Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/J83MhzxUjf2-apLti1Xj35kvVfM.roa
File: J83MhzxUjf2-apLti1Xj35kvVfM.roa (raw, json)
Hash identifier: vOnIz2ugjaxlEsFI3zuHjWWK9wH8ySVu8M8kGxFw9W4=
Subject key identifier: 27:CD:CC:87:3C:54:8D:FD:BE:6A:92:ED:8B:55:E3:DF:99:2F:55:F3
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0987
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/J83MhzxUjf2-apLti1Xj35kvVfM.roa
Signing time: Wed 29 Sep 2021 02:52:29 +0000
ROA not before: Wed 29 Sep 2021 02:52:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2439 (0x987)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=27CDCC873C548DFDBE6A92ED8B55E3DF992F55F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:10:99:f3:65:d6:ee:88:f9:27:79:1a:1d:
fa:4b:ef:91:1e:e6:4a:e9:93:b4:26:24:51:94:c3:
0d:50:88:38:19:ac:35:1e:02:b9:76:e1:ba:1d:e1:
bb:b9:fc:bd:a0:3a:3c:55:c1:43:d8:65:7c:f1:52:
b7:50:6b:2d:c4:7b:87:5e:b1:34:5b:0d:4d:68:fc:
37:ad:e8:cc:2a:cf:fe:a5:72:16:5e:8b:1d:bd:a3:
d8:0b:a9:ef:78:d0:70:63:bf:f5:dd:0f:28:ce:d8:
57:91:e7:30:b1:60:a6:1d:5c:ce:cc:47:65:cb:58:
13:49:be:c3:d6:52:6e:35:ff:c3:12:a9:69:a1:d6:
74:e8:fa:4e:16:5c:84:4d:7f:49:32:da:33:5f:54:
e5:25:eb:b0:95:62:21:fb:ab:6a:d1:ad:4c:b8:5c:
c9:ad:0c:1c:f5:15:bf:2f:af:99:d7:3e:7a:c2:2b:
14:9d:92:57:8d:e0:c4:61:7b:8a:54:23:96:30:24:
c9:f1:32:76:29:92:1b:82:ff:54:1d:a1:30:4e:53:
2e:d7:3f:16:07:46:21:5e:92:95:88:a9:b8:a9:1e:
70:78:ec:eb:01:05:d3:0b:31:89:47:77:f5:fc:1f:
a7:28:5b:fc:37:81:05:78:14:f2:db:1a:c5:9f:0d:
d1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CD:CC:87:3C:54:8D:FD:BE:6A:92:ED:8B:55:E3:DF:99:2F:55:F3
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/J83MhzxUjf2-apLti1Xj35kvVfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
c5:16:f5:c3:d4:17:56:c2:22:3d:c9:11:df:75:7a:35:f9:c3:
e6:7b:38:ac:26:f8:6b:af:da:dd:3b:c9:68:61:6b:95:df:94:
79:52:bb:51:10:09:90:3d:05:13:e3:90:75:04:59:f9:32:2d:
85:f2:c9:e1:02:25:84:0e:fc:70:8d:09:1f:23:87:22:18:0e:
f0:eb:fd:9f:bb:c8:0a:42:8d:3d:37:c9:55:3c:4e:51:c4:f6:
52:d8:26:48:27:74:05:1b:b4:c4:f3:d0:8b:12:22:df:70:39:
49:08:17:ee:dd:3a:31:f6:4a:25:c3:5d:49:91:65:a6:2b:2e:
80:c3:b0:c3:49:0d:62:91:9c:e7:cf:9e:49:9a:9d:09:5a:24:
6e:c8:90:78:2a:17:d2:15:6f:f9:fa:b2:87:d5:18:79:25:05:
b6:61:d8:37:e4:e2:45:d3:11:0b:9b:6f:c2:26:7d:f3:07:f6:
36:70:20:70:d5:f1:7e:e2:41:2e:9d:df:28:90:5e:c2:c2:49:
24:84:9b:4a:51:54:05:d5:c4:f1:99:b3:b2:8e:f4:d1:44:db:
95:78:dd:12:58:61:53:27:85:e5:5d:f0:b2:6d:4e:c1:48:5f:
f0:70:89:f3:1e:38:74:31:5d:d8:af:53:ff:ae:b5:f8:ba:d5:
58:f5:bd:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:33 2025 by rpki-client