Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/sNz0qlcVQHDRwSpgJGGItsFjuK4.roa
File: sNz0qlcVQHDRwSpgJGGItsFjuK4.roa (raw, json)
Hash identifier: YyStK7pshpN4AroqmoyYCj9po4LtfVxZ6vsKWVsXqpY=
Subject key identifier: B0:DC:F4:AA:57:15:40:70:D1:C1:2A:60:24:61:88:B6:C1:63:B8:AE
Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Certificate serial: 0893
Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/sNz0qlcVQHDRwSpgJGGItsFjuK4.roa
Signing time: Sun 07 Feb 2021 12:44:51 +0000
ROA not before: Sun 07 Feb 2021 12:44:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17710
IP address blocks: 61.57.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2195 (0x893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Validity
Not Before: Feb 7 12:44:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B0DCF4AA57154070D1C12A60246188B6C163B8AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a7:6b:3e:32:79:f5:c5:0e:3e:25:66:2d:73:
26:5a:28:a8:83:f5:3c:9c:a6:1d:18:2c:5f:d5:86:
dd:d0:c7:fe:60:d5:06:55:fa:e3:45:9f:7b:31:66:
e2:df:5f:be:70:45:9e:2f:29:d9:62:27:53:65:60:
4d:cc:c2:91:41:0f:b0:2a:06:72:8b:dc:f6:28:eb:
1e:d5:8b:33:ac:7d:14:36:af:01:56:e4:eb:92:cc:
d3:80:fe:a5:73:c5:2f:16:6e:58:64:f9:ec:da:bd:
23:0d:ed:c1:24:cf:1b:55:d0:17:9e:4c:85:c9:51:
ea:90:7b:aa:42:62:6e:00:42:98:91:c3:02:b5:b3:
0d:7d:25:ae:55:91:0f:50:27:b7:92:75:86:d0:d7:
5c:ba:d1:92:db:d5:1b:1a:48:55:f3:7b:f2:81:01:
5d:dc:40:e1:30:c6:a0:fe:d4:ba:5a:33:57:fb:83:
e7:e5:44:0b:75:0e:42:03:a9:96:69:3f:1c:2e:0a:
a3:6e:94:40:ec:36:4e:9f:59:73:df:bb:73:ca:29:
47:27:00:20:2f:7c:fe:a1:46:33:09:5e:5d:ea:25:
45:20:3b:fc:30:83:19:19:51:1a:2b:2f:f9:10:ec:
9a:f7:c1:16:96:cb:70:69:75:7f:b7:a1:3a:e7:ff:
f9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DC:F4:AA:57:15:40:70:D1:C1:2A:60:24:61:88:B6:C1:63:B8:AE
X509v3 Authority Key Identifier:
keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/sNz0qlcVQHDRwSpgJGGItsFjuK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.224.0/20
Signature Algorithm: sha256WithRSAEncryption
28:7d:f9:55:ee:19:7d:55:6e:e0:da:da:a4:bf:7a:15:ae:b0:
ca:7f:e6:db:d8:74:28:48:ce:13:5c:c6:c6:79:33:ca:74:2d:
c9:4f:c0:a9:49:7a:39:f1:2e:e7:d7:7d:b9:89:14:65:a6:04:
92:4e:96:fe:95:91:00:35:b1:20:38:38:63:f1:b1:57:f9:73:
36:72:67:bb:22:a8:06:4a:e4:69:59:d9:68:0a:c0:f3:36:c7:
1f:64:7f:da:c4:b3:d1:37:69:f3:75:f0:6e:c8:dd:2c:a5:95:
5b:bc:0c:eb:0d:64:e8:c1:99:3c:69:f6:d1:ab:22:d4:dd:35:
36:f2:54:b6:2b:8c:c2:83:58:9a:22:8d:4c:76:a8:88:35:cd:
37:93:bb:80:e1:37:52:07:99:e6:b5:9a:cc:eb:86:62:aa:48:
90:be:62:cd:e1:0b:9e:79:da:3f:28:0a:9c:5e:8c:a6:ce:39:
69:ec:7a:97:e4:0e:7a:e0:cf:63:1a:24:b3:e5:5e:9e:a6:35:
72:63:9a:19:23:17:ee:08:1e:b3:44:5d:5a:db:95:74:a6:21:
19:15:90:01:35:90:40:37:d7:c5:37:34:7e:de:6a:07:a0:77:
7c:af:b5:c5:b7:91:40:1d:2f:5a:3d:37:65:b4:74:b2:0f:5a:
11:27:8f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:57 2025 by rpki-client