Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/MHWM_0n36hNFnKW_eqEbWqcqKn4.roa
File: MHWM_0n36hNFnKW_eqEbWqcqKn4.roa (raw, json)
Hash identifier: dlWrdpY3KH+XbFPBj9KDDY2LVy1KOANJbLhAc3URbdM=
Subject key identifier: 30:75:8C:FF:49:F7:EA:13:45:9C:A5:BF:7A:A1:1B:5A:A7:2A:2A:7E
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0B59
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/MHWM_0n36hNFnKW_eqEbWqcqKn4.roa
Signing time: Fri 01 Sep 2023 10:24:07 +0000
ROA not before: Fri 01 Sep 2023 10:24:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 2407:7100::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2905 (0xb59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 1 10:24:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=30758CFF49F7EA13459CA5BF7AA11B5AA72A2A7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:37:53:cc:64:91:7c:89:08:42:72:d7:37:d4:
aa:21:de:30:db:ea:31:0e:4d:f9:b7:91:37:ee:b3:
f9:54:2a:d0:ac:1b:d2:29:c8:07:2d:a0:60:c5:63:
5b:01:68:6d:56:19:c3:5b:72:ee:53:65:c2:aa:80:
91:c3:52:20:9a:b0:08:72:d0:38:30:b6:fa:a7:0f:
8b:af:cf:ad:c6:dc:f1:b1:7c:30:c7:73:43:08:99:
fd:53:d9:b8:8c:f0:1f:8e:8d:46:af:be:5d:ff:89:
e4:43:27:25:31:60:64:1c:c2:1c:1d:18:9a:a3:82:
76:32:42:1d:d1:a8:ec:c2:ac:36:25:bc:0a:71:67:
93:e5:82:ef:aa:9f:0a:84:17:47:59:aa:1e:a2:bb:
f7:16:fc:c1:88:12:28:02:b8:48:63:6b:1f:42:2a:
eb:14:4e:4b:1a:a9:a2:0a:96:51:14:df:07:08:1f:
fa:ad:83:f6:c9:8c:29:eb:5b:09:1f:32:4b:c5:2c:
0a:ab:ac:56:77:c4:94:a2:29:d6:0e:11:ac:a8:94:
eb:3b:ab:d0:03:19:31:e8:17:69:33:d0:e1:0d:83:
b2:3d:d2:b8:37:4c:d6:9f:67:b5:18:ea:a1:f0:5f:
33:cb:30:80:6f:89:ef:b5:32:62:bd:e1:94:63:bc:
fd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:75:8C:FF:49:F7:EA:13:45:9C:A5:BF:7A:A1:1B:5A:A7:2A:2A:7E
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/MHWM_0n36hNFnKW_eqEbWqcqKn4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:7100::/32
Signature Algorithm: sha256WithRSAEncryption
61:d9:30:6c:78:19:39:44:be:91:a4:5d:ec:cd:0e:bd:92:16:
59:92:4e:e6:2e:4a:cb:6d:e1:29:aa:40:4e:40:c4:d5:62:a2:
83:0c:ab:cc:7b:b0:a5:44:59:4b:59:ac:d2:d7:bc:94:09:c5:
0d:cf:41:52:96:1e:0b:02:f3:f8:f4:bd:73:68:8b:5e:43:f0:
1b:8f:cb:f0:26:3c:36:10:15:0b:9f:6e:1e:73:46:22:32:f3:
47:ee:f1:dc:a0:37:0d:61:69:7b:27:67:cb:09:1d:4d:8a:e5:
0a:c6:cf:00:c7:be:57:41:57:3d:35:7a:87:ee:f0:fa:51:a6:
df:44:b0:31:88:ca:66:24:ca:d6:d9:b0:5e:36:a2:f5:91:39:
e1:1a:a6:76:b1:e0:a1:ff:3e:36:d4:c3:74:1d:93:7a:a2:55:
8e:6f:dd:f5:95:8d:cd:b3:39:7a:f9:d9:04:60:eb:f5:f2:76:
90:27:24:f9:21:7d:d6:ea:b5:3e:48:60:de:fa:cd:e8:9d:24:
8e:26:10:15:e4:d3:e3:b3:d8:15:08:ca:cb:6b:59:c4:f5:a8:
07:d9:38:53:df:a9:d7:11:4b:d3:32:5e:51:2a:c7:c3:5e:ac:
9c:3b:85:48:2b:b9:90:9a:cd:b3:62:9a:8a:ce:32:ea:ef:16:
94:15:42:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:54 2025 by rpki-client