Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/K_0U--EAIsJVDSbr869GJHjIcUs.roa
File: K_0U--EAIsJVDSbr869GJHjIcUs.roa (raw, json)
Hash identifier: gCUMWLA3XouUopWBVAdld8B3zRT+x3w/WttmkwaaUgk=
Subject key identifier: 2B:FD:14:FB:E1:00:22:C2:55:0D:26:EB:F3:AF:46:24:78:C8:71:4B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 104C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/K_0U--EAIsJVDSbr869GJHjIcUs.roa
Signing time: Thu 15 Sep 2022 02:37:11 +0000
ROA not before: Thu 15 Sep 2022 02:37:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131621
IP address blocks: 182.173.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4172 (0x104c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 15 02:37:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2BFD14FBE10022C2550D26EBF3AF462478C8714B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f3:d0:e7:c6:37:01:77:ee:84:5f:d7:e6:c1:
78:66:84:92:7c:66:9c:70:c0:f7:3b:5e:d6:8c:2d:
d9:0e:09:b3:a5:28:29:95:ff:df:b8:0b:e6:dc:0a:
62:cc:d6:ad:e6:72:c2:db:a0:48:e8:81:14:a8:ef:
23:51:08:a3:29:8b:52:7b:d1:02:ee:cd:d9:ac:2a:
fa:31:00:41:87:00:8e:08:86:22:ce:eb:39:f4:2b:
a0:86:6f:29:64:fb:cf:3a:43:c9:fe:6e:91:9c:d2:
09:95:a8:01:a8:1d:58:1a:b9:99:cb:9f:3b:c5:2c:
77:9a:50:d0:4e:f4:2e:d2:47:37:22:c8:61:f3:79:
1c:48:58:2c:8d:b0:f8:0b:92:95:ab:3e:31:d7:13:
ab:de:95:4b:53:e4:9f:09:da:e7:ed:04:80:20:6a:
bb:1a:93:c8:ad:57:5c:e7:ca:ea:bc:83:d5:c7:e8:
7a:19:22:5c:23:6a:02:e3:7f:e3:ae:45:6a:e0:02:
4d:b4:16:fc:15:b0:4b:d8:cb:9a:24:0d:23:0f:3a:
23:d3:9c:6d:ad:2b:04:92:f9:95:18:a4:e0:84:ba:
25:14:c5:87:95:e8:29:29:59:86:1f:ef:72:42:85:
e0:9e:bf:16:2c:1a:3a:ae:5f:77:78:0c:bb:61:2b:
37:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:FD:14:FB:E1:00:22:C2:55:0D:26:EB:F3:AF:46:24:78:C8:71:4B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/K_0U--EAIsJVDSbr869GJHjIcUs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.1.0/24
Signature Algorithm: sha256WithRSAEncryption
81:8c:fe:ec:1f:09:fe:3a:f7:94:69:cb:27:14:af:70:10:72:
dd:f3:69:f1:05:01:30:eb:1a:2a:f4:34:4f:5f:e9:59:90:b4:
dd:14:7d:dd:f0:bb:dc:40:47:b5:37:1a:2c:51:f1:eb:94:a6:
44:26:d2:41:f6:a2:e6:64:08:4a:ef:f9:34:fd:f0:17:33:4d:
bd:5d:e5:10:60:65:77:b6:d9:0a:82:5d:7b:f7:75:ce:50:a3:
cc:6b:a4:87:6a:fb:be:8f:ba:90:5e:b9:31:bc:bf:54:28:73:
27:ac:40:88:65:f3:e1:3b:09:0c:35:ef:23:4a:24:1a:02:e3:
a9:bf:ed:67:52:ef:72:b9:bc:9f:a7:b9:96:58:e4:e3:61:07:
09:b0:7d:e1:00:a6:03:b6:90:fd:e3:77:2c:92:ea:e7:85:e7:
be:d4:bf:80:81:92:28:84:28:66:cd:d0:a7:3d:e1:5e:4b:c0:
77:82:29:19:02:30:12:20:5d:ab:3c:2d:ce:1d:c0:94:3f:b2:
53:4d:db:cf:c7:20:3b:77:03:a1:fc:76:dc:64:47:5f:f5:48:
02:55:be:35:eb:d2:dc:66:7e:d5:ae:6f:c3:3c:15:0f:8e:76:
4f:30:73:a2:55:4f:3e:46:10:d8:f2:1b:69:9a:41:db:46:9b:
80:06:d2:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:37 2025 by rpki-client