Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yLn1CWu51n91xnp1-0IMhHMURFk.roa
File: yLn1CWu51n91xnp1-0IMhHMURFk.roa (raw, json)
Hash identifier: 9H+E2fvzreB7kvJ0Khj+vIE0yIatIX2bFC9pd6VZU9k=
Subject key identifier: C8:B9:F5:09:6B:B9:D6:7F:75:C6:7A:75:FB:42:0C:84:73:14:44:59
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0B68
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yLn1CWu51n91xnp1-0IMhHMURFk.roa
Signing time: Fri 01 Sep 2023 10:13:53 +0000
ROA not before: Fri 01 Sep 2023 10:13:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18018
IP address blocks: 122.255.93.112/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2920 (0xb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 1 10:13:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C8B9F5096BB9D67F75C67A75FB420C8473144459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8e:ce:60:e8:e2:c4:6a:3b:51:c9:40:83:f9:
54:2a:29:1b:ce:3d:bf:65:4e:9e:4f:7f:7c:11:b9:
e5:f9:ec:e9:a7:6c:1d:df:14:4b:c6:d1:79:01:8a:
17:e9:db:9a:50:04:78:d4:da:e2:56:9b:09:28:13:
ed:cc:2a:24:7c:fa:8c:d1:ac:c8:03:53:68:be:0f:
b1:ba:55:ca:37:cc:9e:3a:1d:78:6e:ac:39:99:f7:
d1:d2:73:4a:7c:e5:f3:f0:79:e8:10:b4:9a:ea:86:
fd:ed:b4:5c:db:cb:6c:0d:92:6a:96:e5:08:7d:b2:
4f:cf:ce:0f:66:4d:62:82:c0:0c:1c:20:25:eb:dc:
9f:bd:9b:9f:f4:32:44:60:e6:89:c1:b7:19:94:15:
42:35:08:bc:91:c8:0a:71:22:29:2f:db:c3:60:ec:
6d:e1:77:c9:7a:74:2c:31:97:ca:f7:d9:6b:cd:ce:
bc:69:36:8a:d2:62:97:53:39:8f:b4:8f:47:ef:31:
87:e3:eb:4e:02:0a:0e:3b:4d:a8:9d:7b:69:fe:fa:
0c:2e:31:d3:61:c8:33:c6:e3:ec:9c:af:c8:11:91:
bf:08:5d:52:15:78:f7:b2:ef:1a:d3:41:2d:b8:bb:
53:f0:cb:b3:92:98:20:62:46:f1:7d:28:07:7d:c8:
3d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B9:F5:09:6B:B9:D6:7F:75:C6:7A:75:FB:42:0C:84:73:14:44:59
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yLn1CWu51n91xnp1-0IMhHMURFk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.93.112/28
Signature Algorithm: sha256WithRSAEncryption
76:21:ac:bc:4e:18:a6:92:f6:9c:75:46:f7:62:f0:f7:2b:56:
de:b2:14:0d:25:41:bb:7d:47:d0:cf:0b:29:ed:60:e0:14:36:
6f:06:27:05:10:17:13:7f:09:fe:3d:48:2f:ca:7c:83:69:b5:
9a:f7:dc:f2:a0:7e:1f:c5:f5:ed:68:2a:b0:e5:e2:fa:0d:c8:
72:25:18:98:3e:0f:36:c7:b2:f1:43:ce:4f:57:06:b4:0b:80:
ed:71:f0:73:19:ca:a3:89:bd:a8:6c:37:ed:c2:4f:2f:eb:b3:
af:23:3a:d5:34:4a:8e:e7:71:ee:05:ff:8a:0f:a3:79:3d:02:
7d:71:7d:fa:fa:e6:82:72:48:2d:9b:44:05:e3:be:7c:49:f8:
7a:35:44:6d:f6:f3:08:4d:93:27:87:89:2a:08:dd:b9:84:7e:
0a:d4:a3:d7:3e:50:d9:ca:e2:3e:81:66:14:33:32:a4:da:b8:
fb:85:bd:ed:de:be:f1:0c:d1:b7:6a:c1:8e:8d:d2:9b:09:9c:
2a:6d:05:0f:1d:6f:59:0a:2d:57:ad:49:8e:08:f2:b1:93:16:
20:d1:af:2e:c3:16:f0:5f:74:9d:c9:0a:83:4b:94:1c:b1:c0:
dc:be:a6:e4:ec:72:c6:be:02:6f:84:b6:c3:d1:08:c5:ce:e1:
08:75:8e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:48 2025 by rpki-client