Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/VdGQZDBWE-3NpJlRn2181yfxECI.roa
File: VdGQZDBWE-3NpJlRn2181yfxECI.roa (raw, json)
Hash identifier: cML0UsU+/oJnTtHQSZzFrrwh5FLskLuo6ac0mleCBpw=
Subject key identifier: 55:D1:90:64:30:56:13:ED:CD:A4:99:51:9F:6D:7C:D7:27:F1:10:22
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0940
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/VdGQZDBWE-3NpJlRn2181yfxECI.roa
Signing time: Wed 29 Sep 2021 02:52:56 +0000
ROA not before: Wed 29 Sep 2021 02:52:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4781
IP address blocks: 210.63.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2368 (0x940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=55D19064305613EDCDA499519F6D7CD727F11022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c0:65:a9:4e:83:3e:a0:8a:e0:46:3b:f1:ff:
3c:31:08:0c:ba:8a:35:28:c5:c2:05:7a:77:66:2f:
71:a9:31:cf:e6:d1:49:6f:67:a8:73:53:e4:3e:35:
92:32:82:de:ac:ec:80:77:73:55:05:45:2c:0b:f3:
7b:50:ff:b4:69:38:28:a9:f5:76:22:bd:9c:4a:6c:
8e:c1:67:e2:cc:61:9b:49:03:c7:f4:47:fb:8f:9c:
24:06:57:02:15:9f:ee:fa:4a:ee:5c:e4:f1:40:47:
2a:7d:fb:a8:db:e3:15:6c:c2:2d:d9:d9:4f:fe:6f:
6a:dd:1f:5f:4d:88:9e:d2:2a:b7:af:2b:b4:e0:b7:
1e:49:1b:8d:63:95:f7:c7:37:dd:45:3c:60:23:26:
6e:31:9e:f3:2f:51:bd:60:63:99:04:5d:8e:cf:04:
ec:7f:16:ff:e8:15:ac:db:c6:ff:8e:0a:3f:94:77:
cc:59:4f:2c:3d:1a:7a:46:81:50:2c:4b:bd:80:94:
9a:f0:34:ed:57:55:0d:11:3a:ca:38:19:89:7c:6a:
87:99:d9:d0:4d:ee:b3:e2:c3:2a:20:3c:ea:10:53:
eb:ff:d9:d4:28:41:ed:12:5b:bf:df:5c:a7:72:ed:
43:75:14:e4:bd:de:e4:9a:57:bd:d5:27:09:9c:2e:
61:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D1:90:64:30:56:13:ED:CD:A4:99:51:9F:6D:7C:D7:27:F1:10:22
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/VdGQZDBWE-3NpJlRn2181yfxECI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.100.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:d7:8b:3e:2d:c7:8a:d1:2d:55:0a:48:06:e5:b5:15:d8:28:
da:a2:48:3a:1b:81:80:d9:68:ac:06:70:14:e9:2b:b5:c9:51:
f4:cb:6d:50:e1:cf:a3:5d:8a:80:7e:f9:51:66:db:61:6e:f5:
a4:43:7e:24:04:13:a5:9b:ea:d3:e3:4e:49:a8:20:3b:ba:42:
9d:48:32:42:ea:4e:67:c4:e0:fe:2c:0b:95:b3:ed:f7:14:df:
64:cf:7b:b9:33:46:87:9f:2d:fb:34:9f:54:b1:40:e5:48:4d:
ca:fa:ab:e5:87:56:fa:41:2e:6c:28:4c:ce:1b:d0:41:82:47:
76:c1:3a:79:7c:f2:f4:e8:11:e0:57:12:a3:94:48:5e:d7:06:
80:f6:8f:27:f2:6c:a2:c8:3d:ae:18:ae:38:eb:6f:9e:d6:79:
34:2e:0f:01:46:ad:16:12:10:0e:4d:8c:ad:98:44:bc:4d:e5:
50:a5:1b:b6:68:00:15:4e:5f:6c:68:6d:c0:b6:5d:6d:db:01:
a1:0a:c0:5a:dd:8a:21:63:da:9e:dc:24:b8:72:0a:b7:f9:f1:
e2:db:d2:19:06:6b:98:80:5e:e2:f5:4d:90:80:58:20:f9:35:
10:5f:19:2c:8c:d4:0e:61:97:a6:2f:95:8a:4c:f8:80:65:ae:
e6:66:eb:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:39 2025 by rpki-client