Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/d9ZHTTsFovtDwd5tLFGbdRK1kfE.roa
File: d9ZHTTsFovtDwd5tLFGbdRK1kfE.roa (raw, json)
Hash identifier: bbfgxdauLmw+Cp0qEVAqCE76KDhujfVgEg9V2Pb3cCo=
Subject key identifier: 77:D6:47:4D:3B:05:A2:FB:43:C1:DE:6D:2C:51:9B:75:12:B5:91:F1
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D1E
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/d9ZHTTsFovtDwd5tLFGbdRK1kfE.roa
Signing time: Fri 01 Sep 2023 09:59:38 +0000
ROA not before: Fri 01 Sep 2023 09:59:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 163.14.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3358 (0xd1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=77D6474D3B05A2FB43C1DE6D2C519B7512B591F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c7:48:7d:1e:5b:f7:06:4e:d3:cd:d8:7f:16:
a8:0b:fd:5d:9d:fa:4e:35:88:ff:39:2d:76:1d:37:
0b:43:bc:f8:f7:45:ea:02:91:8f:6b:d5:5c:20:a1:
2e:0d:c0:03:3b:00:20:13:e0:e7:4f:e6:16:11:22:
a5:02:37:f5:dc:e0:f8:e5:d6:e1:3c:ff:39:77:4a:
e5:0f:3c:0f:7e:da:81:d4:c4:7e:b6:ee:86:b0:81:
0d:64:a7:e2:1a:f9:e6:95:c0:02:ae:af:3c:a9:78:
b4:f5:3b:8b:3a:ee:e5:35:49:3b:fe:53:fc:8f:1f:
35:a0:57:42:99:a9:4a:e9:54:8e:0d:f2:5a:7f:47:
5a:0d:d8:d0:32:32:54:a5:6a:88:62:75:1e:5c:c2:
eb:fd:59:48:6a:5d:b4:34:f1:ad:45:0f:7f:67:59:
a9:ea:de:64:4e:56:b8:dd:3c:1b:9b:fa:b8:24:21:
86:9e:51:c7:a7:96:44:64:7f:75:25:cc:19:65:a0:
9a:38:49:d2:ae:1c:70:5f:f4:62:44:51:cb:ab:c2:
48:10:43:a3:5c:21:53:d9:fa:69:9f:04:6d:02:69:
eb:89:8c:46:09:d1:8c:f2:0a:13:5a:60:e3:24:09:
07:74:0b:b1:b7:8d:ad:d9:b9:d2:86:bb:31:37:49:
a0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D6:47:4D:3B:05:A2:FB:43:C1:DE:6D:2C:51:9B:75:12:B5:91:F1
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/d9ZHTTsFovtDwd5tLFGbdRK1kfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.14.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b3:6a:fe:21:61:7c:a7:55:28:02:55:79:6e:97:35:11:11:60:
2f:ca:ce:7e:44:87:16:42:87:41:67:61:00:9f:b5:34:b1:bb:
76:f7:a7:8f:d0:eb:34:9d:fe:3c:2e:67:83:3b:2b:4d:0e:df:
42:7f:5e:d5:4c:97:85:2d:04:77:52:35:5a:7f:a1:f0:b7:59:
aa:0e:fc:48:34:2c:59:56:b3:c1:ed:59:96:20:3f:29:7c:62:
49:63:db:ff:c1:a1:0c:c7:59:b1:2d:35:d1:24:1c:c4:e1:58:
9a:d9:a3:9d:29:52:9e:54:3f:bd:93:c9:6d:98:b3:47:a9:a7:
fb:e0:88:11:27:b7:9e:93:cd:c6:cd:b6:65:18:7d:da:e7:03:
11:c3:9f:af:69:4c:b2:e0:ee:4a:51:a8:36:e8:12:6a:81:a4:
85:b0:51:16:29:fa:f8:69:0c:48:0e:82:7d:7b:4e:4c:3e:cd:
c2:01:4f:28:89:34:5e:79:5e:36:46:30:c4:35:2f:8f:8e:35:
7d:c8:7b:5f:43:bd:3a:16:b2:21:a1:4b:d7:bc:b9:cf:a4:2a:
55:89:ce:80:d8:72:fc:5f:fe:24:db:42:7e:54:d4:e1:30:f1:
9c:d5:10:86:ca:c6:99:9d:df:a4:df:ea:14:d4:8c:20:4c:33:
b2:11:51:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:24 2025 by rpki-client