Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/-H9o3IO6Jd3LRMN7q1isIiX4vPQ.roa
File: -H9o3IO6Jd3LRMN7q1isIiX4vPQ.roa (raw, json)
Hash identifier: Ao/bDK7PvvzDtJc/SqMgtW86VU0sWMjxTACsdi0tl5s=
Subject key identifier: F8:7F:68:DC:83:BA:25:DD:CB:44:C3:7B:AB:58:AC:22:25:F8:BC:F4
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0A27
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/-H9o3IO6Jd3LRMN7q1isIiX4vPQ.roa
Signing time: Wed 24 Aug 2022 08:43:40 +0000
ROA not before: Wed 24 Aug 2022 08:43:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 103.122.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2599 (0xa27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Aug 24 08:43:40 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F87F68DC83BA25DDCB44C37BAB58AC2225F8BCF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:41:11:10:4a:e7:7d:a3:71:2d:ed:cf:4a:
90:05:8a:ec:fd:9f:b1:6e:65:ac:e9:1b:7a:ab:df:
f7:5b:a1:27:59:6c:f2:3a:13:51:b9:ac:14:3e:ea:
2d:c5:da:c0:86:ab:02:d5:5b:c2:ed:96:50:26:19:
e7:b8:45:30:d4:10:0e:72:a0:2e:da:62:5a:1d:eb:
04:41:f7:71:fd:83:20:a5:73:3f:b8:6e:ef:c9:3b:
26:91:04:25:a3:ff:c7:3c:ae:ab:57:53:89:19:3a:
c9:34:c4:e1:f9:db:f0:14:da:4f:e2:25:9e:d8:cb:
8a:48:53:3e:23:57:88:b3:6c:ce:52:ba:51:e2:4b:
f1:33:3e:9b:c0:9b:4f:5a:91:88:d7:32:c6:89:1a:
49:ea:38:5d:7f:6e:df:ba:c1:10:87:d7:bd:a1:5b:
8a:88:36:bd:94:79:4c:c2:a3:8e:51:45:81:30:9c:
f6:75:bb:b7:55:1d:86:be:05:22:fb:e7:e3:31:d4:
17:12:1a:1f:ac:cd:51:03:7c:e9:82:15:35:3e:16:
08:05:a1:6d:bd:9c:3d:80:bb:b4:9e:98:7a:1d:3e:
78:18:ae:33:be:69:45:68:64:41:fb:67:4a:59:64:
79:f6:49:0b:3a:b1:df:34:0e:97:01:7e:1d:c5:0c:
f7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7F:68:DC:83:BA:25:DD:CB:44:C3:7B:AB:58:AC:22:25:F8:BC:F4
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/-H9o3IO6Jd3LRMN7q1isIiX4vPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.18.0/24
Signature Algorithm: sha256WithRSAEncryption
54:6e:54:26:71:91:63:9c:58:95:c2:9a:9e:aa:ee:00:78:df:
39:83:4f:2b:d5:44:7d:7e:b4:ad:23:7f:e3:23:06:72:61:10:
45:7f:91:7b:95:b8:6f:a8:20:e9:8f:36:c5:dc:51:18:2b:60:
70:c2:bf:35:d1:53:d0:70:66:70:8d:60:02:ee:81:12:7c:23:
1e:7d:99:27:08:8e:45:ac:61:0f:cc:1b:ad:0a:0b:3a:f7:dc:
05:cd:23:f0:6a:43:7a:10:bd:11:58:3e:26:03:9a:f6:54:fa:
82:3b:5e:24:6d:66:77:89:4a:9f:e7:60:98:81:33:6e:8f:73:
4b:16:15:0a:cc:e0:86:a0:5c:7e:6a:07:44:ec:1e:6e:4f:9b:
99:f1:96:81:05:ad:51:91:e5:c1:a4:da:b3:29:9e:39:ba:fc:
28:aa:13:c4:1f:f6:4e:1e:81:9a:09:7e:c2:52:2a:f6:d9:81:
c3:7e:16:bb:4b:98:19:61:5c:1e:28:f0:40:91:90:78:5e:a6:
34:0b:19:70:67:3d:31:d6:3a:34:4e:31:36:6d:a1:91:61:7c:
b1:33:1d:99:d6:c8:c6:31:5a:42:47:d4:8f:c8:06:7b:1a:f2:
f0:51:c2:09:1d:b8:8f:2e:c3:33:c5:b3:f8:c2:44:14:f3:8c:
b2:64:3e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:25 2025 by rpki-client