Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/IoGupqJkX_jgZkbitKVWTsSoXck.roa
File: IoGupqJkX_jgZkbitKVWTsSoXck.roa (raw, json)
Hash identifier: 8KM2m6LmCMVwSdsNjFLLHHvtOG8equuV/S8lThCT/6Y=
Subject key identifier: 22:81:AE:A6:A2:64:5F:F8:E0:66:46:E2:B4:A5:56:4E:C4:A8:5D:C9
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0A48
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/IoGupqJkX_jgZkbitKVWTsSoXck.roa
Signing time: Wed 01 Feb 2023 04:05:02 +0000
ROA not before: Wed 01 Feb 2023 04:05:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2632 (0xa48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 1 04:05:02 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2281AEA6A2645FF8E06646E2B4A5564EC4A85DC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ba:96:df:1c:62:8c:a5:91:c6:f2:03:11:34:
4a:7a:11:88:b5:1c:18:b1:6f:fc:e4:56:80:77:d3:
84:b6:ba:33:63:2b:8f:37:45:06:22:0e:6e:00:fa:
a1:4d:2c:fc:12:85:c8:40:b7:6b:8b:cb:73:00:03:
59:37:ab:ba:e2:07:e7:91:02:47:d7:62:f4:87:12:
43:14:dd:90:79:e9:11:f3:b7:41:98:1d:95:2d:b5:
68:46:95:d2:1f:ab:97:72:5d:04:6e:f7:79:50:5b:
6a:19:36:79:da:25:66:81:84:4b:0e:5c:ba:b8:7d:
ec:5d:34:af:10:04:9c:20:fb:31:4d:00:92:a2:47:
54:97:8d:d3:5b:bc:d5:d1:c1:8c:34:f3:96:9f:2b:
35:d2:e9:4b:d1:3f:5c:85:65:f1:6f:80:54:35:aa:
3e:25:0a:23:6d:da:cb:23:3c:5d:4d:bb:ab:4b:48:
de:8f:7c:d3:5d:d9:fd:85:a0:7f:dd:87:6a:b4:80:
a3:6d:30:1a:6c:13:ad:f9:0f:e7:39:19:4d:75:42:
7a:3e:4a:cc:ea:ca:0f:46:7c:f5:f9:66:86:0d:c5:
f5:65:63:34:51:d2:81:e0:21:11:a9:01:d0:03:ae:
30:0e:90:c6:08:c1:b4:e6:77:b1:96:7b:23:41:ab:
88:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:81:AE:A6:A2:64:5F:F8:E0:66:46:E2:B4:A5:56:4E:C4:A8:5D:C9
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/IoGupqJkX_jgZkbitKVWTsSoXck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.13.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:17:a0:bf:e6:86:8b:b6:3a:ee:0d:d3:1f:a7:12:4a:c6:5c:
4b:75:70:a5:dc:db:6d:99:5f:72:ec:86:4b:08:8e:46:06:05:
80:96:d1:02:1b:1d:f6:f8:7f:f3:21:c5:1e:e9:44:4a:ec:6d:
be:72:1a:05:bf:e2:07:9d:de:90:25:29:a4:3f:4c:34:9f:97:
7c:0b:95:bf:c7:e5:d2:c7:21:3b:fb:2e:75:4e:e8:5b:35:a3:
d8:69:9a:59:40:38:6d:56:d9:4b:01:0f:43:6c:63:56:ae:64:
74:0b:04:a9:fb:47:17:da:23:8e:1f:b1:ee:97:7f:1c:a5:1f:
12:0d:d8:d6:7b:a1:b5:b9:5e:fc:0f:a5:45:89:fd:7e:3f:6d:
6b:3c:c1:7a:e1:7d:55:ce:76:82:6b:7d:e0:bf:9f:0b:57:2a:
12:bc:c8:ed:3c:ce:4e:52:06:e4:b8:d1:fe:01:1d:b8:02:df:
39:80:24:f2:fa:6b:32:fd:c3:61:d4:5c:5a:a0:bf:7b:d8:d4:
23:93:1e:58:60:45:94:77:00:5c:ec:dd:6e:55:57:a1:93:50:
07:5b:e3:dc:fa:c4:62:2f:b8:50:1c:4e:6e:b4:a6:7d:cb:9a:
61:ed:e5:43:93:01:fb:cf:1c:90:05:7e:0a:30:dd:04:8b:71:
34:49:56:2f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org