Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/KdCCZtj4HPMloeVeS7-1X4BlSh8.roa
File: KdCCZtj4HPMloeVeS7-1X4BlSh8.roa (raw, json)
Hash identifier: TEmjUqFQnz6jAsYWObpZnZM7GGgAMCBg1drEvKNm03g=
Subject key identifier: 29:D0:82:66:D8:F8:1C:F3:25:A1:E5:5E:4B:BF:B5:5F:80:65:4A:1F
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 0C5B
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/KdCCZtj4HPMloeVeS7-1X4BlSh8.roa
Signing time: Mon 26 Aug 2024 05:23:57 +0000
ROA not before: Mon 26 Aug 2024 05:23:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131593
IP address blocks: 43.251.60.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3163 (0xc5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Aug 26 05:23:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=29D08266D8F81CF325A1E55E4BBFB55F80654A1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ca:7b:fa:d7:55:76:e6:b9:ef:ad:7a:a4:71:
3b:3c:9f:ed:e8:4d:ed:bb:c2:ab:27:47:0b:bd:48:
a3:ce:55:64:a3:d2:f7:af:a4:ab:90:1a:12:51:73:
56:39:bf:ac:10:3d:7e:17:5f:dc:db:90:9d:a1:ac:
67:09:99:67:20:cb:a9:28:3c:2c:d4:8b:2d:54:d1:
67:07:aa:b7:d6:9b:dd:ee:01:cb:ab:71:50:e1:3f:
47:f1:9d:d5:32:48:38:f6:31:4d:ca:ee:2d:55:78:
22:e9:3d:a7:53:f0:71:38:98:78:61:a3:6b:ee:c3:
63:bb:df:89:b0:4e:c2:15:9f:e2:ad:84:f7:cc:06:
77:85:a5:bc:ee:24:5f:d4:39:8e:0e:e2:ec:08:72:
5c:25:6d:f8:24:d1:98:95:e6:6b:37:eb:29:89:ce:
a8:a9:25:05:a1:82:1a:1b:aa:c0:72:44:38:82:5e:
f5:bd:f3:fc:3b:d1:af:40:ce:c3:69:63:6e:25:92:
ce:b7:ce:e2:28:9a:d0:3b:d3:cb:43:65:03:6d:55:
17:e3:dd:4e:96:fe:7e:87:da:58:a6:5c:e3:79:64:
43:01:60:ac:94:04:74:b6:a1:04:af:8c:82:76:2b:
b6:2a:c4:c0:e9:41:36:a4:e6:cc:8a:a7:b3:b2:eb:
5b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D0:82:66:D8:F8:1C:F3:25:A1:E5:5E:4B:BF:B5:5F:80:65:4A:1F
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/KdCCZtj4HPMloeVeS7-1X4BlSh8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.60.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:bd:df:76:55:66:1d:5d:2d:13:ed:2f:94:8e:90:eb:7b:48:
44:77:f5:2c:9e:79:f8:88:de:8a:2a:cc:5f:10:49:7c:52:fc:
04:91:48:94:02:37:9c:81:98:a6:cf:53:35:dd:bb:b4:41:61:
17:a7:eb:6f:f7:ca:1d:51:08:a2:55:9d:48:8c:4f:55:81:ca:
6a:76:ad:be:5b:24:08:2e:7e:c6:ca:0d:92:fc:3b:97:86:3f:
85:7a:58:d4:7d:19:22:61:c8:b6:6c:52:e4:4d:ce:6c:7c:c4:
ed:71:f8:06:70:77:8b:52:6e:fd:e4:76:23:d0:fa:bc:37:63:
84:50:1d:f1:97:f5:6d:27:4f:f7:c4:9d:22:95:ac:5f:ff:e0:
12:bf:ed:b5:be:39:f1:32:5c:47:ab:0f:fb:a3:35:53:40:5a:
86:5c:5b:26:b2:a9:53:69:ed:e1:30:b7:2c:52:8d:50:85:35:
bb:53:f7:ef:23:19:73:f5:ab:ce:80:8d:45:81:dc:5a:8f:58:
68:37:47:75:22:75:9c:7d:5b:3f:e4:fc:1a:0d:79:1d:bf:42:
55:5d:fa:fd:a8:89:94:6f:13:88:97:e8:e1:30:7c:dc:8f:ef:
ba:8c:fe:7c:3e:b5:bc:af:43:7f:59:a5:60:25:b9:02:ad:b4:
b0:e5:76:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:36 2025 by rpki-client