Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/GUjahl3EG9-y8rWg01o6BrgrKdE.roa
File: GUjahl3EG9-y8rWg01o6BrgrKdE.roa (raw, json)
Hash identifier: 0U3hKfCdmEphhL/r2caKom+VhEqLsQy9MEXK+ppllfE=
Subject key identifier: 19:48:DA:86:5D:C4:1B:DF:B2:F2:B5:A0:D3:5A:3A:06:B8:2B:29:D1
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0C2F
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/GUjahl3EG9-y8rWg01o6BrgrKdE.roa
Signing time: Mon 03 Jun 2024 06:00:58 +0000
ROA not before: Mon 03 Jun 2024 06:00:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 39.1.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3119 (0xc2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Jun 3 06:00:58 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1948DA865DC41BDFB2F2B5A0D35A3A06B82B29D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:6b:c7:21:c5:c6:e4:5d:3d:cb:75:40:c4:
6b:28:d1:f2:00:c7:1d:de:1a:cd:c6:11:e5:f3:c3:
a0:d1:ab:6c:ec:e6:e2:46:d1:76:5f:b7:3c:41:7f:
2c:db:60:df:7a:78:c1:65:95:34:02:6e:8b:49:a5:
e1:ce:1a:ce:c2:60:9e:1f:ae:cc:62:e2:ff:13:fd:
44:db:0a:32:92:cc:6d:58:88:70:2d:ad:14:db:69:
8b:82:34:43:60:60:62:8a:0d:57:56:d4:8d:b9:e9:
b8:f2:40:fc:cb:7d:b1:e5:49:e5:c5:7b:2e:38:95:
c6:ea:7b:64:76:79:84:71:3d:1d:c6:05:b9:29:3b:
f8:cf:7a:0f:bb:1b:4f:d7:31:f3:c5:44:e7:36:49:
97:83:b8:39:cd:51:be:f7:1b:31:5d:89:c1:35:46:
b3:f2:0e:cb:2f:b4:42:86:8c:ca:b4:6f:e3:f9:06:
91:1f:c5:8b:c3:54:fb:9b:3c:c8:65:37:9d:05:45:
e7:07:f8:8b:26:05:fd:eb:34:26:b2:b6:f5:da:9c:
f9:fa:91:60:50:9c:1e:b7:28:ee:34:35:13:8a:0f:
3c:c4:03:a5:9b:94:61:40:77:90:97:1e:30:d8:fe:
72:74:17:25:39:48:19:48:40:d4:9d:29:c6:14:ce:
b7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:48:DA:86:5D:C4:1B:DF:B2:F2:B5:A0:D3:5A:3A:06:B8:2B:29:D1
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/GUjahl3EG9-y8rWg01o6BrgrKdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.1.44.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:5a:ec:41:10:7c:91:fc:7b:16:eb:b8:6d:cf:78:7f:0d:ad:
ca:ce:20:93:1c:ef:02:da:91:93:15:10:e6:b2:8c:e4:44:1a:
d6:7e:21:a8:ce:06:fc:7e:36:f7:98:eb:da:77:00:1a:43:e4:
cc:53:92:20:52:d0:aa:3b:f0:d7:4a:e2:61:f6:a6:72:af:4d:
7b:5f:fd:d7:b1:fe:04:23:50:cb:7a:72:41:2f:d5:e0:9c:92:
2b:c2:e4:ea:78:c9:53:8e:4e:32:e8:fb:51:03:c9:aa:92:60:
98:39:3e:a8:54:ed:a2:35:71:c0:44:d5:cf:64:00:3e:cb:ea:
79:c1:da:4a:a6:ff:f2:4b:12:8f:07:d4:ec:bc:30:ea:f0:a6:
d1:e6:8b:85:cf:c9:75:09:ad:40:35:e9:84:b2:ac:0e:11:9d:
5d:31:7b:0d:8f:2d:b2:a7:4e:53:02:f4:e3:98:f8:9f:38:c2:
e8:31:a4:61:7a:b9:5f:5c:e7:a5:73:db:79:42:19:0c:81:fa:
b6:c6:4a:72:9c:ca:c4:33:f4:aa:04:ce:ca:98:59:ac:f6:18:
50:52:be:2b:68:c9:9d:92:ba:20:ae:bd:c5:e6:b4:51:88:f0:
d1:91:99:4b:6b:9c:94:23:fc:54:86:95:03:5e:9a:db:48:f3:
c7:fb:0f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:48 2025 by rpki-client