Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/D-xoIBpOYF2DVkpolkMZcY6XOuM.roa
File: D-xoIBpOYF2DVkpolkMZcY6XOuM.roa (raw, json)
Hash identifier: r/1r0kxPCXwSnS6c0ImxXiBDuKYXo9J+qgke+3dt5YE=
Subject key identifier: 0F:EC:68:20:1A:4E:60:5D:83:56:4A:68:96:43:19:71:8E:97:3A:E3
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0781
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/D-xoIBpOYF2DVkpolkMZcY6XOuM.roa
Signing time: Tue 29 Sep 2020 10:06:21 +0000
ROA not before: Tue 29 Sep 2020 10:06:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 111.125.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1921 (0x781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 10:06:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0FEC68201A4E605D83564A68964319718E973AE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d7:1f:50:52:63:fd:59:78:09:49:c5:bd:14:
74:6c:85:bb:f7:c6:37:ae:ad:5e:e2:f0:ce:b6:9b:
75:f5:7c:e4:72:10:d3:8d:61:37:6c:55:39:8e:c5:
ac:5c:c1:bf:ea:b5:9f:f6:01:93:2a:2b:9b:c2:63:
eb:38:b7:4c:7a:95:37:09:e7:16:2c:15:ae:fc:55:
22:b6:de:d8:53:08:48:a9:87:4c:a8:30:32:76:07:
7d:f2:ed:0f:4c:e3:ea:74:5c:39:f5:f5:d3:62:61:
87:a2:f9:41:7c:e3:4f:23:6c:2a:c5:38:f4:6f:bf:
93:68:0b:47:64:32:16:49:30:8a:1b:6c:e2:8c:7d:
32:7d:be:cf:00:1f:68:95:90:15:d1:4e:df:99:1f:
09:99:fd:09:54:65:3b:31:80:26:e4:b5:43:83:51:
03:42:03:46:68:80:a0:3f:24:ea:c6:c2:81:8e:f3:
eb:12:bc:d8:35:22:20:fa:7d:4e:fc:ab:1a:fd:3b:
0d:f9:36:f3:aa:ca:66:db:24:c0:5e:e7:a1:f9:44:
60:5c:bb:eb:05:37:07:dc:8b:8f:37:0e:ea:38:4a:
8a:cc:48:98:c1:be:89:6a:67:84:4f:cb:9c:3c:30:
84:a7:2e:7a:eb:02:27:74:8c:c0:db:40:e7:98:1c:
8a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:EC:68:20:1A:4E:60:5D:83:56:4A:68:96:43:19:71:8E:97:3A:E3
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/D-xoIBpOYF2DVkpolkMZcY6XOuM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.125.128.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:c0:ce:e5:0e:73:64:35:7b:e1:7c:63:a2:41:0a:1b:4f:d7:
9f:6c:82:78:8a:30:5a:f6:68:d3:7a:01:f0:be:4f:e8:97:35:
83:bd:21:17:d0:c5:4c:00:d3:07:75:26:e3:fa:56:82:32:d2:
e3:b5:5c:01:8e:d1:d5:ff:36:df:75:18:b6:b7:91:61:31:72:
d1:9f:80:bb:cb:3c:a5:54:b0:ca:7d:c9:73:b5:fe:1c:a6:d1:
1f:0e:94:3b:d4:15:2f:75:76:b9:85:9b:96:3c:b8:90:ac:c9:
cb:73:f4:67:24:cc:76:8f:3b:65:fe:45:f6:a7:79:ea:44:b6:
58:d7:c1:9d:1f:c0:e8:f5:49:d0:7f:1a:93:13:a8:c9:de:6a:
f0:81:2d:63:1e:99:a1:2f:72:95:ec:d2:f7:71:ea:4b:64:ea:
78:d3:a5:62:ad:5c:61:1b:f6:fb:98:ac:80:b0:83:50:27:9c:
ad:97:5b:8b:36:5d:fc:23:30:af:49:77:00:e3:a5:19:92:dd:
e2:7b:04:d6:65:d8:6c:54:41:a0:e6:ef:14:9c:dc:c0:a1:c6:
5f:1f:36:f4:7a:f1:85:7f:a7:b6:f8:84:4f:74:2c:ef:a1:88:
3f:54:52:6c:a0:09:ca:e6:c1:84:e2:39:72:b0:8d:f8:e4:1b:
c5:f3:58:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:12 2025 by rpki-client