Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/5WXvWT8sDOKif9x9n1Hip3wAFn0.roa
File: 5WXvWT8sDOKif9x9n1Hip3wAFn0.roa (raw, json)
Hash identifier: L6Z4r1sotqsfXknizqQyIHUzK81bMWh2gXdBnrNOZ1g=
Subject key identifier: E5:65:EF:59:3F:2C:0C:E2:A2:7F:DC:7D:9F:51:E2:A7:7C:00:16:7D
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08D3
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/5WXvWT8sDOKif9x9n1Hip3wAFn0.roa
Signing time: Sun 07 Feb 2021 05:45:58 +0000
ROA not before: Sun 07 Feb 2021 05:45:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 27.100.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2259 (0x8d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:45:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E565EF593F2C0CE2A27FDC7D9F51E2A77C00167D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:71:e5:fd:20:53:cb:01:bd:7f:29:8b:25:
fb:b0:05:91:23:0f:2f:23:1b:df:0b:10:f5:fa:b7:
76:91:8f:c7:6b:f3:8f:ac:39:d0:22:a0:b6:39:b6:
54:ed:e7:2f:e5:a1:14:a3:83:8b:99:d7:27:1c:a6:
5d:e6:ac:5a:93:1f:78:0f:10:b1:95:2e:e1:f6:8c:
00:e7:6e:73:db:08:a1:22:8e:d8:54:10:1e:2e:53:
2c:a7:64:5c:fc:ff:3c:8d:87:0b:8b:07:40:51:84:
eb:85:5f:48:0f:61:1d:f3:28:94:db:70:69:44:57:
7d:16:26:75:b9:9e:d0:1e:f1:e4:d1:5a:3e:37:72:
78:89:27:58:ac:d7:4d:25:16:86:ce:37:aa:9b:28:
1a:d3:3d:1b:89:39:8a:82:aa:fd:4f:89:33:83:96:
3b:49:a9:9c:c1:a2:df:76:21:84:5f:f4:fc:aa:53:
c9:b0:65:30:67:32:fd:42:6e:6c:a2:a9:df:c4:5b:
85:a7:e7:65:57:2b:44:65:14:4a:de:ba:aa:e3:e9:
d5:a9:7e:89:9e:62:a1:06:60:39:b3:b9:80:fe:87:
74:f2:0e:8b:28:37:be:da:b0:29:c5:91:05:2a:f7:
df:db:4f:a5:32:ce:7b:4f:2b:e7:bf:24:4a:a6:54:
23:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:65:EF:59:3F:2C:0C:E2:A2:7F:DC:7D:9F:51:E2:A7:7C:00:16:7D
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/5WXvWT8sDOKif9x9n1Hip3wAFn0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3c:98:3e:ef:20:5e:a1:8a:c7:ab:e2:17:38:e4:8d:65:73:e2:
4c:24:25:24:8e:6e:bd:2b:da:9f:45:38:b2:7c:6d:d2:56:83:
cb:60:72:c2:15:e7:1e:ef:5c:34:c3:41:24:0d:e0:49:b6:11:
0e:8d:5c:14:15:5a:1e:33:ef:35:af:53:19:7b:b0:c4:fb:d1:
16:49:64:ff:44:d6:e3:84:25:09:53:c6:e5:8e:1f:6c:32:dd:
4d:fa:31:0c:10:3f:d3:8d:01:5f:8c:ba:2f:f6:f2:c7:aa:fc:
cd:74:eb:d4:7c:64:11:db:3d:f6:56:e4:6b:c2:87:48:66:99:
ff:8c:41:03:f5:32:f9:68:60:5a:a6:32:65:09:58:b5:86:17:
28:71:c2:63:b3:bc:77:97:06:c0:8f:7e:1f:0d:04:67:b6:9d:
4f:7b:16:a3:7c:47:3e:5c:9c:15:e1:1d:c2:21:02:68:c3:10:
05:5e:71:51:02:e1:a4:f5:32:dd:b4:c0:45:f4:b6:8c:4d:d8:
67:bb:02:8f:5c:c1:93:5c:47:e2:41:59:7c:bd:9c:1a:91:48:
c2:1a:1e:ff:e4:d1:a0:33:26:9b:b2:06:04:02:6c:d5:c1:07:
2b:d9:70:3e:29:a7:d6:e8:a7:f5:16:74:8b:39:56:7a:68:e4:
24:1a:2c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:24 2025 by rpki-client