Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/sl6kImiqlIcZyMdRh_tB1t0iadw.roa
File: sl6kImiqlIcZyMdRh_tB1t0iadw.roa (raw, json)
Hash identifier: Dv5/81eQInC7lY4zFpmRAb7mqbODqzxsnbKcok/6qxQ=
Subject key identifier: B2:5E:A4:22:68:AA:94:87:19:C8:C7:51:87:FB:41:D6:DD:22:69:DC
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: C5
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/sl6kImiqlIcZyMdRh_tB1t0iadw.roa
Signing time: Fri 05 Jul 2024 08:16:43 +0000
ROA not before: Fri 05 Jul 2024 08:16:43 +0000
ROA not after: Fri 04 Oct 2024 07:31:42 +0000
asID: 2914
IP address blocks: 202.160.88.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197 (0xc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Jul 5 08:16:43 2024 GMT
Not After : Oct 4 07:31:42 2024 GMT
Subject: CN=B25EA42268AA948719C8C75187FB41D6DD2269DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a2:0f:97:f4:6e:8c:bd:04:51:50:be:6c:66:
07:07:f4:22:5d:ad:0f:40:fc:5c:81:89:d4:9a:f9:
63:80:9d:5c:aa:a8:56:b0:fa:1e:6a:e1:05:41:c3:
75:3d:94:bd:b8:e4:3e:c8:5c:3c:eb:b8:de:38:79:
ed:bb:0c:6e:51:ec:59:e4:e8:26:eb:30:10:54:5b:
69:93:01:75:f3:3c:c5:44:54:f7:97:78:0b:0d:1e:
79:ba:bf:ed:c2:be:e1:77:4f:ca:32:f6:01:6c:3f:
18:3e:f8:7a:eb:6b:81:1e:4d:95:8b:3b:dc:1e:49:
88:67:52:82:90:73:33:ad:1a:a7:57:94:f0:0f:a2:
d3:d9:32:6e:a6:f1:1b:43:43:42:19:8a:f9:8c:25:
d7:9f:cc:7d:9c:1a:7a:d9:0b:da:11:44:29:cf:dd:
27:ec:89:4f:f7:43:89:be:7d:ce:b7:ad:fa:b7:4c:
67:34:67:3c:5f:d1:99:aa:df:b6:c1:b6:3f:c2:ee:
17:d7:c2:7c:94:46:5a:99:8c:85:f0:a7:7b:6a:6a:
45:4e:74:66:a5:85:17:e8:30:97:38:44:ef:69:03:
e8:d5:16:79:a9:01:28:31:81:fb:c3:df:08:d0:95:
43:5b:9d:e2:bd:a9:83:fb:23:92:3f:62:f1:b2:20:
a4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5E:A4:22:68:AA:94:87:19:C8:C7:51:87:FB:41:D6:DD:22:69:DC
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/sl6kImiqlIcZyMdRh_tB1t0iadw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.88.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:b7:d9:71:af:bb:fa:38:04:6a:a9:0a:15:8b:9f:87:5f:f4:
d5:61:90:5f:65:9d:1a:74:74:66:b0:f5:13:a5:fd:cb:79:5b:
20:73:21:ba:e9:7f:5e:6b:3f:03:31:91:ae:52:d7:b8:69:6d:
1b:d7:b8:50:14:09:fc:3a:2e:a5:90:e5:4b:02:d4:94:84:4c:
8d:f9:c0:ef:4a:f5:e7:b1:e0:6d:4f:51:7f:6f:9b:e3:7f:4b:
87:44:48:b1:e5:ab:1e:ae:01:11:12:e0:54:99:8c:46:a8:7f:
d2:b9:ea:0a:74:c4:b8:1e:68:05:68:ec:c7:f7:1b:42:1a:a4:
08:60:1e:7b:7a:9a:40:fb:89:b3:95:9e:9e:05:e2:79:27:18:
e8:07:dd:64:ee:4f:f2:4d:03:b8:2f:4a:72:61:66:20:7d:42:
19:b9:6f:f3:ad:47:a3:2d:d0:66:13:7d:4c:2a:cd:35:a2:75:
c5:81:d0:02:eb:0a:46:41:95:88:9f:05:80:9a:86:fd:0e:89:
33:f9:75:03:c1:b5:c6:a6:a2:86:2f:f3:79:db:89:01:aa:6b:
20:f5:ad:6f:a8:51:b1:16:14:9a:69:b8:be:fe:31:71:45:0f:
9c:77:c2:c5:86:44:2b:2d:e3:97:31:00:26:e8:24:ae:a8:59:
69:e5:e7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:56 2025 by rpki-client