Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/hE67QqUler8RLZ5_dBGhFrdRGrA.roa
File: hE67QqUler8RLZ5_dBGhFrdRGrA.roa (raw, json)
Hash identifier: 4ktNJNKTEeQXTsX8+0NWhaNB4+r25Wp6WeiCl/wVxo4=
Subject key identifier: 84:4E:BB:42:A5:25:7A:BF:11:2D:9E:7F:74:11:A1:16:B7:51:1A:B0
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0753
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/hE67QqUler8RLZ5_dBGhFrdRGrA.roa
Signing time: Tue 29 Sep 2020 10:00:43 +0000
ROA not before: Tue 29 Sep 2020 10:00:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 103.122.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1875 (0x753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Sep 29 10:00:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=844EBB42A5257ABF112D9E7F7411A116B7511AB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cf:1a:cb:a6:75:96:8e:d7:0f:23:03:5a:43:
5a:ff:43:9e:9b:85:0b:d0:d1:c7:6b:88:cf:35:d2:
d7:5e:dd:b5:b9:94:43:e9:83:ff:5a:1e:73:3d:2e:
f7:8e:9e:58:62:cc:22:2b:34:2d:3f:b7:e4:bf:6c:
3d:c6:fb:a6:a7:ee:31:27:ef:e9:f1:b6:17:92:ec:
ec:20:24:d8:fc:08:cf:18:72:31:04:1c:f3:72:df:
2c:e1:06:37:0a:e1:a0:8e:ad:64:74:af:47:c8:b1:
97:84:03:19:0b:fa:d4:71:41:1c:3a:61:64:2d:c5:
19:0a:3f:27:1f:d2:d0:bb:a2:47:76:8a:84:46:49:
0f:34:52:df:25:a8:fe:4e:e4:04:6c:46:65:13:fe:
77:4b:99:fb:7f:d6:97:fb:27:6a:19:0a:60:92:8f:
9b:e4:6a:e6:bd:49:27:7a:83:6c:e8:20:07:78:49:
08:8b:8d:66:4c:ac:d8:88:82:e2:0a:13:fa:3f:4e:
df:a4:15:1f:c7:57:eb:a1:ca:15:24:0f:5f:93:b6:
39:5d:0c:76:f0:68:8e:22:65:58:d5:05:a8:aa:4f:
43:64:1b:53:6a:48:8e:e6:25:d3:43:74:0b:9a:ee:
3a:c0:02:4f:7e:86:0d:fa:1f:e7:6a:51:5c:32:34:
aa:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4E:BB:42:A5:25:7A:BF:11:2D:9E:7F:74:11:A1:16:B7:51:1A:B0
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/hE67QqUler8RLZ5_dBGhFrdRGrA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.17.0/24
Signature Algorithm: sha256WithRSAEncryption
63:80:0b:14:c0:c5:2b:bf:c2:4f:f2:7a:c7:c8:c7:78:d1:a0:
82:ed:50:7e:ee:60:eb:3d:45:bc:62:52:08:28:07:3b:55:33:
da:6a:a5:f6:75:86:82:51:08:d4:93:4e:f6:e2:d0:f9:28:87:
4e:a4:30:0e:67:2b:19:7a:3c:df:73:80:66:0d:f5:ea:12:54:
df:db:5a:02:58:7a:48:71:4f:60:b8:5b:54:ce:81:b8:14:36:
26:2d:6e:01:c2:57:ab:36:24:b4:ef:81:ec:f9:e3:7f:99:09:
3a:28:69:26:4b:9c:1c:ed:f6:23:b9:2c:20:16:5b:da:97:08:
6d:e6:a6:06:74:26:84:f6:3d:a0:de:d4:7e:c4:44:3d:90:43:
95:9b:56:f4:c0:88:1b:b1:84:c5:42:b5:b1:bb:6b:fe:d8:45:
8c:c7:82:a7:94:05:ef:8c:d4:ce:1e:88:9e:fa:12:e2:3e:9c:
02:8d:32:21:f3:c0:48:e0:fb:40:43:bf:45:7f:c8:2d:ef:18:
98:5b:c4:b1:0d:24:d0:9b:91:0f:38:20:7b:b1:8a:d6:d8:8d:
3c:58:ef:48:e5:14:fa:56:2c:b7:49:b4:87:d0:00:ee:ae:0c:
59:8a:85:61:1e:d7:de:bf:42:44:65:8a:af:c9:a3:3f:58:66:
76:53:d7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:08 2025 by rpki-client