Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/JxSMf7j2sFHfxw5PXAVQfHznPHU.roa
File: JxSMf7j2sFHfxw5PXAVQfHznPHU.roa (raw, json)
Hash identifier: AMroM2yxsq4a6V4UoB+MpPy7tXk75LsVKJouUPfYK8o=
Subject key identifier: 27:14:8C:7F:B8:F6:B0:51:DF:C7:0E:4F:5C:05:50:7C:7C:E7:3C:75
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 0B07
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/JxSMf7j2sFHfxw5PXAVQfHznPHU.roa
Signing time: Fri 01 Sep 2023 10:11:38 +0000
ROA not before: Fri 01 Sep 2023 10:11:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18185
IP address blocks: 211.76.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2823 (0xb07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Sep 1 10:11:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=27148C7FB8F6B051DFC70E4F5C05507C7CE73C75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f6:67:40:cc:f8:6e:f5:c6:a7:ce:f6:b4:06:
ab:3c:a0:18:2c:fd:f6:8e:c4:49:3d:b1:28:24:a5:
2b:6b:13:f4:c9:54:af:0b:fb:99:e8:5f:79:32:03:
11:a1:0b:42:32:34:4b:83:2b:4c:5b:8e:f9:8f:49:
9c:e1:be:5e:ce:c4:22:36:6e:78:a5:9d:97:70:38:
78:b3:22:ee:d5:13:fc:26:33:12:49:10:c0:51:f0:
e6:89:7a:e3:89:1a:01:96:75:f3:a8:6d:b6:65:cf:
90:c6:b0:bb:ca:d8:86:5c:ea:69:91:22:c5:36:f3:
85:2d:02:75:c1:ac:b9:f6:86:aa:bf:90:46:47:ca:
a1:be:5b:bb:9f:78:a3:b0:fd:a5:08:70:0d:dd:6d:
b9:41:e9:5e:a4:a2:47:da:e5:99:6b:f1:5d:6e:b7:
1f:bc:33:7b:a4:53:75:7e:84:15:71:46:8f:db:16:
6f:5b:43:b0:61:bd:79:e5:9c:aa:f6:88:2b:cf:68:
84:b7:9d:ab:43:55:14:73:a6:47:f5:06:31:2a:ac:
da:77:c1:d1:8f:43:11:b7:39:ab:94:a0:cc:2c:11:
01:bd:99:a4:7a:3c:89:32:51:6c:ad:0b:49:17:be:
c8:dc:af:ad:11:48:4e:a4:fa:0d:3e:a2:db:73:78:
ef:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:14:8C:7F:B8:F6:B0:51:DF:C7:0E:4F:5C:05:50:7C:7C:E7:3C:75
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/JxSMf7j2sFHfxw5PXAVQfHznPHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.240.0/20
Signature Algorithm: sha256WithRSAEncryption
97:21:45:a2:69:15:1e:e0:b3:6c:26:54:9f:18:ae:22:68:bb:
50:8a:b4:b8:7a:20:b6:fe:d3:42:19:9c:51:00:10:bc:e2:00:
61:77:e3:4a:ce:d9:66:2d:90:2a:85:ce:ee:eb:5a:6c:ba:3b:
77:97:34:61:4c:5b:99:71:33:5a:a6:3a:d8:d6:28:83:e1:7a:
a6:0a:d0:04:9f:55:b5:37:14:02:91:90:e0:9b:96:27:9f:4b:
91:80:02:1d:58:07:29:11:53:a8:cb:48:79:33:cd:56:8e:97:
9f:45:fc:3d:0a:df:5e:6f:04:d4:a0:04:66:3e:68:b9:6c:2e:
3a:28:36:1b:11:53:54:5a:13:58:30:4a:04:78:f8:34:2b:54:
5a:c7:07:93:b9:d8:19:6d:b8:54:76:b8:bd:f1:40:32:5c:36:
a0:67:48:49:49:89:bf:4d:93:ff:4e:4e:f0:4e:88:e0:d1:51:
14:a3:94:04:be:f7:78:69:b4:ad:7d:64:b2:d9:78:93:02:7c:
f7:45:32:3e:83:82:eb:6d:1e:78:cf:15:c5:12:2f:23:35:28:
35:c8:86:61:69:1c:7c:53:42:f4:8e:ea:15:45:7d:33:94:e5:
78:9c:31:1e:60:96:ae:89:e5:41:ef:42:d5:f6:d4:5e:e5:24:
64:50:4f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:50 2025 by rpki-client