Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/JxLGiK5hXQxfDIjaacbG-IXsV6c.roa
File: JxLGiK5hXQxfDIjaacbG-IXsV6c.roa (raw, json)
Hash identifier: bgsT7uTg5jxKUOyrSLaPmCXBmUt/Qr/Blc5OtzcnnNk=
Subject key identifier: 27:12:C6:88:AE:61:5D:0C:5F:0C:88:DA:69:C6:C6:F8:85:EC:57:A7
Certificate issuer: /CN=FB4739A5E61A639F566FDE0FDB41208BA3F69BF1
Certificate serial: 0B21
Authority key identifier: FB:47:39:A5:E6:1A:63:9F:56:6F:DE:0F:DB:41:20:8B:A3:F6:9B:F1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-0c5peYaY59Wb94P20Egi6P2m_E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/JxLGiK5hXQxfDIjaacbG-IXsV6c.roa
Signing time: Fri 01 Sep 2023 09:45:17 +0000
ROA not before: Fri 01 Sep 2023 09:45:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18045
IP address blocks: 211.76.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2849 (0xb21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB4739A5E61A639F566FDE0FDB41208BA3F69BF1
Validity
Not Before: Sep 1 09:45:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2712C688AE615D0C5F0C88DA69C6C6F885EC57A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:05:fe:8f:39:f2:3b:d7:8c:73:d6:10:ab:d7:
ac:34:33:66:b8:97:0e:d9:78:01:b9:b6:7a:b9:c8:
61:38:49:f5:30:a0:66:aa:c8:64:68:8a:92:8c:00:
87:34:3f:ff:e2:cf:87:9d:47:64:fa:8f:ac:3f:a2:
74:67:db:0e:19:02:a3:70:2f:90:a5:f9:7d:1a:cb:
e4:46:76:9d:b3:58:a0:d0:4e:d2:66:f5:9f:31:4b:
2e:80:0e:8a:8b:a0:ef:c1:fe:1c:ab:20:f6:70:a7:
c5:a0:d9:7a:2f:95:e9:b7:ad:83:68:57:13:ea:56:
45:ab:74:27:e6:62:76:4b:98:0f:9e:f0:7f:d7:2c:
d5:9e:73:5b:c4:b2:7a:1e:64:a3:a9:52:f0:2e:b7:
6b:a0:f3:82:ed:3f:35:ad:ba:2e:fb:96:2b:6e:66:
d4:48:6b:fc:58:11:f0:bf:66:aa:ae:13:6d:85:25:
fb:48:ae:a2:2a:94:cb:b1:c7:41:e3:e2:27:dc:4b:
15:4a:8b:64:9a:62:61:cf:fe:b5:17:0b:63:8b:a0:
5e:20:e5:c2:c0:6f:18:89:ad:95:cf:d6:94:2f:50:
f4:c8:fc:59:09:b1:44:99:bf:75:2d:eb:02:30:8b:
37:30:ac:80:36:5f:8f:bc:36:d1:64:68:20:c9:c8:
d2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:12:C6:88:AE:61:5D:0C:5F:0C:88:DA:69:C6:C6:F8:85:EC:57:A7
X509v3 Authority Key Identifier:
keyid:FB:47:39:A5:E6:1A:63:9F:56:6F:DE:0F:DB:41:20:8B:A3:F6:9B:F1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/-0c5peYaY59Wb94P20Egi6P2m_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-0c5peYaY59Wb94P20Egi6P2m_E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SINOPAC/JxLGiK5hXQxfDIjaacbG-IXsV6c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.144.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:8d:82:53:02:3e:3e:90:d4:6c:9c:6d:c6:26:93:d7:cf:18:
97:6d:91:7d:99:56:09:6b:ec:e3:f4:a3:a7:20:be:45:90:26:
a3:d6:22:2f:b6:b7:9f:c2:b8:19:88:1d:0f:f2:0f:53:ac:2c:
3f:1d:48:73:f8:96:72:8f:63:a6:d6:63:b9:cd:75:3c:54:d8:
bb:6a:32:66:9b:d8:41:20:2f:a2:0d:c8:97:94:1f:7e:43:9f:
c8:bd:3a:50:da:30:5e:81:01:e1:db:56:90:02:18:00:b7:d4:
ee:f4:af:7b:5c:bc:26:17:1f:9e:03:ce:15:78:01:91:d5:f5:
a7:52:23:12:13:3a:5e:b3:72:e0:73:45:a6:8d:41:16:b3:9c:
c2:6d:bc:b0:14:cd:98:60:f0:33:8e:66:94:d5:37:1f:6d:1c:
61:5a:24:67:10:63:fa:9e:45:20:d1:06:40:23:ad:c4:1f:37:
b1:b8:51:9d:bb:0f:2f:c3:b7:48:18:c0:1c:5d:d0:bd:ec:9d:
e0:95:11:45:46:76:be:c2:9a:1b:d3:5d:d5:36:b6:2d:37:2a:
47:d9:8e:9f:c5:8f:2c:49:d2:18:8d:d2:04:c5:79:88:7c:5b:
39:8d:e4:d9:bf:bd:99:4f:9d:32:da:ee:0f:1c:39:8e:60:8d:
20:e5:72:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:55 2025 by rpki-client