Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/0NVRQQLYu83QrEA6vIFOh8fgPGI.roa
File: 0NVRQQLYu83QrEA6vIFOh8fgPGI.roa (raw, json)
Hash identifier: HLHFe6ti+qZyXV2Hjd45fUXLVcEFHEYHELClGFQpoRU=
Subject key identifier: D0:D5:51:41:02:D8:BB:CD:D0:AC:40:3A:BC:81:4E:87:C7:E0:3C:62
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 089F
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/0NVRQQLYu83QrEA6vIFOh8fgPGI.roa
Signing time: Sun 07 Feb 2021 13:02:42 +0000
ROA not before: Sun 07 Feb 2021 13:02:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2207 (0x89f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Feb 7 13:02:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0D5514102D8BBCDD0AC403ABC814E87C7E03C62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:b7:53:62:39:33:06:0b:cb:e6:ee:7a:eb:
22:cb:07:03:28:64:e3:5b:15:e6:36:77:f0:f4:2d:
b7:f7:17:cb:5f:3a:16:be:d1:e6:ab:dd:96:e5:e8:
c7:fd:01:6a:44:95:43:94:37:11:7c:91:05:00:8b:
1e:d6:aa:33:32:8f:5d:a3:a0:8e:33:66:2f:90:9c:
fd:b6:aa:85:d7:6f:1d:54:fa:66:9f:84:ca:2c:99:
3e:36:df:8a:fd:ea:59:76:d4:51:0e:80:d7:2d:d4:
4e:69:f7:d2:fe:89:3d:56:03:a0:ff:dd:be:1e:0c:
9a:bd:6e:12:c4:9a:f4:3a:13:83:07:dc:d4:3b:5a:
d8:f3:6c:40:69:d8:8d:17:78:b8:db:d0:62:ee:7c:
3a:28:c8:88:a7:c0:e2:89:a9:0c:b1:f2:33:01:c3:
86:fd:a9:aa:95:3b:c8:9f:46:75:61:62:ec:65:ce:
1f:51:f2:ae:ca:e7:c0:0b:7b:b9:5a:b9:93:9f:3a:
c8:28:f1:13:6f:60:30:64:29:d4:89:15:63:25:64:
3f:af:b8:50:02:ff:67:4d:de:93:56:af:00:6a:99:
6e:09:01:5f:a2:c2:22:72:b7:a8:b0:9f:40:dd:f7:
31:e9:4a:42:a3:cc:b2:f1:40:5e:02:ce:36:b5:d7:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D5:51:41:02:D8:BB:CD:D0:AC:40:3A:BC:81:4E:87:C7:E0:3C:62
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/0NVRQQLYu83QrEA6vIFOh8fgPGI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.103.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3f:25:2c:6b:ed:15:b1:2d:5b:1a:33:fa:34:57:f0:e1:75:
77:cf:93:1f:00:79:62:a2:ee:d3:3c:34:f8:21:a9:14:f0:e8:
ae:db:70:f6:8e:e0:f4:17:68:93:c7:90:07:39:8a:0c:95:17:
1b:4e:02:0d:b7:0c:ec:83:83:b3:8f:53:50:76:c4:0c:53:d2:
19:31:44:93:08:b6:10:62:46:ec:f4:e3:b9:6e:75:53:c4:60:
03:da:0f:c4:8c:2b:25:51:c0:06:d9:56:e8:8a:14:85:b8:04:
2a:26:f3:2e:c0:03:d2:39:0d:06:f5:ce:5f:b2:1a:d8:61:e6:
71:7a:a6:6f:44:46:ec:ec:24:18:b5:02:f6:3b:ea:d2:6a:74:
9e:c5:15:20:c1:2d:ec:6f:b9:5d:09:db:2b:0f:3f:0e:c0:17:
dd:37:f0:28:eb:7c:12:63:e7:eb:ed:ef:ac:fe:46:15:b5:22:
cb:e5:77:02:c4:34:a3:0b:2f:9c:eb:12:30:a8:b8:46:d4:2e:
20:2c:aa:3e:13:dc:6d:25:de:58:57:38:68:56:42:4e:96:61:
65:4b:89:f1:19:a2:8e:c8:53:3d:6d:ef:15:55:b4:5c:dc:49:
a4:64:22:e4:eb:68:e0:e5:47:ca:d2:30:a7:f1:e3:db:ef:73:
39:c4:87:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:14 2025 by rpki-client