Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/N1n_4XPV6lMLliNkfEAerqjMNLY.roa
File: N1n_4XPV6lMLliNkfEAerqjMNLY.roa (raw, json)
Hash identifier: rubZYLiTafG60+LaZPSy2dHV3CiVi0CduyAhOOrMgbk=
Subject key identifier: 37:59:FF:E1:73:D5:EA:53:0B:96:23:64:7C:40:1E:AE:A8:CC:34:B6
Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Certificate serial: 0931
Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/N1n_4XPV6lMLliNkfEAerqjMNLY.roa
Signing time: Wed 29 Sep 2021 02:53:01 +0000
ROA not before: Wed 29 Sep 2021 02:53:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17710
IP address blocks: 61.57.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2353 (0x931)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Validity
Not Before: Sep 29 02:53:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3759FFE173D5EA530B9623647C401EAEA8CC34B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:47:97:9e:73:55:72:52:7b:8a:92:89:4f:f8:
a0:b8:a3:21:d1:eb:34:eb:20:7b:59:e1:8c:4c:73:
4c:6a:80:42:6a:50:61:2e:18:67:f4:f9:a9:3f:34:
d5:5d:15:b2:fe:4a:5c:95:88:a2:f4:1e:cc:e2:39:
61:db:b0:9a:7e:c0:37:f9:82:58:40:fe:bf:d6:77:
9c:5a:80:be:47:de:ce:7b:c1:db:99:a8:a3:2a:a7:
06:9d:3f:2c:d8:91:d1:de:31:7b:bb:1d:89:76:49:
1c:20:bb:ae:e7:b8:2c:54:8c:ab:6b:02:22:6e:c0:
74:f4:1f:a0:a6:e9:3b:a0:46:24:b3:e3:69:d6:dd:
a0:a3:4a:70:45:fc:92:0d:bd:db:60:6f:b4:7c:2e:
30:9b:8f:30:79:43:0d:5e:4d:11:a3:5f:4f:77:c0:
8e:83:ee:40:3b:db:10:0d:8b:cc:72:65:b6:17:57:
e4:db:b0:aa:4b:02:05:fb:26:30:11:8f:04:ac:2d:
1d:b0:f5:70:e6:ce:fd:29:60:0b:a0:6e:64:57:f9:
2a:04:47:ae:d7:54:3a:7a:8e:6b:a3:b9:4a:5e:3c:
4f:97:b8:a2:8c:d9:de:d7:b2:12:d9:f7:4f:27:f9:
39:9f:f4:71:6d:fb:3d:c8:de:bc:78:16:fb:c7:c0:
2b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:59:FF:E1:73:D5:EA:53:0B:96:23:64:7C:40:1E:AE:A8:CC:34:B6
X509v3 Authority Key Identifier:
keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/N1n_4XPV6lMLliNkfEAerqjMNLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a9:f0:b4:d7:99:48:1a:b1:a1:e3:47:c5:22:35:9e:03:2a:3d:
bb:77:50:91:e5:e7:a8:c4:24:06:dc:2d:c4:4c:ed:69:9b:48:
88:f2:b5:45:2d:9e:e6:84:7e:f8:56:66:65:a8:26:b4:4e:0e:
e0:b8:d2:05:54:fb:95:91:4a:e9:4e:20:33:6b:2b:c5:09:19:
bf:70:5b:41:44:d0:25:2f:41:43:72:a3:3d:c0:46:b2:1d:56:
b3:3b:d7:9e:fc:e4:c2:17:b5:4b:67:70:94:3a:a3:2f:2b:7a:
c4:02:01:0d:3a:45:6d:37:af:ac:f8:9f:c3:d2:7a:b6:31:92:
1f:a3:9b:31:fa:a6:0b:56:54:3b:47:51:a1:b5:58:20:02:c3:
2f:fc:e0:33:42:7e:77:30:57:c8:6a:57:a5:c7:7e:15:1a:51:
3e:36:01:47:b6:46:70:4d:20:7b:d9:dd:41:bf:66:80:db:78:
a1:5c:a6:79:4c:d4:66:76:e4:e0:80:2a:65:95:e2:8e:20:55:
81:d9:4e:42:ea:ca:30:85:c5:9f:be:cd:b0:4d:0d:77:63:ca:
51:0a:4b:26:6d:7e:c0:ca:4e:15:55:8e:57:3e:ec:2b:4f:bb:
87:86:fb:d7:53:ff:8b:a0:91:f9:9c:1c:ad:3d:91:be:1b:e2:
69:e3:fa:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:20 2025 by rpki-client