Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IKQfY6aPT1cHVhkTxT8iza4uYfw.roa
File: IKQfY6aPT1cHVhkTxT8iza4uYfw.roa (raw, json)
Hash identifier: r6ilPAzv5x+FAw81tRQbqitr7qR+2dAzu22l3XaRGHQ=
Subject key identifier: 20:A4:1F:63:A6:8F:4F:57:07:56:19:13:C5:3F:22:CD:AE:2E:61:FC
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C8C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IKQfY6aPT1cHVhkTxT8iza4uYfw.roa
Signing time: Mon 16 Nov 2020 06:45:10 +0000
ROA not before: Mon 16 Nov 2020 06:45:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:25::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3212 (0xc8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:45:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=20A41F63A68F4F5707561913C53F22CDAE2E61FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:75:f0:4f:55:b0:37:d3:6c:3a:65:b3:15:
e5:18:fc:c2:19:e9:58:f2:7d:50:af:3b:cf:3a:7c:
2a:e1:cb:ad:e3:e1:b2:fa:78:5b:77:34:62:0a:04:
db:9c:fd:e1:9b:1d:d9:d3:a3:ec:8a:64:a1:06:a5:
3c:4e:8d:c9:8d:7e:e2:12:c6:99:a4:63:00:3c:6a:
13:80:6a:97:19:f6:65:b7:88:c1:45:87:84:a0:50:
02:7c:d9:a5:a5:ad:e8:ba:fe:9b:93:28:75:07:18:
af:b8:b9:8a:26:fe:bc:e0:0b:bd:67:69:4b:fd:ff:
d7:56:d9:06:b4:aa:ec:d9:ef:87:64:1e:81:26:fe:
95:59:04:83:4c:51:b8:fc:11:ce:25:d9:6c:bf:34:
0d:ee:fc:84:4d:6b:2d:9f:8c:6c:8c:a6:51:e8:eb:
22:2d:33:73:f9:ac:4e:84:19:d3:6b:b7:f4:f5:39:
6b:fe:50:99:72:3c:a2:c9:96:26:f7:99:73:cd:2d:
01:3d:37:85:16:5e:98:fa:b1:c6:17:6f:b1:8c:32:
0e:08:b2:08:51:81:5f:2a:05:86:48:60:a4:df:69:
84:85:2d:46:8d:b2:37:dc:d2:19:7d:f8:98:dd:65:
b5:cb:09:1a:a8:6c:c0:5e:08:95:b4:a3:c0:66:17:
39:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A4:1F:63:A6:8F:4F:57:07:56:19:13:C5:3F:22:CD:AE:2E:61:FC
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IKQfY6aPT1cHVhkTxT8iza4uYfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:25::/48
Signature Algorithm: sha256WithRSAEncryption
3a:f1:57:e9:75:bd:51:e1:b4:2a:a0:7b:81:b4:73:8b:75:f5:
86:97:34:82:9b:66:9f:ed:32:7d:fb:e6:95:52:68:86:9d:f8:
8e:47:91:8e:fa:49:88:1a:fa:32:fe:c6:82:e6:a9:d2:91:95:
17:0d:79:37:32:d6:9a:bd:f6:41:29:0e:10:f6:45:f5:f4:56:
bc:ab:6a:79:a4:3b:46:ab:50:8d:62:3b:60:fb:b5:b2:cf:5b:
85:b8:14:a2:89:2b:6c:b3:e9:1c:4c:48:07:70:10:57:39:d8:
8e:2f:76:11:c9:21:aa:d2:a2:fd:5b:f5:82:c7:3c:6e:13:21:
9b:e1:21:f6:3e:88:e8:07:72:e8:b5:b6:2e:1b:23:ee:12:d8:
e9:b4:f2:86:4d:c3:d8:46:f0:7c:a6:3d:fa:87:18:4c:90:b9:
7c:8c:33:db:f5:b7:e5:e1:fa:60:6f:cb:59:99:5e:0a:31:e0:
3d:f1:06:96:3a:19:84:d5:23:d3:66:d1:90:4e:30:17:4c:4a:
dd:77:a4:2a:90:e5:63:0d:99:a8:da:07:df:bc:a9:ea:bd:02:
94:27:3c:a3:29:fb:d5:dc:e3:30:05:7b:9a:92:f8:e1:75:01:
41:18:81:ed:29:9c:69:69:04:23:75:10:74:43:a1:ca:40:c2:
48:10:c8:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:29 2025 by rpki-client