Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/_-ks1_CjSD2ut-BJQlL3FLAN52A.roa
File: _-ks1_CjSD2ut-BJQlL3FLAN52A.roa (raw, json)
Hash identifier: +Fie95mB6BgpII5ZzW4KVE04R7aUpAilJ0NmU9aVOYg=
Subject key identifier: FF:E9:2C:D7:F0:A3:48:3D:AE:B7:E0:49:42:52:F7:14:B0:0D:E7:60
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A8A
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/_-ks1_CjSD2ut-BJQlL3FLAN52A.roa
Signing time: Tue 20 Sep 2022 05:54:08 +0000
ROA not before: Tue 20 Sep 2022 05:54:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2698 (0xa8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 20 05:54:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FFE92CD7F0A3483DAEB7E0494252F714B00DE760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:aa:75:0f:d4:9b:e9:0a:23:dc:21:71:cd:30:
24:e5:29:f5:68:09:16:81:70:b7:aa:44:ad:28:15:
2e:b5:ea:89:b3:d1:ce:14:ca:71:c0:11:f4:bc:01:
ba:0d:91:ee:bf:05:e4:dd:e9:29:25:89:9b:a3:e6:
d3:42:b0:84:a4:25:ae:44:5b:de:58:94:48:0e:d0:
07:a2:66:37:d9:f3:dc:ae:a2:ce:53:c8:ee:12:cd:
56:5a:b4:6e:99:0f:42:89:c4:b6:0b:e8:0c:79:fe:
32:71:9c:db:f9:c9:cf:cb:8b:a5:c7:9a:e8:8c:13:
be:62:75:e7:d1:4e:1c:05:d1:34:f3:f5:26:7a:8e:
2f:7b:36:ba:73:34:7e:d6:78:1f:d6:02:0a:dd:1f:
c8:46:98:9f:e5:27:23:29:e2:56:31:2f:3d:8d:c8:
0d:be:6a:42:0c:51:35:e2:e7:cf:01:69:ca:a4:3e:
36:e7:f8:c5:78:de:58:82:d6:ef:05:87:8b:b4:ea:
26:07:05:a5:15:bf:a4:f9:f7:dd:7d:de:38:6d:21:
16:58:9b:66:56:fb:a7:56:66:0b:33:5e:68:c9:9e:
80:69:bd:94:1c:33:e2:00:1f:01:0b:d0:4e:b3:7d:
e3:d8:19:e9:e0:3c:e8:79:6c:92:5c:fb:ca:1a:a5:
57:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E9:2C:D7:F0:A3:48:3D:AE:B7:E0:49:42:52:F7:14:B0:0D:E7:60
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/_-ks1_CjSD2ut-BJQlL3FLAN52A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.128.0/19
Signature Algorithm: sha256WithRSAEncryption
50:bb:91:3b:2c:c5:41:af:f7:61:f4:99:a6:2d:22:26:b8:6c:
5d:bd:68:4e:78:8d:81:9b:3c:01:df:15:62:b0:10:d5:93:41:
79:05:42:61:14:53:fb:0d:07:8d:ca:d4:51:20:4e:d5:64:b9:
47:d5:9e:fb:ad:39:76:13:6c:3d:01:9d:5c:69:ba:88:06:af:
de:53:a0:35:35:5c:93:45:83:41:77:6a:e8:ce:22:34:40:dc:
62:74:5f:79:59:cf:41:99:98:be:b6:5a:80:d9:9b:ec:8f:ca:
3a:7c:e5:99:ed:bc:eb:f2:7f:85:a8:77:20:37:8e:16:78:e3:
c4:28:01:89:a5:3b:43:05:31:ad:06:7a:bf:74:81:9f:d9:34:
34:27:93:5a:2b:e6:f7:69:fa:3e:95:03:53:d8:c7:a4:3e:c2:
4d:40:9e:4f:07:9e:cd:57:06:92:f1:5e:09:39:5f:f0:e5:99:
32:97:09:c0:07:6a:27:04:19:86:93:bf:81:68:da:ec:97:c4:
95:5e:e6:2a:ee:7b:6b:57:e8:63:14:09:29:bd:f7:75:af:92:
ba:b7:8a:50:2f:e5:b0:93:4e:96:99:3f:ff:1b:f9:8e:18:ce:
6e:ab:f9:0b:b0:a8:8e:f2:b4:f6:4a:2f:a4:c2:17:28:d1:fc:
26:21:75:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:55 2025 by rpki-client