:
e8:5c:03:49:75:86:30:4b:8f:6c:3a:f0:e5:70:f5:
a7:a4:70:d3:6a:b0:e9:4d:ea:45:1f:06:55:fa:dc:
37:4e:83:c5:fc:8d:f5:f9:e0:bf:1f:35:04:c7:0f:
ce:27:41:cc:92:f8:07:80:94:76:13:3e:2b:0b:c1:
20:b7:0e:81:6a:e0:0b:6f:4a:80:9c:d2:8d:d9:67:
16:df:0b:4b:71:43:ac:be:42:e1:22:12:8b:84:63:
cd:66:5a:68:d9:c6:14:d4:d9:3f:2b:45:94:39:80:
b2:8f:85:60:d1:a4:48:79:4a:c1:65:ce:53:b4:65:
8e:9f:94:af:ce:a3:99:b4:87:2d:3a:3f:42:5c:27:
f0:29:15:d9:a0:54:a2:34:2f:b5:87:5a:01:51:70:
1b:0f:97:ed:2e:8f:0c:dc:3d:97:58:44:eb:dc:7f:
c5:22:67:53:73:d9:13:88:c9:44:58:3d:c2:83:12:
c4:d0:a7:1f:d8:bf:c4:43:31:22:ae:1c:08:d7:5a:
c2:bf:7e:62:5c:70:cd:c0:88:35:d2:5a:b1:48:92:
ef:4e:29:fb:21:e7:a2:57:f4:11:a0:c2:45:c2:a0:
ae:6d:d8:d5:ec:2d:28:a2:b3:7d:28:12:68:d6:1b:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D3:20:E0:E0:16:25:4D:08:0D:71:09:58:20:32:6C:E0:86:BE:CF
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/ONMg4OAWJU0IDXEJWCAybOCGvs8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b340::/32
Signature Algorithm: sha256WithRSAEncryption
20:65:f7:b3:7d:bf:e4:a5:e8:bb:71:f2:eb:98:04:23:24:76:
0d:9f:71:95:e4:22:17:71:bd:b8:d6:ac:11:68:8b:33:a0:a3:
f0:4f:a2:e8:3b:e2:94:04:0e:70:86:ec:13:21:ca:69:61:0a:
2c:e3:dd:29:ae:ce:92:f3:c2:d8:75:a1:3c:b6:30:4b:49:57:
07:a1:8e:ea:1b:07:7b:c0:86:51:37:d8:7f:9e:7c:99:30:74:
37:b1:9e:f1:18:49:5c:97:4f:7b:06:2b:c0:58:0a:45:71:c0:
c3:fe:4d:82:3b:09:2a:d5:98:02:3d:89:c9:e8:b2:69:09:93:
db:fc:b2:cc:9c:85:f9:da:64:25:42:ea:98:8f:4a:45:15:09:
8e:ab:71:dc:b8:3f:4a:1a:90:d0:3a:41:bd:5b:b3:35:4a:7c:
c3:bc:ce:8b:61:bd:3a:95:95:ff:30:84:7a:39:44:7d:77:f8:
d8:8f:44:36:e9:bd:c1:29:64:1f:e2:a2:cc:f0:4c:4d:ee:1f:
51:b7:7f:02:06:44:d4:0b:e1:0d:2c:e5:63:00:97:50:ed:18:
3f:b1:82:c7:d3:af:75:a3:f0:b4:4c:86:ea:df:89:a4:ad:6d:
9c:d2:1d:6e:24:0a:9a:7c:c6:f0:a4:ec:3d:76:bb:61:c3:5e:
11:82:d3:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:03 2025 by rpki-client