Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/LOhHVvZTJpMJJHZydiN-bJ6M398.roa
File: LOhHVvZTJpMJJHZydiN-bJ6M398.roa (raw, json)
Hash identifier: A2X0OrS7U8Hz3CTZ4a0Hc5SoopMzS7MRhpETqQ6KkIE=
Subject key identifier: 2C:E8:47:56:F6:53:26:93:09:24:76:72:76:23:7E:6C:9E:8C:DF:DF
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/LOhHVvZTJpMJJHZydiN-bJ6M398.roa
Signing time: Thu 15 Sep 2022 02:50:35 +0000
ROA not before: Thu 15 Sep 2022 02:50:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4781
IP address blocks: 210.63.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2CE84756F65326930924767276237E6C9E8CDFDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:31:de:cc:25:a7:c4:12:74:be:1f:6f:9f:
c0:80:3a:72:75:90:ac:06:c5:52:98:8e:eb:16:78:
fe:e6:a4:18:70:e9:fb:8b:d0:8f:64:1c:fa:55:76:
1c:56:96:13:e8:df:26:0e:63:f0:b9:35:bc:fa:05:
b9:c8:ec:ff:11:30:17:7c:94:a1:3b:65:9a:81:7f:
63:fc:b8:06:60:df:da:e3:94:2d:57:e7:7e:4b:f9:
de:63:69:26:73:44:f6:3f:03:40:21:84:d2:d1:23:
75:94:5a:0a:69:9d:78:70:51:d0:4c:f0:55:68:fb:
d3:ce:8d:12:5e:ab:58:3c:fd:e0:13:e4:80:6f:c0:
73:0e:23:7e:21:a1:51:55:5a:bb:c1:c8:8c:02:3c:
5d:29:f0:b2:d5:fd:64:af:fa:f2:2d:28:e7:5c:22:
a3:54:fa:06:0f:79:02:5d:30:71:cf:a9:05:55:08:
79:fe:a3:0b:7e:bf:cf:61:29:dd:71:38:c6:71:8d:
63:a3:a9:05:b6:a6:24:9c:e5:dd:41:7c:92:b2:8e:
75:d0:36:d1:eb:ca:1e:77:dd:d7:6f:19:93:44:55:
aa:54:73:36:b5:a8:c9:20:4d:75:96:29:ba:c8:10:
ad:6a:de:d6:d2:90:8f:a9:c5:3f:0a:41:94:16:fb:
e9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E8:47:56:F6:53:26:93:09:24:76:72:76:23:7E:6C:9E:8C:DF:DF
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/LOhHVvZTJpMJJHZydiN-bJ6M398.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.96.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:71:4d:5c:c5:39:9c:1c:27:21:3e:ba:0d:d0:45:f6:5f:2b:
2e:6d:14:90:0c:a3:1b:2e:55:3a:00:ab:90:43:28:f3:bf:48:
bc:99:f4:37:98:ab:38:22:e4:66:dc:d0:e7:c0:d1:91:77:0b:
23:1e:5e:26:2c:af:27:2b:1b:71:b7:ed:5b:c3:98:99:5c:20:
2b:4c:0f:78:42:3f:d4:1c:66:ad:06:c0:59:bc:f3:92:c1:58:
f7:b3:39:10:2f:88:62:f6:06:47:3a:12:8b:b8:1c:ba:f1:92:
10:e3:cd:6b:7d:62:88:53:4e:7b:4c:da:65:81:ab:14:ec:b9:
3d:5e:06:f6:6f:9e:77:a6:b8:19:f4:d4:92:a9:4b:3b:61:69:
42:c5:f4:d5:eb:61:b1:55:a6:3f:99:91:82:4b:0c:52:25:a3:
06:32:b0:d1:06:3c:98:a0:94:96:dc:4e:f9:3f:62:b5:82:f2:
54:bf:c0:b5:fa:7a:51:f2:bc:5c:ee:ba:64:b6:b3:c7:3e:45:
14:c0:c8:eb:16:aa:01:2c:b7:79:14:dc:f0:a3:6f:6c:c7:cf:
33:29:bd:67:6b:37:0c:a3:56:22:15:2e:24:a3:c6:df:14:ae:
9c:f0:ac:e8:f9:c9:b1:48:9c:29:a9:30:36:b7:d9:e0:20:53:
0c:e6:9f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:45 2025 by rpki-client