Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/K_fwbmz6QwqzyNTMaHP1V9439F8.roa
File: K_fwbmz6QwqzyNTMaHP1V9439F8.roa (raw, json)
Hash identifier: eCXXG1pmOoVjs6U1EKGMuiRZj+Efnnk/Mv1ingMVwk4=
Subject key identifier: 2B:F7:F0:6E:6C:FA:43:0A:B3:C8:D4:CC:68:73:F5:57:DE:37:F4:5F
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B30
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/K_fwbmz6QwqzyNTMaHP1V9439F8.roa
Signing time: Fri 01 Sep 2023 09:34:43 +0000
ROA not before: Fri 01 Sep 2023 09:34:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4781
IP address blocks: 210.63.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2864 (0xb30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2BF7F06E6CFA430AB3C8D4CC6873F557DE37F45F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:41:cd:7c:18:a8:92:65:70:db:39:5c:c0:
05:7b:5d:d3:28:22:05:b4:83:5b:81:e9:d8:66:98:
eb:89:df:e5:33:fb:9b:b4:42:3f:fe:07:f4:7f:a7:
f2:72:c4:3b:b4:fc:04:11:29:00:12:b3:f0:55:79:
09:68:23:be:da:3e:84:fe:3e:a2:60:a4:e4:b1:5c:
8f:f1:df:e8:43:8c:f7:5d:28:78:d7:a3:8c:e6:46:
b3:21:05:ea:18:c5:19:59:84:95:e6:62:74:98:18:
e1:a6:46:e1:6c:03:1e:6f:51:e6:75:2d:dd:7e:55:
7a:26:1b:3b:27:0b:1c:7c:f9:f0:01:af:74:6f:7d:
15:8a:c7:5e:c1:3a:a3:54:ee:23:7d:a4:90:81:d1:
35:4b:be:9c:2c:f4:19:05:dc:8d:05:32:1d:d3:d1:
3a:33:48:8d:ef:04:d5:43:77:d0:64:c5:6d:ec:af:
c2:9f:a4:ce:3b:eb:bc:84:b2:a4:8b:44:ae:6e:12:
16:e1:e8:23:9f:4f:04:04:50:26:9e:9a:c4:83:94:
93:f3:b9:20:7d:99:ce:8b:7c:d1:ad:e6:f2:68:95:
3b:2e:74:d9:e7:ca:b5:b4:74:3a:46:17:b5:71:e2:
6e:7c:c6:d2:fd:ec:49:13:1c:ca:75:2a:44:72:cc:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F7:F0:6E:6C:FA:43:0A:B3:C8:D4:CC:68:73:F5:57:DE:37:F4:5F
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/K_fwbmz6QwqzyNTMaHP1V9439F8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.101.0/24
Signature Algorithm: sha256WithRSAEncryption
30:5b:e1:0c:89:5c:94:63:a4:2d:84:2e:0a:9e:d1:dd:00:19:
8d:fc:88:c7:a9:2b:26:97:8f:8d:05:fa:b9:96:f9:db:86:27:
a4:a7:3b:eb:af:0f:59:f3:58:43:00:59:ce:17:3c:d1:4a:05:
36:4d:16:36:03:9c:33:43:ad:75:6d:0d:fa:86:14:db:d2:0c:
70:f2:a9:7a:b5:a2:cb:13:ee:5f:84:02:24:17:92:8f:91:2a:
3d:ee:cb:e2:4b:d0:dd:ab:16:2a:20:c3:15:f7:01:ba:14:21:
87:82:73:49:d6:f5:a9:02:c8:c7:9f:19:8c:1e:c5:75:70:3b:
ed:fb:d7:ff:4d:3e:5a:0b:4a:4b:65:e6:e7:a5:95:3c:a1:ba:
85:b3:4a:94:a7:59:7f:d5:48:7a:3d:cd:13:d3:7b:a5:f2:06:
b3:3d:e7:56:92:3f:d4:ba:e0:80:0a:bb:ad:d3:fb:c3:68:d9:
8e:19:cb:41:16:e7:53:af:4f:e6:92:ed:28:5e:f2:c6:f6:fc:
bc:18:07:64:79:e1:aa:f7:7e:87:c2:a2:40:20:ec:6d:05:9f:
d8:0c:ab:fb:e3:ac:8d:56:ee:7b:e0:f8:eb:0e:1a:6f:ea:5f:
50:c2:e8:e3:d6:fa:91:62:ad:c2:c6:95:01:30:97:d7:af:88:
30:1a:af:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:37 2025 by rpki-client