Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/s-lECOljFXXWx61ds5uHoZcLiZM.roa
File: s-lECOljFXXWx61ds5uHoZcLiZM.roa (raw, json)
Hash identifier: m+yxp3OV56nHb3webY1pPyyFEpTHpU1aJaFHkA50IR8=
Subject key identifier: B3:E9:44:08:E9:63:15:75:D6:C7:AD:5D:B3:9B:87:A1:97:0B:89:93
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 0B08
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/s-lECOljFXXWx61ds5uHoZcLiZM.roa
Signing time: Fri 01 Sep 2023 10:11:38 +0000
ROA not before: Fri 01 Sep 2023 10:11:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9916
IP address blocks: 2001:f18::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2824 (0xb08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Sep 1 10:11:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B3E94408E9631575D6C7AD5DB39B87A1970B8993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:aa:3b:be:29:c1:fc:61:4a:2f:10:31:37:67:
ed:ca:a7:0b:28:7d:71:6c:35:75:e3:7f:0c:cf:9d:
60:c7:45:76:51:8b:c5:15:de:96:85:d4:ac:0b:4c:
01:d1:8b:f6:6e:52:8c:0a:98:ac:27:e3:a3:44:69:
b1:79:cc:fb:49:f8:13:73:c3:92:41:db:78:d0:ef:
9d:24:f1:28:5e:6a:e3:07:0c:f1:2f:a9:b8:3c:f2:
0d:9c:8c:1f:fd:56:d7:37:eb:67:b1:5f:b1:68:5d:
89:ae:8c:2b:28:5a:86:17:00:2d:eb:a8:f4:13:59:
b2:d7:7e:79:2d:17:ee:a7:f5:49:3b:d9:dd:42:9b:
94:75:84:53:38:bf:64:4b:22:85:a2:1c:e8:02:82:
6b:81:3d:f0:9c:67:1c:76:f0:1c:7d:7f:3e:0a:c3:
09:64:f9:36:81:b7:db:c1:00:f3:5e:ab:46:1b:e2:
90:f3:ff:f9:86:be:9b:9a:5d:40:d4:9b:14:45:1b:
de:7f:31:b9:ff:79:21:88:f6:0b:f4:16:e1:32:d9:
58:d3:f8:cc:0e:ff:01:df:46:be:86:8c:53:3e:e6:
05:bb:0b:b9:32:a6:7a:3e:48:b8:6f:83:f6:4c:66:
72:e8:49:a9:57:ee:9b:1f:5a:27:f9:c3:92:e5:3e:
de:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E9:44:08:E9:63:15:75:D6:C7:AD:5D:B3:9B:87:A1:97:0B:89:93
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/s-lECOljFXXWx61ds5uHoZcLiZM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f18::/32
Signature Algorithm: sha256WithRSAEncryption
22:5b:e4:4d:5e:10:c6:d4:97:71:03:18:f9:64:fd:bf:ff:0f:
a3:29:56:85:ad:50:c8:f3:f1:c9:f0:0a:66:86:f5:fb:82:9d:
72:b1:3b:72:68:e1:e3:59:ed:70:fe:f0:35:25:ec:2a:88:d2:
5e:34:2a:fa:1e:be:03:77:a7:5c:12:72:0b:3a:0a:b4:8a:70:
46:d3:98:f6:57:c3:20:0e:56:57:f9:20:fd:d0:63:da:2c:d9:
58:e8:d2:b2:89:b3:e7:89:70:05:89:f5:76:8d:a1:4f:b6:99:
e8:5f:30:ec:e1:34:0c:73:b1:09:cc:4c:ec:36:5a:7d:79:a7:
30:07:db:21:20:c6:39:bf:50:ff:5e:51:ea:bd:23:94:d1:ac:
ba:be:90:67:52:71:96:ef:4c:9a:52:05:de:f7:7e:fd:8b:20:
48:79:0b:16:89:06:ed:e3:9b:9d:46:a9:c3:4a:c5:d0:d2:46:
52:15:0f:23:75:74:27:b8:8c:b6:f5:9f:0f:3f:89:c4:30:61:
89:2a:bf:87:bf:90:c9:3e:e0:16:95:69:76:3c:61:c1:ba:df:
dc:a1:1e:11:6e:68:42:44:c5:fe:4a:86:8b:0d:56:f5:d3:0c:
4f:4f:f6:96:dd:e0:6d:7d:34:fe:a9:e4:39:10:31:3a:ad:74:
bb:5a:6d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:08 2025 by rpki-client