Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Rz5MjFILj28GVecqdpoz-yJ7cDE.roa
File: Rz5MjFILj28GVecqdpoz-yJ7cDE.roa (raw, json)
Hash identifier: hdJwPe6yjrsHVVU1fJldSZk4X2PXmuNNL8fTB+Qhm+k=
Subject key identifier: 47:3E:4C:8C:52:0B:8F:6F:06:55:E7:2A:76:9A:33:FB:22:7B:70:31
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 09E2
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Rz5MjFILj28GVecqdpoz-yJ7cDE.roa
Signing time: Thu 15 Sep 2022 02:50:11 +0000
ROA not before: Thu 15 Sep 2022 02:50:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2530 (0x9e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Sep 15 02:50:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=473E4C8C520B8F6F0655E72A769A33FB227B7031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:62:b3:1e:d1:0d:35:5c:9a:51:53:b5:36:52:
1f:3c:21:51:31:2d:b0:f1:a6:77:89:c4:b8:84:d1:
53:27:33:55:80:2e:8e:d0:67:42:ca:e7:a7:0a:08:
a5:7e:5d:00:30:bf:a8:37:d3:46:c6:de:7e:84:09:
53:7b:e9:b0:9d:bb:9c:dd:14:ac:5b:62:5d:21:6f:
80:b3:8a:aa:38:45:51:f7:ce:4b:54:72:6d:c0:90:
29:57:32:7b:0d:15:ed:bb:68:43:58:63:e1:b9:a1:
28:ad:0a:f2:c6:65:18:e9:20:1a:1e:d5:45:9f:85:
3c:68:a1:9a:cb:07:7e:9d:18:d9:06:06:5b:1a:5a:
54:01:a8:66:01:a7:cb:60:64:7b:21:2b:97:be:66:
51:76:10:07:49:7e:df:63:c1:c6:03:11:df:05:87:
d3:63:54:5f:5c:82:4a:29:ef:05:e6:a0:be:a1:3b:
7e:36:8f:fd:c1:5c:9f:3f:c0:a6:d4:94:be:ad:ba:
9f:1c:14:1e:6e:09:74:af:27:b5:09:c0:70:74:fd:
5d:76:7a:a0:19:96:0d:39:bb:27:76:85:fb:52:d9:
ae:88:e2:07:d6:aa:77:34:8c:e4:f7:9d:52:c0:1e:
24:95:93:1f:95:92:49:ef:0c:fe:52:ac:b5:66:16:
58:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3E:4C:8C:52:0B:8F:6F:06:55:E7:2A:76:9A:33:FB:22:7B:70:31
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Rz5MjFILj28GVecqdpoz-yJ7cDE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.8.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:49:ae:5a:e5:dd:4f:49:8f:71:09:8d:c3:92:11:76:c0:e7:
cd:e0:60:1e:22:90:c1:73:70:2a:30:03:29:1d:f0:d3:a5:76:
e4:28:36:21:25:fd:50:9e:96:17:ca:75:91:b6:52:c7:66:49:
22:7f:7e:88:f0:1c:45:89:54:8a:b5:2f:f8:07:b1:58:cf:cd:
c6:2b:18:94:91:3b:b5:0c:e2:74:a2:a5:3c:4e:15:0c:b0:03:
16:b1:e0:86:0e:3e:41:d0:75:f7:df:eb:70:33:59:d0:56:cf:
2a:e4:77:27:6f:3b:30:92:fc:58:c4:a9:cc:4f:fe:30:43:92:
eb:f7:97:33:2b:b5:19:18:9a:8c:41:6d:d5:1b:2a:67:31:a3:
81:24:24:d6:7b:d9:4a:1e:1b:b0:be:8b:cc:f2:55:58:64:80:
0b:89:64:bd:6a:f1:04:72:11:d6:71:cf:f1:2b:89:86:f6:48:
0b:51:1e:db:de:8b:51:33:5d:53:f3:fc:a7:f6:f4:55:24:85:
41:3a:b1:10:f1:ce:68:c3:d9:e4:0e:7a:cf:7a:62:c5:62:39:
0f:e4:f0:9c:2f:ce:ee:b1:6a:e5:a9:3f:f2:ff:92:a2:a8:1d:
48:d1:9d:53:9b:00:26:47:6b:4d:71:be:50:d4:3f:22:71:75:
ca:8b:3d:5f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org