Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/FXU_dPey01T6yq5qmV7Y5ZTF5Jk.roa
File: FXU_dPey01T6yq5qmV7Y5ZTF5Jk.roa (raw, json)
Hash identifier: LGXWdtx6HphNc8Q0Wj4w/mDIVYMUhk7baUA5vPiwP9U=
Subject key identifier: 15:75:3F:74:F7:B2:D3:54:FA:CA:AE:6A:99:5E:D8:E5:94:C5:E4:99
Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Certificate serial: 082F
Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/FXU_dPey01T6yq5qmV7Y5ZTF5Jk.roa
Signing time: Mon 26 Aug 2024 05:23:41 +0000
ROA not before: Mon 26 Aug 2024 05:23:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131674
IP address blocks: 2405:e4c0::/32 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2095 (0x82f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Validity
Not Before: Aug 26 05:23:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=15753F74F7B2D354FACAAE6A995ED8E594C5E499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:90:6c:78:fb:60:41:de:60:74:01:af:99:d3:
84:28:f5:97:c6:0f:d0:7c:be:48:50:08:44:43:70:
18:82:0e:50:c9:94:dc:c3:be:e2:06:06:e4:d3:0a:
70:29:ad:5c:5a:32:ee:68:55:9b:c6:eb:8f:14:f4:
ae:dd:d2:83:a1:5b:2a:55:91:64:dd:a5:06:11:dd:
74:18:92:65:a8:13:80:9d:f9:91:ff:69:7d:bb:13:
6c:22:3c:8f:53:c7:d8:cd:ed:7b:81:18:00:b3:ca:
9d:03:e8:f7:f9:38:0f:c6:3c:6e:f4:5f:0f:76:64:
51:75:0a:1d:ad:b2:f5:92:5f:7e:3d:35:f4:6d:a1:
e7:d1:91:a3:52:66:6a:97:ed:60:c4:82:ee:fd:0a:
a9:4d:a1:ff:af:39:00:d6:cd:71:b0:44:0b:b1:1c:
4d:82:da:6e:c9:a4:9a:36:fe:f5:8e:98:38:de:bf:
a1:67:65:aa:a1:42:30:32:c8:ba:3f:f9:0f:9b:ec:
4f:be:c0:5d:06:c9:a8:ca:7f:32:6b:be:05:77:d0:
69:13:f2:4d:df:96:b0:28:d4:b3:38:0f:d3:b9:7f:
45:4f:ed:f5:9c:da:0a:2f:96:95:0e:f3:c5:c4:93:
53:54:5f:7b:49:37:e5:1c:dd:0d:bf:e9:15:b8:ac:
e2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:75:3F:74:F7:B2:D3:54:FA:CA:AE:6A:99:5E:D8:E5:94:C5:E4:99
X509v3 Authority Key Identifier:
keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/FXU_dPey01T6yq5qmV7Y5ZTF5Jk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:e4c0::/32
Signature Algorithm: sha256WithRSAEncryption
71:1d:21:d3:55:70:ed:69:92:86:cb:40:7b:fa:f0:c3:30:4e:
e1:7a:2e:ef:83:32:e1:8d:29:73:1a:ca:44:5b:53:7a:a4:45:
e0:a2:dc:e3:f4:7a:60:e7:1d:7d:b9:95:1a:77:9d:92:3f:8b:
5b:fb:a4:38:6b:32:c7:15:90:a9:78:54:73:7b:8f:53:58:72:
84:94:93:76:d8:e1:e1:90:91:39:26:22:e2:b0:4a:3e:88:2b:
ed:0a:3f:5f:3c:e1:d1:da:00:0d:5e:1e:91:ba:d1:ba:46:c2:
7c:d6:2e:74:b3:de:25:2b:c6:0c:d6:20:2c:1c:e2:88:e3:08:
c5:44:42:be:dc:db:42:37:f4:cc:b0:41:11:93:4d:ac:aa:e8:
1e:7e:88:b7:f6:63:e7:21:22:90:d2:28:36:65:be:cf:7f:2e:
bd:90:8c:94:64:97:7c:25:b4:4a:aa:c5:e0:5f:91:7d:14:9b:
bc:15:3a:f4:b2:18:8a:0c:2c:95:fc:8d:92:83:fe:fe:b2:c0:
2b:5d:d6:db:22:1d:7c:b2:e7:20:2a:d8:79:c9:28:2a:85:64:
f7:83:68:b9:91:83:10:16:83:21:c6:52:43:e8:fa:e8:67:50:
80:9f:55:62:45:09:4e:6b:39:0c:b9:12:16:fc:2e:00:0c:59:
84:d7:d6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:39 2025 by rpki-client