Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/QVDPUcQmP_Y5Kj4-G2mgvXBG9o4.roa
File: QVDPUcQmP_Y5Kj4-G2mgvXBG9o4.roa (raw, json)
Hash identifier: 9F6XYPjcpLSj4PfSaUwqg6TJxE65gt2g2vvKJAn/lKs=
Subject key identifier: 41:50:CF:51:C4:26:3F:F6:39:2A:3E:3E:1B:69:A0:BD:70:46:F6:8E
Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991
Certificate serial: 9A
Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QVDPUcQmP_Y5Kj4-G2mgvXBG9o4.roa
Signing time: Fri 12 Jul 2024 03:31:55 +0000
ROA not before: Fri 12 Jul 2024 03:31:55 +0000
ROA not after: Fri 29 Nov 2024 15:30:20 +0000
asID: 215672
IP address blocks: 210.79.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154 (0x9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991
Validity
Not Before: Jul 12 03:31:55 2024 GMT
Not After : Nov 29 15:30:20 2024 GMT
Subject: CN=4150CF51C4263FF6392A3E3E1B69A0BD7046F68E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:15:c2:37:28:7f:66:e0:c0:1e:cf:23:5f:9d:
9d:57:e9:81:c6:5b:c9:f0:92:0b:e3:32:05:42:69:
38:89:8c:e7:7b:89:f0:5c:6f:e7:36:3b:6e:cc:7f:
1c:12:0c:c2:a4:38:db:74:ed:ee:0e:0b:41:27:96:
cd:9c:82:52:c9:5c:ed:01:64:46:d4:b5:2f:a4:9d:
03:55:fb:f1:06:09:c1:69:42:62:db:ec:09:49:c0:
a1:c6:65:a2:05:72:e1:42:89:05:33:15:8d:2e:86:
e3:90:fd:22:06:ed:0f:d1:1e:3b:b2:34:1e:07:4f:
0b:f1:a3:98:57:49:9b:93:94:91:8b:f4:d0:2f:4b:
0f:d0:38:ba:cf:a9:31:2a:59:b7:34:1c:ba:14:40:
8c:8d:52:f9:73:70:30:bb:6d:2e:ed:13:48:c4:17:
f2:d7:b6:a6:87:0a:e1:f4:1c:8a:98:b6:6f:4e:e5:
01:d0:44:bd:3e:22:0a:10:13:d2:31:64:43:1f:f2:
72:76:11:a8:95:e6:67:6d:bd:8f:b6:9c:4b:11:36:
05:72:8e:90:d0:7a:b7:7e:f1:ce:9d:96:59:dc:92:
65:c8:db:05:7a:c6:b7:c9:2c:30:50:52:2b:9c:96:
50:0f:24:57:be:13:82:04:24:5d:85:b3:c6:3e:8f:
be:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:50:CF:51:C4:26:3F:F6:39:2A:3E:3E:1B:69:A0:BD:70:46:F6:8E
X509v3 Authority Key Identifier:
keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QVDPUcQmP_Y5Kj4-G2mgvXBG9o4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.150.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e5:39:ca:a5:37:b0:18:fd:68:c0:30:51:d7:29:38:4e:01:
95:47:c0:ad:84:2e:a4:0a:ab:d1:cc:a3:24:79:91:e4:c4:62:
0e:8f:43:81:39:52:25:a9:a8:99:38:09:d5:7f:dd:15:fe:46:
59:0b:fd:97:be:58:f2:22:c8:3e:61:42:56:5f:c4:2a:07:df:
04:89:e4:9f:55:71:a5:e8:db:a5:60:6c:1a:13:48:d8:06:59:
ac:0c:a1:68:1d:c1:c5:fb:9e:87:b1:fc:56:a5:37:17:08:7e:
bd:89:bb:19:c9:3a:28:81:c5:4d:af:85:94:d3:33:ea:3b:1d:
8f:d6:23:64:21:56:18:92:b0:a2:18:28:f9:8d:98:b5:b4:64:
ac:54:f5:db:6f:bb:c7:0e:3c:99:c6:82:1f:4f:63:8a:82:fa:
49:55:6b:3f:87:01:48:34:f8:a1:09:8b:07:76:24:3b:4d:f0:
94:6a:72:2f:7f:ae:f6:3c:a1:e2:dc:f7:84:fe:44:c0:d4:69:
5d:11:f5:7a:19:f2:f9:45:4b:79:29:3c:af:c9:fc:c9:5a:4a:
a3:e6:96:3d:67:78:74:02:c1:a9:48:76:b8:d3:96:60:64:da:
0f:08:3c:0a:3a:42:ca:3e:b0:a6:72:7e:2f:54:e5:72:7d:92:
f6:98:93:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:07 2025 by rpki-client