Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa
File: aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa (raw, json)
Hash identifier: oJHkgosxQIPJvdpeT+y33M6yfRPBlaTj6AiRUee1PGY=
Subject key identifier: 69:02:6E:2D:55:73:FC:0E:D9:CE:11:FF:10:F9:F6:A1:6D:99:7B:97
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 116E
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa
Signing time: Fri 01 Sep 2023 03:14:21 +0000
ROA not before: Fri 01 Sep 2023 03:14:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131621
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4462 (0x116e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 03:14:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=69026E2D5573FC0ED9CE11FF10F9F6A16D997B97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:f2:7b:1d:8b:c2:44:71:74:04:43:0e:c4:
7b:74:88:73:dd:db:e1:05:25:4f:61:38:89:40:a9:
cb:76:42:31:7f:d4:72:e4:d7:c5:69:a2:c4:18:4c:
0e:63:da:76:08:90:63:11:e9:db:96:cd:f5:fa:70:
1c:c0:e1:42:31:d9:2f:f5:e5:60:51:c9:d0:9d:ba:
20:5e:c6:ce:02:e4:b5:a9:ee:83:e5:86:e1:4f:6d:
36:63:88:1f:19:f9:98:d3:a7:0b:ca:10:7d:a3:27:
7a:08:de:18:ce:cd:1c:fb:07:b9:58:13:d0:22:22:
8a:2f:d7:24:e1:c6:cd:9b:8d:19:64:f2:e8:9d:0a:
2b:f8:94:25:fd:c1:33:16:3c:ec:5a:fc:4d:0e:8c:
94:eb:27:a0:90:97:54:56:e6:50:64:c1:2a:f4:40:
06:10:9c:6d:f7:cd:bd:d3:fb:88:95:d9:bb:25:96:
32:6b:12:ad:fe:c3:05:7a:9a:51:0e:14:ef:9f:61:
c8:a2:c3:86:aa:9a:95:63:25:90:99:65:73:a5:3c:
38:a6:9c:05:97:4d:55:7d:b4:7a:0a:d2:3e:b8:f5:
d2:f9:16:12:f1:a6:c7:10:8e:3f:80:8c:15:80:bf:
00:60:fa:cd:3c:48:a4:34:ce:da:a2:22:46:49:02:
7a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:02:6E:2D:55:73:FC:0E:D9:CE:11:FF:10:F9:F6:A1:6D:99:7B:97
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:fb:6d:a3:c2:4c:44:b0:56:88:02:a3:4c:1a:cb:4b:85:5f:
7b:19:36:2d:0b:fd:30:94:8e:61:43:d1:b2:1e:32:9f:bb:48:
95:65:c6:bb:4b:59:f6:17:20:f1:8f:c9:83:49:67:c0:e2:a1:
54:de:63:a0:4a:2c:90:d8:a1:86:56:e3:7e:67:76:7e:b4:b1:
c8:c3:1f:87:dd:15:c8:e4:3d:15:86:a7:83:96:2f:2f:54:e0:
95:f5:5c:12:c5:c4:b1:56:f8:18:71:e6:ea:f4:2d:8d:c0:85:
53:b1:35:36:14:e0:22:ea:f6:fa:2a:20:e5:76:81:86:1c:a6:
da:0a:04:7e:1e:b9:04:71:3c:80:c0:0e:10:b5:83:2a:96:fa:
59:43:e5:42:1d:1e:72:c9:67:b3:ed:4a:04:37:0b:71:8e:dc:
07:bc:0f:7e:53:74:7f:29:ba:76:10:bd:d0:52:86:ea:2e:aa:
c4:eb:70:6b:ef:f1:22:6b:2e:7e:69:3c:f9:f1:c1:10:a8:96:
5d:45:19:ab:0f:f9:ec:a2:0f:24:30:dc:21:91:9f:9d:20:34:
f4:89:f1:29:74:0c:b9:42:d0:72:43:0a:34:d9:b1:44:f0:32:
34:53:c6:79:e0:c4:54:3c:52:54:30:bd:5a:a1:59:3a:01:21:
26:e4:13:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:52 2025 by rpki-client