Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/z34s_j2KA4dPuYPw1IkNNfwqxAM.roa
File: z34s_j2KA4dPuYPw1IkNNfwqxAM.roa (raw, json)
Hash identifier: cMOeF3MjgkQKiQ3QkPtHGjkpls/+hItEi/c40Gxt6lU=
Subject key identifier: CF:7E:2C:FE:3D:8A:03:87:4F:B9:83:F0:D4:89:0D:35:FC:2A:C4:03
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0AEA
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/z34s_j2KA4dPuYPw1IkNNfwqxAM.roa
Signing time: Fri 01 Sep 2023 10:11:12 +0000
ROA not before: Fri 01 Sep 2023 10:11:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 133955
IP address blocks: 223.165.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2794 (0xaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Sep 1 10:11:12 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CF7E2CFE3D8A03874FB983F0D4890D35FC2AC403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:3b:ef:cc:e9:9b:08:78:83:a6:36:e6:21:
31:a4:57:11:1b:6b:09:dd:40:ba:29:cc:c4:38:2f:
3b:da:85:32:7e:0a:19:c1:51:ce:89:54:4a:da:7f:
72:79:dc:d4:a4:0e:d9:76:e8:ab:02:6e:8a:ac:72:
72:d4:57:f8:5e:94:37:9f:ab:eb:fe:8c:45:bf:03:
4a:eb:00:58:6b:8c:6d:b0:19:22:76:b9:29:31:0d:
3c:36:81:27:c8:b9:08:29:f5:cc:69:40:96:93:9d:
85:95:c9:f8:1a:9f:a3:6d:08:0a:50:bb:70:c2:57:
7f:ce:fb:d5:e0:3f:3d:59:82:e4:af:03:80:da:12:
43:e4:1b:0c:0d:10:ce:e2:64:e7:df:70:43:f8:82:
82:b0:5f:3c:65:58:70:cf:ac:ac:11:56:f2:5b:6f:
96:68:2e:c0:cb:29:f7:1f:7e:51:3a:26:3e:91:6f:
7e:67:c0:db:81:b8:3c:ab:89:64:cb:42:25:27:ef:
39:ce:4f:5f:0d:6f:5b:5a:3b:7e:f8:5a:21:f5:89:
9d:06:3f:e9:19:19:42:b5:fd:ed:3e:e0:64:92:c3:
36:7b:b1:68:aa:d4:20:6f:f0:42:2f:65:9a:3f:f4:
f1:32:38:14:3a:3d:d1:31:75:17:b6:3c:cd:9e:16:
3d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7E:2C:FE:3D:8A:03:87:4F:B9:83:F0:D4:89:0D:35:FC:2A:C4:03
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/z34s_j2KA4dPuYPw1IkNNfwqxAM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.13.0/24
Signature Algorithm: sha256WithRSAEncryption
56:66:4c:59:eb:a9:8d:df:51:26:8a:f0:db:0c:78:54:f5:83:
25:83:30:38:c9:39:fe:6e:5c:96:83:21:f7:6d:92:f3:0b:d9:
2b:fb:8f:b9:b3:5c:db:64:8a:d3:ac:b3:6c:af:58:eb:51:fa:
49:55:40:ec:d0:d8:20:48:ac:23:3e:ea:66:08:09:7c:80:70:
af:cb:3b:61:bc:43:ee:96:9c:10:0d:b8:be:09:df:f2:6c:d7:
14:3e:1c:0b:0f:ef:aa:3b:78:92:43:eb:19:b2:6d:3e:45:9c:
81:05:ab:f6:66:ed:3b:fc:4b:12:45:2a:eb:aa:70:fd:8c:65:
14:25:37:9b:e7:24:aa:f7:f8:78:ef:66:0d:a0:89:09:6a:05:
dc:59:0c:d3:67:c2:8e:0f:96:25:55:f4:6c:e8:0c:d4:a6:a6:
3b:5b:3b:d9:d7:ba:ef:e5:ae:35:bd:05:71:c9:9d:b5:ac:01:
b5:4d:e5:95:4c:7a:9b:0b:48:90:c9:65:c2:ee:6c:3b:d2:30:
cb:ab:e2:70:51:c6:f7:6c:ae:17:33:1b:7d:8e:e3:2e:e0:6e:
52:81:93:04:2e:f7:29:9e:e9:e6:cf:97:32:5f:8f:00:31:ab:
e3:31:0c:40:bb:45:9c:12:ec:d4:fb:7d:45:d9:b6:3c:12:40:
0a:02:24:3c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:13 2025 by rpki-client