Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINAN/CpXHCWBZe4UyF8vTo9mn_wUlt2U.roa
File: CpXHCWBZe4UyF8vTo9mn_wUlt2U.roa (raw, json)
Hash identifier: 5syABAg+Z2apHnwV8zEnwSbvDQPa0AMDGuvJCOlMrXg=
Subject key identifier: 0A:95:C7:09:60:59:7B:85:32:17:CB:D3:A3:D9:A7:FF:05:25:B7:65
Certificate issuer: /CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97
Certificate serial: D7
Authority key identifier: 27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/CpXHCWBZe4UyF8vTo9mn_wUlt2U.roa
Signing time: Fri 21 Jun 2024 07:54:54 +0000
ROA not before: Fri 21 Jun 2024 07:54:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131642
IP address blocks: 103.64.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215 (0xd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97
Validity
Not Before: Jun 21 07:54:54 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0A95C70960597B853217CBD3A3D9A7FF0525B765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:68:4d:19:9a:b7:f3:87:f0:54:ba:da:10:0b:
72:60:db:e7:be:90:46:9d:e3:4f:10:7b:d1:6f:9a:
1c:44:ce:67:21:5b:47:fc:66:b7:82:bb:58:d6:e4:
37:9e:6b:bc:f6:74:62:bd:0a:ad:ea:97:2e:dc:a0:
cc:9c:d5:5b:9b:b9:37:c5:6a:d8:2e:bb:c1:16:c9:
cb:29:51:7d:50:74:3c:29:7c:5c:b8:74:71:9e:eb:
3c:09:57:dd:9a:c5:e5:c6:2d:03:d0:d5:88:c8:39:
75:dd:b6:4c:d8:b4:7f:98:b5:a0:63:c5:5f:0f:37:
fb:7e:c1:0a:ac:ef:1b:3f:45:de:09:1b:79:37:8c:
e8:e8:66:c4:17:7f:39:06:75:52:bd:53:a5:9e:38:
0a:db:04:a6:ce:ea:ff:84:95:d8:7d:8a:07:7a:35:
f3:c2:a3:78:42:0b:ae:0e:44:f7:e0:db:dc:87:35:
dc:a5:c6:53:b5:75:b4:50:a8:8d:8d:72:cf:7f:d3:
6d:26:95:ae:72:64:10:13:60:df:e3:38:fa:dd:60:
e9:ec:2d:7e:3a:fd:cf:3d:b1:61:93:6b:a5:55:8b:
d5:50:6b:87:d6:20:63:92:4a:a2:f2:d1:f8:0c:e2:
11:54:fd:82:49:72:65:8b:75:7a:46:9c:d4:41:ca:
b1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:95:C7:09:60:59:7B:85:32:17:CB:D3:A3:D9:A7:FF:05:25:B7:65
X509v3 Authority Key Identifier:
keyid:27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/CpXHCWBZe4UyF8vTo9mn_wUlt2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.64.20.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:a6:2b:f9:57:5b:51:79:57:21:80:a5:b9:c1:66:b0:ac:8f:
cd:a5:da:97:8b:08:a6:d9:ec:2b:6f:81:0b:87:cc:26:96:e2:
33:fb:c6:ae:3b:02:65:f9:11:55:66:7a:89:19:5e:33:e8:24:
78:f2:37:e4:8e:d2:d5:07:f4:a7:65:a0:e5:b6:44:ad:c4:0d:
1b:68:02:85:be:0d:9d:2e:1b:1b:1a:9d:15:c6:2f:0a:58:34:
dd:ca:9f:ac:05:25:84:e3:ba:b4:21:9f:ad:f8:15:5c:e2:b7:
17:e7:12:96:9b:25:6f:dd:6e:12:46:e5:b7:95:da:76:c4:37:
92:3b:82:a9:c6:db:81:91:b1:4c:4d:b8:30:ff:9c:b4:73:1e:
b5:51:39:b7:fb:87:16:6e:bd:7e:c8:59:b2:93:ee:12:b4:2f:
cb:4d:11:d3:5c:07:7b:3e:9a:59:c9:22:9b:68:1c:21:79:73:
99:e7:4b:b2:1e:49:bc:a9:4d:37:f3:da:af:30:0f:64:79:da:
60:6f:ef:ad:3d:52:ea:77:9b:46:04:2e:81:b3:9c:68:b1:86:
9a:6c:4e:13:f6:79:d7:77:bf:9a:a2:f1:58:c2:2d:6b:46:79:
f8:e3:35:94:a8:41:79:1a:12:fe:64:7d:c1:dd:1d:b4:6c:58:
06:a9:7f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:49 2025 by rpki-client