Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/qsJsM6r-E3Munpk8cvQESxO5B-I.roa
File: qsJsM6r-E3Munpk8cvQESxO5B-I.roa (raw, json)
Hash identifier: kdAhZgqxpjPBOdUQU8Ox8EC0btcHFA1HhStLUgmN9Gs=
Subject key identifier: AA:C2:6C:33:AA:FE:13:73:2E:9E:99:3C:72:F4:04:4B:13:B9:07:E2
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0997
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/qsJsM6r-E3Munpk8cvQESxO5B-I.roa
Signing time: Wed 29 Sep 2021 02:53:18 +0000
ROA not before: Wed 29 Sep 2021 02:53:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 61.67.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2455 (0x997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AAC26C33AAFE13732E9E993C72F4044B13B907E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:94:01:2e:01:f4:8c:cc:67:3f:5d:50:98:ce:
80:70:9c:dd:be:92:b8:e8:59:9a:5f:38:c2:36:32:
ed:67:b0:ba:62:e2:57:fa:9a:ee:3a:eb:7c:4d:91:
7e:3b:31:dd:0c:2f:31:3a:f7:22:6f:12:5e:2f:53:
54:a0:d6:97:cc:84:f8:2d:86:00:90:12:28:91:a6:
ec:73:dc:9e:8d:68:61:2e:fa:ca:28:8d:c0:f9:88:
b9:ba:6f:4c:0f:6a:ea:ad:6b:95:3e:dd:b7:ce:6d:
17:97:0c:14:ea:3c:e9:23:fb:bd:ef:5e:1b:22:1a:
3e:2c:fe:40:35:cd:19:ce:09:e0:2b:7e:ad:0b:08:
1b:1d:0e:4f:21:e4:35:29:9d:55:c9:b1:5a:57:e8:
21:c2:75:8b:ec:8a:01:12:d1:33:6f:c4:d5:cc:42:
b8:31:40:65:80:23:5c:7a:09:f8:99:42:ca:1a:2c:
b5:10:0b:73:10:40:f1:7f:5a:e4:73:8c:8f:8b:86:
ab:13:2e:26:d0:ff:22:0b:5b:aa:9c:e4:e0:3c:b5:
e0:66:d6:9f:37:07:8e:3f:83:6c:20:c6:1d:45:b2:
2a:a9:f8:e5:c7:1c:7e:ff:ab:ed:7d:14:c5:bc:57:
2d:01:35:6c:aa:83:d5:70:e6:ac:47:9f:a5:35:2c:
1c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C2:6C:33:AA:FE:13:73:2E:9E:99:3C:72:F4:04:4B:13:B9:07:E2
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/qsJsM6r-E3Munpk8cvQESxO5B-I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.16.0/20
Signature Algorithm: sha256WithRSAEncryption
6c:f2:bf:07:fc:6a:a0:45:f6:4e:5a:69:0f:d3:b9:c8:da:e5:
11:62:99:64:ae:dd:85:33:1f:16:96:a3:22:11:67:b1:44:a3:
a9:77:d3:a0:50:c2:77:ad:1c:f4:09:5f:33:4f:3d:7c:26:be:
27:8c:4f:09:e5:52:a2:00:26:c2:6c:57:e1:be:72:39:24:fd:
ab:e3:13:50:09:b2:60:f5:ae:83:10:15:b4:11:5b:ac:d4:0f:
b3:86:ff:ba:58:42:b9:40:7c:68:75:36:e0:02:d7:bc:c3:2b:
93:2e:f5:b7:a7:78:a6:78:85:39:72:bf:2c:ba:6c:84:fa:08:
a5:2c:50:59:4c:c4:b2:26:b4:92:9f:81:ae:30:d4:bc:7c:51:
4e:e8:8d:5d:44:5f:bd:80:50:b6:d2:e2:5f:7f:57:7e:45:fd:
05:7a:b8:7f:22:1b:9f:5a:47:3d:7b:ce:61:1d:e2:21:47:09:
66:93:bb:51:69:9f:09:29:22:ac:aa:5d:3b:09:93:8a:1e:a8:
a8:80:0e:14:b9:53:ec:59:7c:6c:29:9f:0d:02:6f:ef:26:aa:
77:b5:b5:22:40:e5:23:1e:76:58:12:86:98:12:c6:18:93:d6:
94:e8:58:ee:7c:5f:90:64:45:55:8f:6d:a7:64:50:20:ba:75:
fe:d2:9c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:08 2025 by rpki-client