Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa
File: zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa (raw, json)
Hash identifier: Vf7dnADeEhEEZdT7zDBPXcR/iUnAIPfjpiX+HQBxjXY=
Subject key identifier: CE:02:7A:AF:7C:25:9B:AB:E3:F4:43:F4:57:C3:FA:CD:FF:B9:DE:7E
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0BAD
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa
Signing time: Fri 01 Sep 2023 10:01:11 +0000
ROA not before: Fri 01 Sep 2023 10:01:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 49.213.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2989 (0xbad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 1 10:01:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CE027AAF7C259BABE3F443F457C3FACDFFB9DE7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:22:1b:b7:80:6e:67:a8:20:43:ee:68:fd:
ec:44:74:07:bc:fb:8c:45:00:55:c2:ac:80:48:4b:
d9:ff:4a:71:da:39:b1:df:0b:68:3b:28:7e:11:3a:
9f:a7:92:4c:a8:5c:e6:9f:5f:ac:cf:6f:e0:40:58:
32:4d:fd:ea:42:b7:aa:bd:34:11:53:09:24:60:06:
c0:86:fd:58:5b:88:13:fc:36:8e:c3:6b:40:f0:79:
cf:d3:3a:44:30:36:49:2b:c3:77:4f:b7:4a:82:e9:
0b:6a:f8:c4:f0:83:a7:1a:eb:10:b5:de:90:2a:2e:
33:79:cf:59:f9:3c:58:31:e2:47:07:18:c4:a0:c0:
af:f0:d7:15:31:87:9b:21:d6:c4:d3:3a:4c:19:da:
45:52:d2:52:c1:8a:db:6a:08:60:2b:a2:11:eb:c8:
64:23:10:ab:d3:01:25:13:31:be:a6:d6:77:4b:6f:
66:b4:6f:17:31:87:06:6a:ef:cc:67:80:93:52:60:
63:48:dd:dd:21:72:40:dc:74:23:58:96:fc:58:40:
77:6a:37:04:90:f1:19:bb:eb:04:c7:de:90:23:05:
f0:d8:a1:af:bb:7b:69:51:96:a4:bf:2a:ff:c3:bc:
36:72:9c:88:94:43:cb:bd:ba:15:8d:0a:56:ab:19:
f8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:02:7A:AF:7C:25:9B:AB:E3:F4:43:F4:57:C3:FA:CD:FF:B9:DE:7E
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.128.0/17
Signature Algorithm: sha256WithRSAEncryption
51:6e:3c:38:d5:e4:85:f4:98:19:e2:cf:48:03:35:82:85:d4:
1d:19:98:c4:56:f1:40:00:c3:3e:81:5b:93:c0:01:df:34:55:
7a:23:76:ff:26:6b:6d:64:21:83:1e:4f:95:6f:69:a1:d9:d2:
69:4d:34:01:57:ac:69:ee:73:1a:ba:36:1c:9b:a1:ea:e5:c9:
eb:d5:ee:44:8d:bb:95:37:12:43:e1:b8:01:fc:bd:34:59:dc:
13:09:68:11:20:d2:74:05:28:05:17:69:66:ee:01:a3:fa:00:
e5:a1:b6:bd:33:01:fb:d0:39:8f:87:a3:da:ca:de:cd:22:68:
42:62:95:12:cd:9a:6f:30:21:32:fe:16:45:c5:78:bf:d6:a0:
34:ef:9c:d7:80:d5:cc:a1:92:37:18:c3:f4:a2:b7:c5:57:b4:
35:7e:bf:9c:c2:dd:26:ec:be:84:cd:58:59:e3:8a:d6:fa:8b:
66:f9:59:2e:33:45:dd:75:bf:bf:82:d4:10:7f:2a:e9:89:16:
87:b2:31:87:d2:70:98:99:47:87:88:8f:04:f2:91:0a:3c:74:
a6:7e:da:3e:6d:bd:b9:37:13:2c:ed:cd:47:b8:29:f0:ad:00:
d3:15:93:e6:3b:e6:94:67:54:3d:ed:43:f0:3b:b6:9f:0b:58:
8d:b7:e3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:24 2025 by rpki-client