Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/xIbN_TILaQ0lpYUjEU7GWjN3GzA.roa
File: xIbN_TILaQ0lpYUjEU7GWjN3GzA.roa (raw, json)
Hash identifier: qopxgmO8bKH5WLxmE5Z+tG/8gc98WkSXcqJVr1/jr2s=
Subject key identifier: C4:86:CD:FD:32:0B:69:0D:25:A5:85:23:11:4E:C6:5A:33:77:1B:30
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0A6D
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/xIbN_TILaQ0lpYUjEU7GWjN3GzA.roa
Signing time: Thu 15 Sep 2022 02:50:45 +0000
ROA not before: Thu 15 Sep 2022 02:50:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18018
IP address blocks: 61.58.34.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669 (0xa6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 15 02:50:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C486CDFD320B690D25A58523114EC65A33771B30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d5:a6:68:d9:c7:da:af:62:e3:81:2f:ac:28:
6b:d3:1b:54:ee:d5:53:44:1c:84:7e:71:52:5d:1b:
f4:ee:bc:d5:ed:77:69:87:eb:64:10:57:7d:88:f6:
6a:cd:64:4e:69:78:1c:19:26:cb:bf:54:42:d9:3d:
73:73:f2:39:9e:51:22:88:77:27:b3:3d:aa:e0:f3:
c0:a8:d4:85:84:1d:de:c1:2e:62:16:58:93:4b:64:
3d:1e:05:5c:dd:d6:a1:05:74:02:0e:fa:ea:f6:4f:
b9:6b:6c:c1:bf:88:84:8d:81:76:69:f3:6e:75:10:
9b:b9:e1:ea:08:bf:32:87:77:68:84:51:3f:c9:ba:
0c:d3:a4:88:e7:6d:46:27:13:64:67:c2:62:cf:2d:
95:b2:1a:a2:88:9d:bc:ee:d7:7d:f0:36:31:61:00:
7c:8e:7f:cb:e8:ea:3b:28:45:43:ad:fe:6c:3f:92:
0d:85:62:1c:c9:4a:c3:d1:98:7f:47:90:98:56:80:
7c:9f:5a:6b:05:a5:0c:cc:dc:64:02:28:67:cd:5f:
57:3a:1c:c8:3c:c3:ab:1d:46:07:71:c3:8e:6c:99:
78:dc:c1:57:7e:ef:b1:11:f7:bb:4f:ad:78:aa:33:
4c:82:a3:1b:bc:00:e0:ee:84:c9:f4:b1:ab:37:47:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:86:CD:FD:32:0B:69:0D:25:A5:85:23:11:4E:C6:5A:33:77:1B:30
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/xIbN_TILaQ0lpYUjEU7GWjN3GzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.34.0/25
Signature Algorithm: sha256WithRSAEncryption
12:f2:cc:48:61:2f:d7:15:18:f8:58:42:f8:aa:e6:69:74:81:
61:b1:84:5a:d3:39:21:db:d5:99:5a:34:d9:e3:ef:4a:ae:7b:
8c:dc:28:b9:5e:e1:ea:36:d6:c6:61:aa:95:fb:54:65:0a:39:
6e:58:31:1a:61:7d:f1:86:d5:7d:0a:d9:49:90:c0:34:ca:08:
1f:25:91:4a:75:7e:0a:3f:ee:6a:65:c1:6f:5d:d2:ff:4b:ca:
2b:24:45:03:81:77:02:db:b2:18:61:05:e6:a0:69:12:85:dc:
29:05:9f:21:d0:d4:06:47:fb:c2:e8:d2:30:89:70:1f:e6:00:
22:38:54:da:a8:0c:c4:4e:d4:67:8c:42:eb:e7:df:bb:c4:23:
af:b6:e0:aa:d7:bc:0c:f0:d1:62:5d:13:17:49:d3:b7:40:e9:
bc:9f:63:10:33:0f:3c:f2:ad:42:c6:0b:59:51:10:32:74:62:
54:fd:31:9b:8d:78:8b:83:97:0c:2e:87:4e:56:cc:6f:82:81:
8d:3a:95:36:96:08:99:f0:f8:09:d3:bb:91:c7:4b:de:4e:6e:
a9:cd:0a:c0:b7:21:b5:f2:3a:c1:c3:ed:69:82:bf:9f:b5:ae:
cc:f7:8d:ee:8c:08:b4:8d:d6:34:37:b9:59:f8:a5:2b:d4:34:
c9:e0:54:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:48 2025 by rpki-client