Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/V9fk3S4640z0DdtpnOTwjmGJ5cE.roa
File: V9fk3S4640z0DdtpnOTwjmGJ5cE.roa (raw, json)
Hash identifier: 9dm8OBgnwJPZrK66TqoO6RtpgNMD9czCIze1ZkVxAUg=
Subject key identifier: 57:D7:E4:DD:2E:3A:E3:4C:F4:0D:DB:69:9C:E4:F0:8E:61:89:E5:C1
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 08BA
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/V9fk3S4640z0DdtpnOTwjmGJ5cE.roa
Signing time: Sun 07 Feb 2021 12:48:18 +0000
ROA not before: Sun 07 Feb 2021 12:48:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131593
IP address blocks: 43.251.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2234 (0x8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Feb 7 12:48:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=57D7E4DD2E3AE34CF40DDB699CE4F08E6189E5C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:de:b1:43:87:9a:c5:33:7c:b6:d0:3c:97:e7:
8a:00:4f:38:95:30:4e:08:1a:23:be:26:de:e5:e6:
d8:69:5b:82:62:bc:66:cc:f1:a3:7a:95:f6:b6:c1:
14:5f:0f:62:13:31:ee:09:f2:cc:9f:ee:4e:c9:d8:
76:91:59:c0:ea:1d:35:42:b5:6b:16:2b:ca:2d:6e:
9e:97:d7:4e:7b:99:06:13:c7:62:c2:02:36:79:df:
f1:69:33:b7:fd:9e:03:9b:96:3f:7a:d2:fc:25:02:
3b:bc:8e:b7:67:47:1a:07:fa:2b:79:d1:2b:97:41:
cb:f9:b3:b6:92:39:50:75:e8:90:db:84:d2:05:2d:
16:f5:0c:60:2b:1f:ae:51:e2:24:83:bb:15:0f:0f:
5a:57:98:fd:72:9d:fe:ac:9e:04:0e:21:e2:04:e0:
f8:54:6d:44:10:f7:c6:77:37:97:2e:77:a9:f3:92:
f9:94:5f:2e:5d:ff:fa:89:17:8b:7a:53:e2:be:de:
b7:09:ad:84:13:68:1a:60:20:11:d7:91:2b:3c:59:
5c:1d:85:8e:ad:51:75:9f:db:6e:22:2f:cb:58:94:
66:d5:56:bb:73:8f:11:e0:ca:2c:d8:08:fd:8f:c4:
46:1c:f8:4a:d6:98:4a:91:3c:78:55:60:c3:b9:18:
b4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D7:E4:DD:2E:3A:E3:4C:F4:0D:DB:69:9C:E4:F0:8E:61:89:E5:C1
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/V9fk3S4640z0DdtpnOTwjmGJ5cE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.60.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:25:e9:2c:11:b0:9a:26:12:9d:c1:35:5b:ba:4c:1d:3c:79:
5f:49:65:5a:55:62:f6:64:04:de:43:72:0b:8f:06:8e:27:01:
0f:0a:c0:ef:07:92:60:17:c0:45:82:b7:bc:ee:e5:f9:79:4a:
0f:fb:a0:9b:7c:83:f3:99:46:f1:e0:bd:ea:e9:12:2b:c7:24:
2b:bb:ab:89:22:60:70:58:e1:cd:c6:de:cb:db:d7:0e:1a:c0:
0a:64:a4:d7:88:95:07:a5:9d:80:f3:5c:55:b8:fd:4e:86:9c:
13:79:62:b3:16:f9:59:0f:a5:71:79:6e:01:b6:89:0f:17:d9:
fa:fe:35:77:97:f1:be:ce:b1:8f:0d:b3:f9:df:8e:1a:75:82:
60:7c:82:97:ba:47:ad:ec:91:ef:68:71:c3:1d:6f:39:6c:61:
be:88:8b:49:dd:e7:73:a3:42:5e:4e:0c:84:07:cc:35:55:e3:
b4:42:97:14:a5:99:e9:02:25:8e:08:06:80:bf:b1:1a:57:90:
a8:a5:6b:fd:90:99:c2:45:a0:f8:fc:b0:33:13:1a:ef:1d:45:
a9:96:80:b9:56:51:ff:3f:df:a5:e2:4b:a5:41:78:55:c8:2d:
ff:f5:aa:fd:f4:a1:eb:dc:19:10:aa:01:29:01:96:26:88:22:
a6:fa:32:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:17 2025 by rpki-client