Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/nfOD6Eaj7nyP8NipzwXsRj5JNmk.roa
File: nfOD6Eaj7nyP8NipzwXsRj5JNmk.roa (raw, json)
Hash identifier: c4wIAWhtUjeC9vhHROfz57uDJ5qa6pBNphllAU/gC2Y=
Subject key identifier: 9D:F3:83:E8:46:A3:EE:7C:8F:F0:D8:A9:CF:05:EC:46:3E:49:36:69
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/nfOD6Eaj7nyP8NipzwXsRj5JNmk.roa
Signing time: Thu 15 Sep 2022 02:42:04 +0000
ROA not before: Thu 15 Sep 2022 02:42:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 111.235.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667 (0xa6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 15 02:42:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9DF383E846A3EE7C8FF0D8A9CF05EC463E493669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:49:71:13:43:e8:bf:ad:ef:66:0b:1b:1a:5b:
b8:e5:63:bf:91:45:26:ac:a2:6a:ad:88:65:a8:6d:
46:d7:fb:ef:4d:25:fd:6e:9b:cc:53:b2:da:cb:69:
44:9b:85:0e:e7:44:67:68:cd:f9:b4:12:65:2c:f0:
65:cf:fa:35:4c:b9:6c:a1:6e:15:f8:be:20:e9:5f:
1c:c9:63:51:d0:9d:d4:4e:24:bc:23:8b:d8:99:aa:
1e:a3:53:7e:da:9b:1f:94:1c:fc:b5:00:a9:41:54:
ad:b1:a0:f0:b0:85:e9:2b:62:97:64:c8:d7:d6:f3:
6a:9f:97:e0:fc:ac:22:06:c5:50:68:3f:fd:d6:53:
ac:69:d1:36:e1:dd:8b:7f:ad:0b:62:01:f2:66:00:
21:86:dd:03:0f:18:6c:e0:7e:c4:11:bf:7f:87:c6:
8c:cf:7e:29:e2:98:c5:8f:42:71:fd:a5:ce:04:e0:
cc:e5:1a:b9:42:73:02:f6:e1:d8:94:14:0b:8d:47:
eb:f8:bd:af:2a:df:d1:81:3f:90:ad:b1:a8:56:0b:
e9:28:78:d7:ec:16:d5:1b:76:91:c7:44:39:84:b0:
5c:5c:95:40:01:71:2a:5b:ba:9d:b8:e0:d4:e0:c4:
4b:99:d5:22:55:d0:a3:65:3a:8b:01:35:03:0e:66:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F3:83:E8:46:A3:EE:7C:8F:F0:D8:A9:CF:05:EC:46:3E:49:36:69
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/nfOD6Eaj7nyP8NipzwXsRj5JNmk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.235.192.0/18
Signature Algorithm: sha256WithRSAEncryption
c8:c8:c5:09:97:d4:5d:d9:28:24:a1:e5:01:0a:03:29:8b:3f:
51:ee:90:4e:ba:4c:47:0f:89:c5:9e:c5:7d:ec:50:b3:18:f9:
4d:ec:c0:44:46:5e:40:e7:a7:fe:34:dd:1e:2c:04:d4:ec:55:
2a:86:99:5c:d7:6b:3d:92:38:f6:6a:13:3e:e4:03:73:d9:76:
52:0f:ed:e7:62:49:1b:d3:4f:ac:70:ce:35:03:b3:60:a8:d2:
bb:20:d6:72:30:6b:c7:e0:45:ea:2f:f1:0d:e4:ec:86:2e:92:
b2:60:5d:16:28:64:39:de:d7:b3:f3:88:e9:63:3f:d3:bb:1e:
0d:28:8a:d6:98:31:49:28:1a:ff:75:27:21:27:07:69:d1:27:
b7:a0:7e:c5:21:28:1e:d5:f3:22:60:79:2a:46:8d:6a:a6:6a:
36:3f:bf:9b:08:99:d5:b6:f6:ca:0c:ac:8f:5a:e3:16:4b:18:
81:fb:d2:45:c6:c1:14:f4:9d:57:d6:64:48:ec:a0:7e:47:5c:
32:77:3b:12:3d:a0:b5:dd:b0:2f:42:01:72:68:23:65:ae:61:
6a:d2:dd:2a:a6:5e:3c:8f:44:98:64:73:91:5c:e0:2c:4f:18:
98:1d:a3:7c:b8:03:07:fa:00:7c:62:6e:f3:45:05:e7:d6:bf:
02:24:b0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:31 2025 by rpki-client