Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/wJfqluXHbtB4-571dK1eB8kW0BM.roa
File: wJfqluXHbtB4-571dK1eB8kW0BM.roa (raw, json)
Hash identifier: 4F8XpTPumXSeB5SPl6SIW5idcGoz8McWyB9ngx9yjhM=
Subject key identifier: C0:97:EA:96:E5:C7:6E:D0:78:FB:9E:F5:74:AD:5E:07:C9:16:D0:13
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0930
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/wJfqluXHbtB4-571dK1eB8kW0BM.roa
Signing time: Wed 29 Sep 2021 02:53:06 +0000
ROA not before: Wed 29 Sep 2021 02:53:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 103.122.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2352 (0x930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Sep 29 02:53:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C097EA96E5C76ED078FB9EF574AD5E07C916D013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:49:91:13:bb:5f:bf:97:6b:ad:2c:ae:b3:9c:
98:3d:ae:59:4c:fa:6a:96:47:46:d3:fb:ae:9b:ff:
ea:19:93:ef:24:b1:c3:d4:b4:87:39:7c:09:33:fd:
cf:3a:a4:20:27:38:59:07:36:d7:7b:7d:05:bb:11:
85:5f:1e:73:48:66:13:4f:60:db:58:91:31:4f:c9:
d7:16:da:37:db:ba:52:75:1c:9e:6e:df:79:7d:57:
bd:d1:98:27:cf:7d:69:68:ce:fb:98:67:aa:a3:49:
bc:18:ff:a7:64:64:76:f9:4b:c2:a4:e8:ec:52:29:
cb:ae:5d:c7:d5:18:9e:01:59:9b:16:fd:36:64:b2:
d2:c6:41:1c:d8:ec:03:e2:ee:38:e3:be:f5:36:85:
32:6a:1d:4d:f5:76:5b:84:12:36:5c:99:2f:64:e5:
64:53:83:22:6b:20:67:62:ec:05:eb:4d:88:65:70:
06:74:f6:65:9d:13:a2:24:db:d2:05:3f:47:b1:41:
9e:70:d8:b3:7a:9d:d2:aa:7e:ca:e1:7f:1a:b1:c3:
ee:bd:d6:28:d1:ec:6f:15:47:1b:92:d6:3f:43:f8:
1a:b3:2f:44:b7:b0:e7:75:ed:e4:2c:7d:65:d2:d3:
c1:69:c3:a0:b3:f5:bb:9c:55:20:70:5b:7f:27:5b:
0f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:97:EA:96:E5:C7:6E:D0:78:FB:9E:F5:74:AD:5E:07:C9:16:D0:13
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/wJfqluXHbtB4-571dK1eB8kW0BM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.16.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:a9:93:6b:a0:22:17:a6:8c:72:3c:aa:6c:a2:18:12:c7:8e:
ae:9b:bd:64:42:cb:7a:f0:ca:ec:34:d5:69:5f:eb:01:ce:8c:
51:7c:d1:89:09:b3:bb:de:b1:ba:3f:a8:84:a5:33:a3:c2:d4:
da:a7:49:c9:f9:5b:09:24:ea:a0:77:3a:8e:1a:a9:00:0f:f6:
54:17:c0:2d:68:83:82:7e:e9:e6:57:37:eb:f3:d3:ba:c4:b3:
16:0f:4b:97:25:65:aa:17:58:2a:67:2a:9a:46:4a:e9:fd:2f:
ce:20:2c:6f:cd:48:c7:b3:1d:e2:87:8c:79:6a:3b:fb:96:fe:
66:43:51:33:49:6b:53:66:bc:77:6c:e4:2c:1f:01:3b:09:ea:
91:8c:92:f2:08:b3:b5:62:5e:79:51:b4:b4:d7:97:f5:e7:86:
32:17:ef:78:bf:75:ed:5f:c6:cb:5b:11:14:b8:fe:f8:e1:31:
dc:29:38:fb:96:00:b5:06:d5:a1:29:04:a0:6e:14:98:22:7d:
d6:a0:a2:d7:ec:07:1c:3d:6a:10:6a:9d:8d:7b:4b:7f:be:82:
61:9f:71:1b:00:a0:d0:f6:65:c8:59:f8:1d:8c:5f:12:f9:45:
30:3b:c0:d3:e1:c1:60:0d:2c:56:e4:ea:db:7c:aa:a9:19:af:
51:7f:45:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:09 2025 by rpki-client