Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/K0yr31QyXgnTnl9HHme2p2Fvahg.roa
File: K0yr31QyXgnTnl9HHme2p2Fvahg.roa (raw, json)
Hash identifier: WsDqvqKranyK2FkJe9oKcRiE8K3Ce+MscHvRy/qqTl0=
Subject key identifier: 2B:4C:AB:DF:54:32:5E:09:D3:9E:5F:47:1E:67:B6:A7:61:6F:6A:18
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1135
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/K0yr31QyXgnTnl9HHme2p2Fvahg.roa
Signing time: Thu 15 Jun 2023 02:00:37 +0000
ROA not before: Thu 15 Jun 2023 02:00:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17718
IP address blocks: 150.242.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4405 (0x1135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Jun 15 02:00:37 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2B4CABDF54325E09D39E5F471E67B6A7616F6A18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:44:53:60:74:d3:5b:4d:ca:c5:ad:62:29:e2:
6f:cf:d5:53:ca:1d:f5:b1:99:c5:f5:ff:56:5f:82:
2b:82:07:2d:52:52:55:74:8b:74:be:f7:f9:5c:80:
15:d8:20:2d:00:90:9b:c2:7c:6e:eb:34:d7:a1:d6:
70:c5:8f:4e:56:ca:d1:ab:38:8a:30:7e:f6:1b:44:
ef:ef:d9:93:97:8c:d6:1a:bf:18:60:40:a1:7c:08:
cd:37:3b:8f:5c:65:b2:a7:8d:bb:ac:5d:30:27:5c:
f5:53:2b:2a:c8:0c:ad:e9:9a:20:69:e9:33:5e:5f:
cb:a0:78:86:0a:7f:6d:25:51:34:27:a4:2f:52:30:
4a:90:55:85:12:d3:1b:2b:68:e2:ca:6d:94:34:8d:
43:7b:75:25:e9:cb:c3:f8:51:b7:3b:72:28:eb:da:
23:49:4a:f9:62:e5:41:50:54:88:37:c0:b5:7d:7a:
bf:48:b2:7b:8e:f0:6c:ce:3b:a7:2f:20:58:a2:92:
58:94:9c:5b:a9:3f:34:04:13:87:7b:1c:e8:0f:21:
49:30:02:36:d8:6b:8f:14:06:12:ee:c9:45:c4:dc:
fa:50:7c:8f:88:5f:d8:15:9b:5b:8e:9a:5f:1a:10:
65:d1:92:d1:bd:0e:3c:7b:47:9d:49:e6:94:f2:97:
ed:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4C:AB:DF:54:32:5E:09:D3:9E:5F:47:1E:67:B6:A7:61:6F:6A:18
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/K0yr31QyXgnTnl9HHme2p2Fvahg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.102.0/24
Signature Algorithm: sha256WithRSAEncryption
61:10:2d:f7:df:93:05:12:04:cd:d2:bb:2a:dc:f2:a3:c7:2f:
1b:2d:87:f8:34:96:0f:a8:aa:9e:a6:ae:58:94:dd:12:3f:9e:
52:76:95:c3:2d:16:f8:ba:84:66:65:b7:f5:08:4b:26:51:ce:
c7:08:e2:07:8e:42:02:38:7f:50:bd:b1:6d:13:be:9a:88:47:
92:e6:0d:e9:14:37:70:cf:ac:57:80:05:7e:43:75:d1:a9:05:
ee:3e:cf:b6:c1:2c:85:03:25:1d:b8:72:b8:44:b8:f1:90:7a:
69:04:ee:92:8f:d0:93:52:5b:fc:ec:d6:d5:2b:0b:f6:26:ac:
0a:49:a3:dc:6f:81:9a:27:d2:e3:f3:be:62:98:e9:46:c6:38:
1b:4b:0d:fc:fd:93:dc:9a:8e:c4:bf:b6:38:a2:b2:39:11:40:
5f:cb:9f:06:33:97:ec:5e:76:11:ac:2e:c2:dd:a8:6b:ae:36:
01:36:40:3e:da:a8:0a:ff:71:cd:73:3c:af:34:32:f6:c7:56:
89:02:04:70:bf:5f:e8:83:3d:8f:d5:48:56:75:07:90:11:81:
21:c1:16:f9:bf:c8:ee:d9:ad:16:90:db:d9:c2:b3:a5:71:ef:
3b:43:5d:f6:d5:2a:da:ac:09:ba:1a:97:bc:32:d2:93:05:dd:
29:de:8f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:21 2025 by rpki-client