Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/10FAGNH1hHVZQgm_GmuSBzkiYhk.roa
File: 10FAGNH1hHVZQgm_GmuSBzkiYhk.roa (raw, json)
Hash identifier: 4qlNEUeiwBwg3WcBg46idxM//8FMiWdBMCZzPTcahgk=
Subject key identifier: D7:41:40:18:D1:F5:84:75:59:42:09:BF:1A:6B:92:07:39:22:62:19
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 09A2
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/10FAGNH1hHVZQgm_GmuSBzkiYhk.roa
Signing time: Thu 30 Sep 2021 13:44:06 +0000
ROA not before: Thu 30 Sep 2021 13:44:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 116.118.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2466 (0x9a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 30 13:44:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D7414018D1F58475594209BF1A6B920739226219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4b:2f:32:69:8d:6b:cc:51:2d:c1:5c:d6:a9:
8a:f4:8e:d9:ff:31:0d:29:a1:eb:39:96:e1:0f:2b:
f6:33:cd:e1:c8:4a:8a:4a:50:98:27:d1:59:55:6e:
7d:fd:26:03:96:77:44:c8:52:35:06:92:68:9f:2a:
2c:3d:2b:d7:dd:b2:5c:25:49:5e:00:33:b2:1a:24:
c6:93:6d:03:07:28:02:66:18:b7:c5:ab:7c:43:9b:
31:d5:bb:2f:b6:be:6a:d2:52:b0:1a:c1:f1:ad:dd:
ce:6a:d3:c3:bd:96:11:76:dd:a4:6c:f2:d8:cf:81:
44:ad:cb:75:3e:09:92:5f:55:9a:a5:fe:ff:8a:1a:
b6:cf:fb:68:a7:b6:c9:81:7d:18:89:f0:68:ac:e5:
e5:35:df:0a:db:03:f0:23:c8:d7:a3:d8:fe:da:b4:
f8:b9:29:50:90:aa:93:e1:be:8b:27:33:b5:ae:5c:
a6:54:26:0d:ba:8c:2c:89:5f:ea:40:67:1a:86:23:
03:1f:bd:06:74:7e:a1:f3:8b:28:04:78:cc:c6:2d:
a3:66:85:e9:05:b7:e6:66:20:f7:c6:95:a5:b2:cb:
62:77:ac:de:73:bc:77:9b:04:38:c8:82:f0:16:a6:
72:3c:15:e8:ff:64:8a:7a:ea:f4:96:31:11:04:16:
5e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:41:40:18:D1:F5:84:75:59:42:09:BF:1A:6B:92:07:39:22:62:19
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/10FAGNH1hHVZQgm_GmuSBzkiYhk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.118.128.0/18
Signature Algorithm: sha256WithRSAEncryption
4c:ca:d0:00:02:86:78:c8:d7:52:65:27:e6:19:ae:8f:16:3d:
a0:29:fd:e1:5d:05:e9:8a:a0:83:6c:a1:17:49:fc:a9:eb:7f:
93:30:27:80:8f:cb:a9:45:25:cb:0b:03:19:db:d9:2a:7e:58:
1e:dd:4b:d1:5e:f8:ef:5c:9f:c5:b4:df:2a:e6:58:02:09:1c:
be:f3:b1:31:41:5b:c7:45:c3:ae:94:f3:9d:3f:b9:0d:ad:2f:
36:22:7c:fe:28:b3:1b:72:ca:87:d3:ef:de:b8:f3:a8:06:d7:
62:b4:03:d0:ed:94:d4:fa:15:a3:1d:2b:f2:6a:1d:76:52:a5:
18:dc:79:17:6b:db:18:81:94:d0:88:a1:f9:3f:79:e3:2f:e0:
ea:82:a1:df:74:3d:84:54:5a:d5:82:02:e5:9f:43:95:1f:1d:
51:6c:7d:5b:b2:ba:d6:15:f7:b2:e6:23:9b:75:a6:5f:3c:3a:
8e:93:d0:8e:c6:3c:8b:16:5d:c9:2a:12:af:33:1a:84:fe:f9:
1a:81:7a:6f:8c:ee:58:08:59:69:2c:4a:8f:e6:a4:9f:18:f8:
f5:d9:18:5b:69:3a:f8:73:0b:82:d7:f4:cb:18:e3:56:e1:c3:
2d:cb:d9:a5:df:5f:cc:2e:43:19:fe:1b:08:32:18:f2:fa:82:
d6:96:ce:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:22 2025 by rpki-client