Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/okrGeVX3HR5II_s8qYD7oI08JRY.roa
File: okrGeVX3HR5II_s8qYD7oI08JRY.roa (raw, json)
Hash identifier: yZKi+DFinlTWYrcBueKNgQ+sfJW/EsjM60gVZpdfaCQ=
Subject key identifier: A2:4A:C6:79:55:F7:1D:1E:48:23:FB:3C:A9:80:FB:A0:8D:3C:25:16
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 096D
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/okrGeVX3HR5II_s8qYD7oI08JRY.roa
Signing time: Wed 29 Sep 2021 02:42:13 +0000
ROA not before: Wed 29 Sep 2021 02:42:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 111.125.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2413 (0x96d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 02:42:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A24AC67955F71D1E4823FB3CA980FBA08D3C2516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:5d:6b:9b:31:63:2b:f0:7a:2a:77:33:a3:
f8:3c:1c:a1:03:c8:dd:ed:37:09:c4:be:12:da:d7:
ba:59:11:29:50:84:1a:8e:6e:22:3f:99:fb:1d:6a:
71:57:eb:d1:d4:7f:db:36:23:24:87:dc:9a:aa:82:
bb:d2:2c:47:25:f9:f3:06:d0:48:af:5c:37:84:18:
b0:d2:a5:41:9b:74:08:cb:25:d2:10:3b:b7:47:02:
bf:ae:0d:87:3f:a1:da:59:06:b7:a8:81:06:f8:35:
f7:c6:d5:d8:55:37:b2:8c:f1:84:4d:39:84:16:6c:
d7:e8:7d:54:45:90:5d:0c:a6:e6:ad:87:63:4e:50:
32:af:0e:98:dc:f8:6d:10:61:9a:a5:1b:ec:38:69:
d8:63:97:38:fc:11:4f:0a:5a:27:d6:5b:b2:d2:58:
d3:bb:79:2e:c1:0f:cb:ca:4a:d4:2c:f4:8e:52:50:
8c:c7:14:b0:e7:c8:41:7a:05:92:fb:7d:68:65:f2:
0c:61:c8:33:b4:5b:95:a0:7c:d5:52:13:f9:78:d6:
44:7b:d3:00:9e:18:7b:b5:ec:0b:b1:ca:17:6b:f4:
4d:84:8a:97:c6:87:2e:77:d5:61:47:00:ae:9b:b0:
76:69:1e:e5:1d:b0:ce:c8:d9:db:9e:a5:63:85:8f:
59:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4A:C6:79:55:F7:1D:1E:48:23:FB:3C:A9:80:FB:A0:8D:3C:25:16
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/okrGeVX3HR5II_s8qYD7oI08JRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.125.128.0/21
Signature Algorithm: sha256WithRSAEncryption
63:2f:ee:97:20:54:90:90:1b:11:be:b1:a4:b6:be:75:ca:2a:
43:f9:6b:5c:7a:74:17:a7:5f:98:5e:98:a9:25:6d:c2:57:f6:
68:b9:77:66:38:91:b5:c2:39:ae:76:50:1f:08:c3:e9:c4:d1:
d4:47:0f:b5:75:dd:19:42:30:48:2c:86:25:84:f6:03:14:70:
4c:32:a9:1d:c0:6a:b5:15:5d:25:09:c2:4c:f6:64:ef:60:32:
03:d9:c3:b3:b3:1e:e9:f2:06:8e:b6:d1:12:2d:ae:8a:13:6d:
05:e6:19:e0:db:62:33:6d:6b:20:fa:56:71:58:77:1e:4d:16:
3d:e3:b1:87:89:c8:8b:d7:2d:b0:06:df:47:31:14:85:af:d4:
75:6a:16:04:2e:d8:e1:58:f2:f7:8e:bd:a6:bc:dd:87:eb:6c:
91:5e:5a:da:3b:a5:b1:31:82:b8:e5:de:44:0a:71:d0:8f:52:
39:39:8f:74:ca:21:52:a1:ac:6b:52:6c:b9:23:b1:4a:3f:d1:
b7:1b:95:72:e9:9d:3f:5b:b0:f8:48:7d:84:cb:fd:eb:ab:87:
00:09:86:df:cf:6f:19:cc:4e:7c:2d:1e:6e:b4:e0:9a:b8:57:
f6:ac:49:de:19:ae:d0:11:2e:6e:18:d8:78:19:75:35:bb:9a:
af:f9:ca:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:43 2025 by rpki-client