Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/xbJvSzYbB7okSMpPKvpWUqlONNQ.roa
File: xbJvSzYbB7okSMpPKvpWUqlONNQ.roa (raw, json)
Hash identifier: S70Jk2X+AlzmKzmDYXKuaHwDSu7jcVmVEAWUbdORJGQ=
Subject key identifier: C5:B2:6F:4B:36:1B:07:BA:24:48:CA:4F:2A:FA:56:52:A9:4E:34:D4
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 089B
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/xbJvSzYbB7okSMpPKvpWUqlONNQ.roa
Signing time: Sun 07 Feb 2021 13:02:35 +0000
ROA not before: Sun 07 Feb 2021 13:02:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2203 (0x89b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Feb 7 13:02:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C5B26F4B361B07BA2448CA4F2AFA5652A94E34D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f4:2a:82:ff:ac:5a:62:cd:f1:46:d9:bf:20:
b4:d9:52:cd:a2:2f:de:2c:42:ed:44:db:7a:3d:a6:
af:de:43:df:15:50:3a:ee:4c:2a:c1:9e:bf:c4:25:
20:06:ca:55:bf:c6:ba:c6:1d:a2:4b:32:07:0e:d5:
da:da:e7:8e:eb:8a:bd:86:65:98:7b:db:bc:72:8f:
4f:bd:13:ad:64:44:6f:43:5f:07:8c:cc:b6:4c:13:
a9:c2:1a:a1:89:54:11:47:4d:bb:d2:78:11:28:b7:
1a:5d:2e:70:86:39:64:f6:2d:11:5a:4c:84:9a:6f:
b4:7b:e6:c6:0a:0c:27:9c:86:ae:78:48:ee:c6:0a:
ee:d6:22:40:61:09:d7:a9:86:50:13:2e:d9:ad:70:
03:4a:c1:5c:81:03:18:2d:e1:b6:91:92:ff:a0:70:
2f:75:d1:e6:10:ad:20:97:30:e0:c4:cf:b6:9a:3f:
35:b9:be:40:92:30:66:f2:8a:cb:75:56:02:d3:33:
b5:5a:ef:0a:da:d6:3b:18:76:0a:57:cd:c3:b1:50:
28:9e:a0:d4:c0:6b:46:92:d0:fd:4b:9b:7b:c3:af:
db:c2:fe:1a:cc:7a:6d:f1:eb:bf:f1:6f:0f:9f:2f:
be:e3:4e:66:6a:ac:4e:d4:8f:a1:c9:a4:05:d1:a8:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B2:6F:4B:36:1B:07:BA:24:48:CA:4F:2A:FA:56:52:A9:4E:34:D4
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/xbJvSzYbB7okSMpPKvpWUqlONNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.101.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e8:e5:c7:74:e7:e1:4b:f4:2b:0b:a5:2d:c5:e2:df:6c:d0:
cd:e1:f3:8c:59:c6:b3:7a:8c:04:55:47:6b:2e:26:e0:ef:d4:
e9:28:75:44:aa:b8:4f:44:aa:9e:94:01:76:77:83:cc:70:ab:
3e:ca:d5:ed:96:cf:9a:11:3a:ba:62:cc:36:ee:34:fc:15:61:
19:7c:01:95:36:26:86:31:e6:a8:f0:30:1c:a4:51:23:3e:00:
c4:e5:1b:c3:65:5c:27:92:e7:13:99:d9:08:c4:07:d8:c2:73:
ff:ef:92:54:2a:aa:8b:e0:e1:09:c6:61:07:78:ec:9b:c8:51:
8d:76:2c:ae:60:d1:04:4d:86:04:58:15:6c:db:81:e9:e7:5a:
2f:2b:83:17:23:b6:8d:85:4a:12:c5:e3:bf:a6:11:29:54:d9:
b2:23:5a:2c:2b:3a:41:95:6b:13:ae:f1:7d:34:25:3b:6e:c1:
c4:16:d9:92:54:a4:39:f3:14:92:f0:e2:f2:f2:df:01:7c:76:
ae:9d:16:4c:39:47:1e:13:88:bc:cc:63:dc:6c:4c:59:88:d6:
5f:6b:4b:a7:44:93:04:c2:00:6d:67:d8:d8:a9:11:60:05:47:
5a:36:dc:b0:51:8b:ab:3a:f9:bb:bb:80:d0:ed:80:04:47:7b:
bc:04:f5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:54 2025 by rpki-client