Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/a_-1p9yMs63ABvtnE7QoW-3LBUw.roa
File: a_-1p9yMs63ABvtnE7QoW-3LBUw.roa (raw, json)
Hash identifier: FbHW6nNI1uywVGa7wEQ5JJ8Oh4HZ8sNX0EBlRKqJCUY=
Subject key identifier: 6B:FF:B5:A7:DC:8C:B3:AD:C0:06:FB:67:13:B4:28:5B:ED:CB:05:4C
Certificate issuer: /CN=A61402819401D363CB1F9BFBD538875F41F211C3
Certificate serial: 0AEE
Authority key identifier: A6:14:02:81:94:01:D3:63:CB:1F:9B:FB:D5:38:87:5F:41:F2:11:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phQCgZQB02PLH5v71TiHX0HyEcM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/a_-1p9yMs63ABvtnE7QoW-3LBUw.roa
Signing time: Fri 01 Sep 2023 09:47:16 +0000
ROA not before: Fri 01 Sep 2023 09:47:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 56179
IP address blocks: 211.76.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2798 (0xaee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A61402819401D363CB1F9BFBD538875F41F211C3
Validity
Not Before: Sep 1 09:47:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6BFFB5A7DC8CB3ADC006FB6713B4285BEDCB054C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:59:7d:08:ad:44:45:f5:b5:79:1a:0e:77:bf:
3e:1a:e0:4e:c7:5e:68:73:f7:51:f2:f4:24:5e:e1:
35:ab:aa:84:fe:9d:5e:61:3e:ed:18:5a:c2:bc:a0:
73:6f:ca:5e:07:55:52:53:b2:51:9d:68:2f:de:b6:
8f:f0:a0:61:bb:8f:ba:49:8d:3e:77:30:ac:26:b2:
31:ae:18:6e:dd:59:05:e4:e3:43:cc:80:9a:4a:6c:
66:7d:97:5b:be:98:68:4b:e3:55:07:1c:3e:8d:e9:
bc:b4:22:2a:c1:49:2c:89:25:fe:5e:cd:1e:e1:3b:
e7:04:84:fa:30:e5:ef:51:4d:08:80:f0:18:51:da:
75:d5:20:af:19:5e:64:cc:d2:99:f8:4c:89:25:cd:
52:ca:b0:63:02:cc:d8:00:d5:f4:1c:33:59:55:1d:
a4:e6:6e:89:c4:40:61:2a:bc:84:ac:75:0c:c4:ce:
eb:a5:f7:0b:b7:ee:d4:9c:30:3d:88:b2:64:c0:32:
f5:7b:b2:ee:bb:f9:c6:d8:ac:aa:ee:f0:46:b5:47:
03:04:63:74:eb:56:1d:ab:17:8a:f5:48:7e:78:44:
7a:83:c3:b0:2f:78:70:90:9a:f1:16:d7:3b:48:9d:
f0:87:ae:33:8c:5e:aa:a0:79:f5:c9:d8:97:3d:18:
04:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FF:B5:A7:DC:8C:B3:AD:C0:06:FB:67:13:B4:28:5B:ED:CB:05:4C
X509v3 Authority Key Identifier:
keyid:A6:14:02:81:94:01:D3:63:CB:1F:9B:FB:D5:38:87:5F:41:F2:11:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/phQCgZQB02PLH5v71TiHX0HyEcM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phQCgZQB02PLH5v71TiHX0HyEcM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/a_-1p9yMs63ABvtnE7QoW-3LBUw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.128.0/20
Signature Algorithm: sha256WithRSAEncryption
c5:c3:f5:1d:7a:dc:38:82:ba:bb:85:e3:fd:f3:38:64:2f:8b:
3d:4f:e5:61:75:fe:98:26:5d:7c:fc:4f:d1:af:79:af:d8:c1:
5f:95:08:1f:78:17:d2:76:86:88:79:b7:56:b3:d5:d6:5d:a1:
8a:0a:5b:6f:9d:82:f3:3e:8f:e8:97:6b:a6:8c:cd:36:8a:8d:
82:32:4a:7d:78:00:d1:12:c3:a2:d7:69:06:3e:fa:6a:90:f6:
91:c4:a8:ff:01:df:11:f3:b3:26:f6:2b:29:1a:6f:a4:5f:7d:
2c:ca:1c:cb:26:a6:64:e9:44:ce:26:51:65:60:ec:b3:f9:4a:
f4:7d:57:85:f4:9e:fc:ae:4a:82:42:14:46:8e:f4:eb:06:f0:
35:f2:ef:5f:dd:23:9b:66:00:87:2a:49:05:d4:96:13:8e:4b:
a0:14:34:5f:d5:24:3a:16:b8:e2:d0:ec:9a:ed:89:9c:c6:3c:
2b:c6:97:db:92:21:71:2f:7f:82:7a:2f:9b:84:33:52:5e:62:
31:1b:f0:b1:ef:9b:df:8e:92:15:c0:89:d5:56:eb:e9:a4:f0:
68:f0:1d:a7:ef:8d:0d:bd:e3:28:22:11:cf:32:87:79:dc:ec:
e2:8c:3e:30:c8:92:be:6c:d0:aa:ad:ba:2f:1e:d7:b9:9b:c0:
ed:a1:03:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:19 2025 by rpki-client