Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/Ej3gYtlSuAPlZFKHMuwTE4Jctck.roa
File: Ej3gYtlSuAPlZFKHMuwTE4Jctck.roa (raw, json)
Hash identifier: 9y23ZlfpmwQ34o5RgX41YPCR4m5vaqVg3kNxIPg1W9A=
Subject key identifier: 12:3D:E0:62:D9:52:B8:03:E5:64:52:87:32:EC:13:13:82:5C:B5:C9
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 08CF
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/Ej3gYtlSuAPlZFKHMuwTE4Jctck.roa
Signing time: Sun 07 Feb 2021 12:59:56 +0000
ROA not before: Sun 07 Feb 2021 12:59:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 43.250.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2255 (0x8cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Feb 7 12:59:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=123DE062D952B803E564528732EC1313825CB5C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:09:45:6d:63:19:94:4b:75:51:37:f7:94:f9:
1e:ae:22:f1:fd:54:3e:9f:f3:a8:c9:09:20:b9:56:
83:0e:b7:70:35:81:7e:db:ca:ba:b6:37:16:41:f2:
eb:1a:7f:96:30:c3:2e:9d:e7:0c:fb:fd:65:4e:60:
c5:90:7b:95:3b:fd:06:5d:90:a2:de:de:db:9b:83:
80:15:57:cc:11:bf:a8:b5:63:50:e2:09:34:a8:0a:
50:16:81:a1:3b:32:83:4d:ea:ca:01:f0:a3:fc:ec:
09:20:18:b3:7d:a2:e5:b5:c5:ad:91:e4:57:24:9e:
09:56:b3:3b:fe:96:1e:b3:b4:b4:87:32:f4:da:35:
e2:5b:54:14:3e:b0:4c:fd:78:af:8c:79:76:fc:42:
2e:aa:ba:d8:e6:29:ed:e0:62:3d:f6:64:8b:75:99:
35:d4:82:8a:a4:82:ac:02:9e:6e:4f:39:66:e8:71:
ae:aa:40:cf:3d:09:4d:5c:cf:48:d2:fe:72:5d:ba:
30:d7:e7:18:00:54:7a:f2:99:7b:51:fa:e4:49:eb:
e4:f1:b2:4e:f5:d8:75:99:f4:e7:6e:dc:66:1a:17:
b2:ae:3c:28:46:03:b7:a6:b2:bd:82:39:5b:ef:a6:
d0:60:df:45:21:ea:93:22:4d:26:b2:dd:01:f6:cd:
0f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3D:E0:62:D9:52:B8:03:E5:64:52:87:32:EC:13:13:82:5C:B5:C9
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/Ej3gYtlSuAPlZFKHMuwTE4Jctck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.46.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:e6:2c:30:ae:78:83:b2:ac:b4:6b:5b:4c:21:db:f0:0d:7c:
0a:b6:26:7b:9f:9e:52:d3:d8:60:77:9e:38:de:f0:ef:12:02:
4c:d2:19:bb:94:2c:82:47:ce:32:05:91:5a:8d:97:f5:34:b3:
86:4c:ae:9d:12:8b:f7:d8:db:9b:91:2f:31:0f:0f:44:e6:05:
9d:15:1d:d3:a6:b3:50:35:19:d9:9a:86:05:a3:38:1b:27:72:
3a:24:8a:99:26:81:c7:b6:4e:c8:ce:a8:04:1a:6f:0e:54:93:
23:c1:5d:4e:05:2d:f1:4c:fe:66:18:40:6a:57:9b:69:88:70:
5f:64:38:00:4c:0b:b5:98:bf:bf:e7:15:1d:74:c4:89:f4:3d:
9f:5e:4e:49:b8:05:19:04:70:61:e4:1f:05:56:87:13:65:10:
c3:c0:9e:65:59:4d:2a:fe:c2:69:e3:e3:57:0c:40:07:50:43:
ec:b4:91:c3:41:5d:99:94:46:f5:8c:56:6a:8d:de:34:11:63:
46:b0:16:50:b0:b1:27:2b:65:3b:55:5f:f0:d0:34:df:b6:e8:
3d:e1:12:fc:07:c3:2e:23:39:e6:ef:94:39:b2:a9:82:5c:c9:
f9:c5:5a:f8:72:2d:dd:02:68:a2:09:47:47:1f:ef:04:42:30:
e8:06:88:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:23 2025 by rpki-client