Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/JWOff-4sKBOuWdOI4fzubZkpT-M.roa
File: JWOff-4sKBOuWdOI4fzubZkpT-M.roa (raw, json)
Hash identifier: +nLUZlar2PlB+cEPPpGSCM97FKL5Ygu0y5wigV3md2A=
Subject key identifier: 25:63:9F:7F:EE:2C:28:13:AE:59:D3:88:E1:FC:EE:6D:99:29:4F:E3
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 08E1
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/JWOff-4sKBOuWdOI4fzubZkpT-M.roa
Signing time: Sun 07 Feb 2021 05:48:45 +0000
ROA not before: Sun 07 Feb 2021 05:48:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.67.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2273 (0x8e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 7 05:48:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=25639F7FEE2C2813AE59D388E1FCEE6D99294FE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:1f:20:e1:b6:38:c7:93:55:2d:03:4d:68:
34:a8:2e:11:d6:22:fd:19:ac:62:bc:c5:e8:90:40:
b5:35:a4:53:8d:a1:29:d1:bf:28:3f:18:89:93:5b:
19:e3:65:0d:a1:fc:90:b2:3b:02:07:8a:10:31:03:
0e:ef:6a:27:03:83:a0:5e:69:77:bf:19:8e:6c:d6:
23:f4:3f:95:f8:98:62:41:63:af:eb:b0:e5:df:2e:
02:6c:c0:01:b6:f8:9f:ed:29:b4:8c:ff:83:ac:59:
c8:9e:79:a6:cc:5f:17:05:03:31:ef:79:9e:b8:4a:
d1:63:69:f6:05:e2:df:6f:0b:67:50:d0:27:82:66:
2d:d6:12:b8:53:e4:9d:07:ee:0b:23:28:66:ad:e6:
18:9e:47:81:f2:99:54:5d:7e:9e:a7:51:0b:c3:82:
c2:81:50:38:92:f3:1b:ad:da:cc:22:e7:c8:3c:ae:
cd:dd:b7:6a:5b:a8:25:7c:2d:bf:ca:1f:08:c2:aa:
e4:fd:77:fb:13:8e:65:f4:be:74:67:51:35:41:b7:
5d:12:89:86:ec:c1:57:cc:07:fe:da:2e:b5:5a:ae:
f4:3e:89:00:15:5c:01:1b:28:03:3e:87:57:c5:2e:
3d:50:97:b5:38:06:25:63:ec:ab:71:8b:be:0b:c6:
23:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:63:9F:7F:EE:2C:28:13:AE:59:D3:88:E1:FC:EE:6D:99:29:4F:E3
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/JWOff-4sKBOuWdOI4fzubZkpT-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.32.0/20
Signature Algorithm: sha256WithRSAEncryption
1c:17:1f:3b:2a:6e:0c:cb:70:0a:7a:1b:50:a7:c2:80:a5:93:
b1:7d:be:e3:a0:21:78:0a:cb:e7:1d:ae:2e:78:7d:9e:e7:57:
b2:f2:06:c0:2e:20:bc:82:dc:54:12:8f:74:a0:49:41:bc:51:
8e:9e:cb:f7:2b:0e:63:1b:f4:2b:7d:c0:c8:95:0d:1b:b8:45:
60:86:61:b0:cf:e0:97:12:d0:df:a9:02:2a:0c:fa:d5:5a:c2:
46:66:94:8e:e2:9c:2c:0d:bd:7d:f6:47:3f:c4:e2:c4:cf:92:
1c:4c:a4:ab:c7:e6:69:1d:c3:0f:bc:7c:25:b3:1c:d2:a5:1e:
f4:99:88:05:79:ec:b0:2c:0e:8e:f9:84:d6:e5:27:88:3a:02:
33:25:eb:f2:9e:72:f9:93:82:9c:c5:41:49:fa:c8:7c:a3:5b:
57:7e:88:a7:87:d8:fb:10:9b:a5:18:a4:83:61:35:c5:9e:6e:
46:5e:5c:05:9c:fa:4c:80:34:17:db:1d:89:a7:1b:09:b9:94:
3e:9a:17:97:a4:bc:9c:1e:ae:46:72:c3:e1:08:5c:1a:a9:e9:
02:35:d1:f9:aa:c9:99:29:7a:b7:f0:fd:87:17:84:d6:5b:60:
4e:19:7e:f1:89:45:3f:1a:a4:e3:f8:6c:ae:8b:0e:d2:77:66:
ac:9e:5a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:57 2025 by rpki-client