Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/47ZS-Iy8TktIMmDoMrpA-T_5TeY.roa
File: 47ZS-Iy8TktIMmDoMrpA-T_5TeY.roa (raw, json)
Hash identifier: 0De5/xASThY/3mpBCkSgsf2ev+1dzHhFH8J49GI0F10=
Subject key identifier: E3:B6:52:F8:8C:BC:4E:4B:48:32:60:E8:32:BA:40:F9:3F:F9:4D:E6
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B83
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/47ZS-Iy8TktIMmDoMrpA-T_5TeY.roa
Signing time: Fri 01 Sep 2023 09:59:53 +0000
ROA not before: Fri 01 Sep 2023 09:59:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 61.58.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2947 (0xb83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E3B652F88CBC4E4B483260E832BA40F93FF94DE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8f:e2:1c:56:df:a9:46:25:d2:3c:8d:7f:b4:
0f:39:5f:be:ee:c7:40:67:f6:0f:7c:06:d8:5c:bb:
97:db:fc:e6:c7:46:da:79:58:8e:08:d0:fe:26:7e:
4e:28:1c:f8:5e:97:8d:ad:7f:e8:00:88:f8:43:9d:
a6:0f:17:c7:11:42:be:0e:e1:9e:ee:b6:eb:4a:8f:
07:2c:3d:b0:90:b7:78:be:88:27:55:bf:0a:1e:24:
90:58:2b:00:67:61:6a:89:1a:1a:ee:b1:66:9d:c5:
62:b8:42:c9:3c:f2:5e:6a:69:bc:1c:d2:97:80:f5:
58:a7:0d:02:03:ff:ce:0d:26:9f:41:64:cd:51:9b:
5b:a3:8f:54:ea:04:f4:2d:a9:32:27:c3:d6:9c:bc:
3f:18:31:95:aa:01:02:b6:40:20:6d:ad:ee:c2:67:
fd:7d:7f:89:84:74:a5:53:ff:57:0f:48:ae:b6:de:
fb:ce:21:f3:8d:7c:50:b7:f3:39:80:f0:5a:d7:3a:
a2:79:56:dd:7c:d6:af:43:83:2c:3b:3d:4b:b4:90:
09:1e:f8:2d:b9:17:d2:93:af:15:f6:a2:da:34:bc:
8d:4e:10:1b:5e:f6:b4:4f:61:91:53:a7:cd:1f:7a:
ea:9b:2c:38:05:51:e4:ab:79:d3:b2:0d:97:db:6b:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B6:52:F8:8C:BC:4E:4B:48:32:60:E8:32:BA:40:F9:3F:F9:4D:E6
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/47ZS-Iy8TktIMmDoMrpA-T_5TeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:bd:6b:9e:6f:de:fe:58:f6:03:c5:b2:95:29:96:7b:80:27:
1b:9b:1d:1b:ca:5e:40:df:26:50:38:9c:2c:7c:94:eb:8a:b6:
2b:4b:84:6b:47:97:50:72:26:1d:ac:c0:f1:09:23:10:22:01:
d5:60:da:a6:c0:a4:e3:0d:17:69:69:e9:d5:68:11:0d:52:0f:
e7:62:12:6a:a8:c7:13:f4:ff:3a:19:bc:9c:93:53:5a:c1:e6:
70:ef:d1:3a:94:0d:94:1a:9a:e9:4e:89:90:1d:a8:97:b7:66:
9d:89:9e:b2:b9:54:76:f4:b4:d0:03:58:cc:6a:04:e9:7b:a2:
77:12:68:fb:32:1c:8d:4f:ab:68:c7:49:cf:d6:f9:71:45:fa:
0f:5f:33:f8:58:1a:6c:46:89:64:a8:09:18:96:25:57:f3:85:
0a:c6:fe:da:c6:3e:9e:e8:1c:ac:61:c5:04:59:b4:54:2c:8b:
33:1a:45:98:57:78:58:47:cc:d5:2b:2b:5e:85:bc:ac:ba:bd:
96:c3:61:f4:0b:14:e3:ee:22:0f:84:1c:33:76:42:e0:c6:31:
e4:29:6b:30:69:75:e7:b9:d9:7e:2c:51:fc:83:e0:29:53:03:
ad:50:20:a1:dd:c6:d7:60:9d:36:67:0a:71:e8:4b:d7:95:93:
e5:6f:3d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:55 2025 by rpki-client