Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/74wj6yoZ1QGLVKM9iwkhP0XPeBI.roa
File: 74wj6yoZ1QGLVKM9iwkhP0XPeBI.roa (raw, json)
Hash identifier: KHKb0AqO7ONwNHBUjYFTG97wvHzm+i5FVL/aOKo1Gjg=
Subject key identifier: EF:8C:23:EB:2A:19:D5:01:8B:54:A3:3D:8B:09:21:3F:45:CF:78:12
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 37
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/74wj6yoZ1QGLVKM9iwkhP0XPeBI.roa
Signing time: Fri 01 Mar 2024 06:40:54 +0000
ROA not before: Fri 01 Mar 2024 06:40:54 +0000
ROA not after: Wed 25 Dec 2024 15:30:21 +0000
asID: 32595
IP address blocks: 2401:5f20:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Mar 1 06:40:54 2024 GMT
Not After : Dec 25 15:30:21 2024 GMT
Subject: CN=EF8C23EB2A19D5018B54A33D8B09213F45CF7812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:88:ac:82:f8:49:cc:cb:43:17:78:fe:05:e4:
3d:a5:e9:0a:62:78:cd:9f:25:92:87:99:dd:1b:ae:
57:1c:fd:e6:34:05:ab:38:7e:2c:7c:91:e2:74:a5:
9f:b9:27:90:3d:68:3d:8f:24:ed:19:d3:5b:55:4f:
07:e8:25:fb:aa:24:86:3d:5b:b6:92:4d:77:f9:90:
4c:8e:0a:a5:87:af:1b:27:78:4a:49:bc:49:90:69:
1a:0c:9f:43:07:41:84:95:3c:49:74:6d:bd:31:45:
70:52:b6:42:bf:33:8d:8a:08:8e:f3:00:46:f1:24:
10:1b:dd:fc:ed:d8:50:31:83:b8:cc:a4:a9:62:f0:
6e:60:5f:f5:30:ad:fa:eb:1e:17:82:7a:d5:96:f0:
9c:27:c1:73:e5:e5:da:96:73:4a:9f:a1:5f:c0:84:
91:23:5f:0d:7c:18:31:bc:1d:35:d1:7b:39:e6:7f:
a4:51:22:b1:90:58:a7:8a:f2:ed:8d:cf:7c:98:87:
1d:2b:86:c2:35:76:c5:26:b7:7e:56:81:72:29:15:
ec:6a:a4:9c:e0:ff:d0:87:fe:37:72:6b:0f:39:e3:
9d:49:c7:0a:a1:9b:58:6d:58:d1:a0:06:16:fc:c2:
d3:ce:c9:3a:57:bd:1c:62:c4:71:63:fd:8f:86:7c:
13:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8C:23:EB:2A:19:D5:01:8B:54:A3:3D:8B:09:21:3F:45:CF:78:12
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/74wj6yoZ1QGLVKM9iwkhP0XPeBI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5f20:1000::/36
Signature Algorithm: sha256WithRSAEncryption
c2:de:2f:87:6a:a7:93:47:35:bb:1c:1d:c3:75:ed:3f:b5:2f:
54:b9:b3:bb:2a:ad:72:3e:d6:ac:6d:f1:7d:10:f1:ee:bc:4c:
02:5c:79:da:6d:2d:a2:1c:e1:cf:95:2c:6f:40:45:1b:c8:d9:
89:58:2e:11:f3:2b:3e:04:07:8a:03:04:27:f8:75:75:f5:09:
a2:09:3a:db:19:92:66:97:68:cb:3c:85:cb:1e:5f:af:40:10:
23:c2:62:93:b8:48:5f:a6:34:0b:25:19:6f:7c:1d:06:bf:ed:
e9:20:23:1e:0c:fd:0d:d7:08:39:d9:7e:84:0b:45:32:4a:a5:
1b:77:d7:3d:9a:cc:1d:02:8e:22:a7:4c:b0:a7:cc:c3:93:75:
16:51:09:8b:28:88:8d:ce:63:68:4e:7a:63:ea:c3:5e:68:ea:
ac:6b:c3:f7:08:c0:b7:77:01:50:3d:60:2f:e5:c8:1e:1d:79:
51:58:8e:74:ea:53:8f:1d:65:54:be:25:02:d6:70:08:7e:17:
14:c3:b0:82:c7:9b:95:77:58:ad:f2:4b:90:92:a6:06:6c:a5:
db:af:15:3c:77:a0:a1:da:09:6d:7b:f0:f2:c0:aa:2d:3d:b9:
39:4d:5c:9f:4f:10:b4:4f:03:fc:a3:76:47:a3:1d:a1:92:d2:
8c:12:bd:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:58 2025 by rpki-client