Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/uSeWxr6U01HIF4fYs6t21NAAyJ0.roa
File: uSeWxr6U01HIF4fYs6t21NAAyJ0.roa (raw, json)
Hash identifier: 7Mwh4RCPMWLq9VXjAPacKEYJeYFUH8BotZRGLV+kyQc=
Subject key identifier: B9:27:96:C6:BE:94:D3:51:C8:17:87:D8:B3:AB:76:D4:D0:00:C8:9D
Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Certificate serial: 05
Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/uSeWxr6U01HIF4fYs6t21NAAyJ0.roa
Signing time: Mon 17 Apr 2023 06:45:00 +0000
ROA not before: Mon 17 Apr 2023 06:45:00 +0000
ROA not after: Wed 10 Apr 2024 15:30:09 +0000
asID: 8075
IP address blocks: 2400:f520::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Validity
Not Before: Apr 17 06:45:00 2023 GMT
Not After : Apr 10 15:30:09 2024 GMT
Subject: CN=B92796C6BE94D351C81787D8B3AB76D4D000C89D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f1:c2:f1:b2:1d:f2:65:07:fc:ba:82:48:b7:
25:86:d4:79:23:d6:c5:ac:db:1f:c1:1f:e0:f7:36:
07:46:79:d0:e1:98:f4:69:5f:15:16:62:2d:e6:9a:
5a:2f:2e:c1:f1:ca:a3:d5:54:8a:8d:d7:0f:b2:b7:
ac:50:00:1c:11:fe:5c:53:c2:b0:5a:65:4e:9b:09:
2e:41:ef:b9:9d:07:dc:ed:db:a5:39:46:93:4e:7c:
92:5d:6a:5a:62:8c:01:30:f2:3e:09:40:68:a0:5e:
9d:44:d2:82:32:15:f0:57:c4:2c:42:1b:5b:b5:a6:
24:9b:7b:b7:10:61:48:b1:61:15:ef:7f:12:f9:38:
33:d2:df:4d:2a:65:bf:44:52:36:e7:72:53:f5:a8:
64:a3:62:c5:62:f1:ea:6d:dd:d6:89:ad:74:76:ed:
60:fa:a4:f7:02:52:14:aa:a0:0c:1d:9b:cb:8a:52:
ca:eb:a6:dc:3d:a7:78:f0:be:dd:c3:2e:93:65:9a:
b6:46:c9:c0:50:8a:d2:53:c1:cc:fd:99:ac:0e:94:
ca:53:f0:a5:82:d0:60:83:9a:c9:90:1c:73:71:dd:
5d:fa:83:52:95:85:51:31:ff:7a:f8:31:18:a4:43:
4e:fd:b8:26:26:07:e9:1d:0f:52:16:c4:8a:24:a9:
7b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:27:96:C6:BE:94:D3:51:C8:17:87:D8:B3:AB:76:D4:D0:00:C8:9D
X509v3 Authority Key Identifier:
keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/uSeWxr6U01HIF4fYs6t21NAAyJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:f520::/32
Signature Algorithm: sha256WithRSAEncryption
a3:e0:23:10:71:2d:56:b1:7b:f2:e0:87:e0:8e:f2:73:52:c0:
71:a6:47:65:b7:fe:ce:a0:9f:48:50:37:10:1d:62:d6:31:e9:
69:29:e0:4a:63:a7:8a:d7:e6:89:73:58:3d:1d:a2:f4:77:04:
26:e3:23:5a:c5:c5:c6:3d:4b:d6:04:d4:14:07:ef:1d:f9:39:
c1:f6:04:23:23:df:42:6f:fc:bb:b7:9e:4e:e3:84:eb:d4:b4:
34:ba:ac:af:f0:50:03:77:bc:67:48:5a:35:25:0a:03:78:e1:
81:83:ea:87:7d:13:48:b8:8a:97:ef:cb:00:d0:60:45:26:0c:
05:26:fd:bc:52:0c:6c:b2:c0:a9:1a:ff:c9:7b:e1:ad:b1:c9:
34:39:8f:4a:56:84:25:9b:a6:94:41:58:c8:48:c1:95:69:f1:
57:a0:2c:c0:7d:53:57:dd:14:55:c9:e6:4d:51:9e:47:ee:96:
91:0e:1d:0d:6b:e4:00:b7:52:24:cb:3c:de:71:f4:a2:c1:fd:
7c:24:8d:2a:c2:ae:c8:36:78:90:b0:4b:d3:d4:c8:a9:ac:e0:
aa:00:9f:8e:ab:87:a4:c9:3d:30:e1:2c:69:b1:10:d3:33:be:
53:b8:75:4b:fb:ba:bf:b9:a3:c3:42:37:a2:d1:a4:b7:c0:4c:
c0:69:e6:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:38 2025 by rpki-client