Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/bZ2CTbOi_AsRlbJdUfuW4Jzg1l0.roa
File: bZ2CTbOi_AsRlbJdUfuW4Jzg1l0.roa (raw, json)
Hash identifier: Cjt7al6uSCTX9SLN74kRDhCW4jOvOI+tgSVbI0mYS2M=
Subject key identifier: 6D:9D:82:4D:B3:A2:FC:0B:11:95:B2:5D:51:FB:96:E0:9C:E0:D6:5D
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C57
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/bZ2CTbOi_AsRlbJdUfuW4Jzg1l0.roa
Signing time: Mon 17 Jun 2024 08:51:09 +0000
ROA not before: Mon 17 Jun 2024 08:51:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3159 (0xc57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:51:09 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6D9D824DB3A2FC0B1195B25D51FB96E09CE0D65D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4c:01:55:05:6f:0d:35:bb:59:1b:b1:be:fb:
b9:db:dd:f4:ba:35:fd:6b:6b:04:ec:19:a4:f4:50:
c2:a8:ac:2d:fc:96:09:fd:38:01:5d:39:bb:ce:2d:
fe:0e:85:06:15:ce:e7:5e:9c:76:70:c6:b9:c5:e0:
23:02:0a:51:73:7f:36:79:8e:31:8d:e2:2f:b9:ad:
9b:5e:32:53:72:bc:73:0f:78:53:3e:62:6a:85:41:
0c:ca:3d:e8:e0:4d:4c:61:76:22:7a:d9:5d:08:11:
53:7a:0e:57:e8:f5:e6:2e:5f:6a:3a:27:25:04:5f:
fe:bc:6a:fe:3e:aa:e9:c0:a2:a0:d5:0e:12:ce:f9:
74:24:53:7b:6a:47:a9:1b:a7:a7:8e:fb:ce:8a:20:
9a:63:3c:2c:dc:f4:3a:d4:23:41:89:91:03:57:04:
e3:fb:58:b2:cc:5a:66:54:79:74:94:50:cc:f7:4d:
25:32:15:ca:30:3a:0d:f8:de:87:4d:6d:b6:ae:48:
57:f6:28:e7:e1:24:22:84:3a:ed:1c:6d:1f:c7:9f:
db:ec:6e:51:80:61:aa:f3:d2:a5:f9:8c:3b:84:ba:
ef:28:14:a5:11:79:50:43:38:06:05:91:2d:d9:5f:
34:0a:60:91:d5:6f:48:a7:ae:1f:33:ad:f4:bf:a5:
a7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9D:82:4D:B3:A2:FC:0B:11:95:B2:5D:51:FB:96:E0:9C:E0:D6:5D
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/bZ2CTbOi_AsRlbJdUfuW4Jzg1l0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
2f:1a:4f:af:1f:60:f2:e2:0e:b4:93:7d:41:7a:71:33:28:d8:
6c:b0:4e:2f:a0:9f:35:d3:d4:0c:55:a5:ef:a3:e4:d4:15:f9:
a7:ce:b8:3d:9d:f5:13:33:48:fb:01:b6:c4:cb:11:6c:8c:0b:
66:3a:0a:94:cf:c2:c3:14:3b:57:47:ac:a8:48:2a:54:b7:f1:
ef:76:5e:a5:2e:52:69:bc:9c:16:60:c2:07:32:2b:62:cd:2e:
bf:50:34:84:3b:4e:fe:1b:85:e0:76:55:72:b4:79:74:cf:f5:
a0:9d:ef:d4:87:cb:27:33:58:66:48:31:40:5b:2c:b3:43:75:
6f:38:a2:d6:c8:e2:8e:6b:5b:08:fa:c5:e1:58:8e:96:af:bf:
15:a2:de:94:c2:96:0b:f2:35:de:08:f6:b1:42:4d:85:4d:02:
c6:a7:67:3f:5a:35:35:95:fe:00:62:4f:5e:54:26:90:af:91:
54:96:cb:6b:bb:c4:49:d7:b9:fb:06:c2:f0:10:a7:7d:13:36:
ce:6e:f8:e9:0c:64:7a:5d:c5:94:38:96:49:90:8c:4d:1a:9f:
b2:86:49:cd:4a:5e:7a:ae:80:0c:25:a1:77:04:c6:0a:23:1b:
e7:49:3e:15:f9:50:7f:65:7e:f5:6b:a1:28:85:65:0b:7b:4e:
bb:f2:a4:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:09:42 2025 by rpki-client