Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/s9XHYrvCJf37UlRpCR5Lcx7yn3s.roa
File: s9XHYrvCJf37UlRpCR5Lcx7yn3s.roa (raw, json)
Hash identifier: ZXO/jHaxG95hBwz+/v3sp6ovjfYtZvgr3jRsl1fxobE=
Subject key identifier: B3:D5:C7:62:BB:C2:25:FD:FB:52:54:69:09:1E:4B:73:1E:F2:9F:7B
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 0A18
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/s9XHYrvCJf37UlRpCR5Lcx7yn3s.roa
Signing time: Thu 15 Sep 2022 02:38:30 +0000
ROA not before: Thu 15 Sep 2022 02:38:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18185
IP address blocks: 211.76.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2584 (0xa18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Sep 15 02:38:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B3D5C762BBC225FDFB525469091E4B731EF29F7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:33:2b:01:5d:bf:d1:b8:68:2e:60:ee:4c:8d:
d6:3a:09:f5:56:3a:bd:6b:4f:81:ce:d7:e6:79:24:
86:87:b1:04:10:03:4c:66:92:77:d2:9e:8c:27:3c:
97:6f:9e:4d:0e:81:60:52:87:92:18:7d:cd:c8:28:
4a:ad:e6:c2:23:22:2b:4c:f2:dc:0a:de:57:76:69:
66:2b:c7:93:86:60:a9:37:8c:a8:38:fd:6f:b4:3b:
34:fa:33:a0:6b:1d:d8:89:f0:6e:fa:9e:88:72:89:
e2:3f:f8:08:8e:51:79:4b:fb:ca:77:d5:6a:64:49:
94:2e:92:f6:5a:b9:40:a1:67:20:83:03:02:76:5d:
64:de:d1:2b:c5:c9:dd:ea:76:1d:58:be:0e:0b:e4:
41:d7:07:10:bc:f0:cb:05:ef:92:e4:12:49:5a:c6:
1a:69:be:e7:35:8c:19:60:76:d6:ea:e8:f9:81:0f:
98:63:a7:37:5c:10:dc:f6:36:5d:d4:3a:bf:c1:87:
db:9b:12:83:bf:53:a9:7d:99:f7:ea:a7:9a:97:72:
98:d4:c1:ed:87:fe:4c:98:7d:ee:2d:71:ca:22:bc:
d9:0e:c5:05:81:bb:da:01:48:0b:a4:b9:6d:04:0b:
9c:ab:96:88:15:00:42:32:15:5f:2b:e4:fe:e0:21:
28:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D5:C7:62:BB:C2:25:FD:FB:52:54:69:09:1E:4B:73:1E:F2:9F:7B
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/s9XHYrvCJf37UlRpCR5Lcx7yn3s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.240.0/20
Signature Algorithm: sha256WithRSAEncryption
31:da:63:1a:17:70:55:d7:ba:22:b6:1c:3a:d1:65:ca:6e:27:
c7:e0:b7:fc:8e:a7:64:f2:91:41:f4:64:f5:8b:4c:dc:35:75:
bd:80:c7:58:0d:e7:be:71:94:1f:b7:de:3b:98:1c:c0:5c:27:
37:a3:6c:48:1d:84:1e:86:0e:32:02:75:41:bd:59:da:73:20:
5c:8a:5d:5a:19:43:49:01:59:3f:17:c6:89:54:82:22:3b:b5:
ec:99:bf:e4:51:34:48:9c:e0:d4:84:f7:88:08:0c:32:48:ec:
c0:2d:a8:25:32:1f:7a:73:9a:35:95:0c:01:7c:04:a1:20:41:
fb:24:e1:29:cc:e8:cf:15:08:a8:b3:2e:bf:e3:e3:a6:b6:3d:
cf:a7:0c:66:00:eb:ad:40:cb:8b:7e:0d:8b:9c:0f:1f:b5:33:
85:53:cb:4e:23:b8:dc:b6:41:b8:ec:ab:b8:cc:ea:13:e3:95:
d5:b6:2b:17:b6:97:75:fd:7f:dc:96:21:20:89:75:30:24:98:
76:e3:cb:bd:02:4d:fd:99:59:d3:15:df:0e:f7:75:f0:f8:5e:
56:b2:ec:e9:b9:f2:37:9d:bd:17:97:4f:14:3f:6c:8a:2a:f1:
ca:82:a6:54:a8:b5:ad:f6:db:bf:71:0e:52:a0:15:41:ef:90:
0d:88:28:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:15 2025 by rpki-client