Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/fgmZgfdY_Vo-6wdTcgw_b2oYZrA.roa
File: fgmZgfdY_Vo-6wdTcgw_b2oYZrA.roa (raw, json)
Hash identifier: pLRTM5WwtMyezgyDLxkExKXc+3bL5Mv5TqtsYYM55Mc=
Subject key identifier: 7E:09:99:81:F7:58:FD:5A:3E:EB:07:53:72:0C:3F:6F:6A:18:66:B0
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09E0
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/fgmZgfdY_Vo-6wdTcgw_b2oYZrA.roa
Signing time: Sun 07 Feb 2021 12:39:20 +0000
ROA not before: Sun 07 Feb 2021 12:39:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 163.32.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2528 (0x9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7E099981F758FD5A3EEB0753720C3F6F6A1866B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:56:3b:7f:1e:94:12:46:e7:44:ce:ed:ac:69:
16:8a:f5:e7:b5:ab:63:b3:16:af:cd:11:a4:91:86:
a0:a0:59:9d:6e:4c:00:f3:18:41:ee:da:8f:58:ac:
7c:d3:88:7a:17:75:75:64:3c:1b:16:10:6d:42:ad:
f9:20:0d:72:10:04:d4:aa:a7:23:65:c9:03:18:2d:
4f:ec:ec:36:f1:2e:74:eb:bb:41:66:90:04:3e:a6:
14:58:05:e4:6b:91:87:f4:6e:d2:9d:3a:2f:61:90:
4f:11:34:d2:81:94:8b:90:12:73:59:df:cb:3c:80:
b2:22:fb:7e:0e:66:96:37:c9:94:67:8a:77:f0:ff:
dd:bb:4a:45:95:c5:c4:6a:5a:02:c0:da:40:51:45:
a0:8b:e9:b1:0f:2c:20:06:0c:18:16:91:9e:b6:81:
4f:84:6a:a3:38:1a:47:ef:03:dc:a4:1e:99:40:b1:
0e:fe:bc:c7:b9:85:72:c1:26:2f:fc:36:4b:05:8a:
2a:67:66:03:d0:48:ed:fe:50:4f:3c:f5:d3:3b:dc:
81:09:7e:ae:e1:20:db:75:42:2a:80:eb:3a:ed:62:
17:02:ca:8d:9e:22:3b:24:88:9b:65:34:e4:a2:89:
5a:e3:31:06:77:b0:c1:be:00:09:42:23:39:28:32:
3d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:09:99:81:F7:58:FD:5A:3E:EB:07:53:72:0C:3F:6F:6A:18:66:B0
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/fgmZgfdY_Vo-6wdTcgw_b2oYZrA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.136.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:8a:af:d8:c2:25:df:20:83:7c:60:11:31:00:e7:68:11:f5:
ab:a8:80:37:cb:73:f2:67:0b:ec:f4:0e:4c:a3:98:96:92:87:
b1:7f:7d:87:e7:a9:d4:48:41:cb:94:c3:0d:cc:0c:fb:e3:e5:
09:58:da:08:f2:b8:20:af:82:78:c9:85:d5:0e:42:d8:d1:22:
c5:31:cc:5b:cd:ff:36:a3:01:79:d9:26:56:ff:5d:30:67:44:
b1:b0:b8:9a:c6:9b:79:fc:1c:26:33:02:39:1c:1a:f8:af:5c:
df:9a:81:ad:00:ed:df:47:bc:c8:1d:76:60:f3:c7:dd:bb:1e:
02:7c:5a:4f:5d:cc:f5:c0:55:e9:97:28:c1:96:56:ff:ac:14:
81:3d:6c:c8:25:c4:7a:81:b5:ea:27:f3:0f:24:0b:08:3c:3e:
e1:df:be:6f:46:f6:d3:13:a9:90:25:12:d1:3e:d1:de:12:4f:
54:ed:e5:8e:ca:8c:7e:1f:7b:81:0a:68:89:54:f3:15:dc:30:
2a:48:2a:13:f8:e8:a4:67:8d:5a:a4:af:35:47:56:34:3e:de:
e9:6e:b2:ea:10:ae:bd:a0:89:ec:c3:c1:36:88:26:5a:88:46:
36:e0:ee:5d:99:93:fc:90:dc:11:03:7b:a6:bf:ac:d3:bc:ff:
0f:f5:78:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:06 2025 by rpki-client