Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASUS/_KJpUnnYf1eUS1FYGz89b9s7Ws0.roa
File: _KJpUnnYf1eUS1FYGz89b9s7Ws0.roa (raw, json)
Hash identifier: 7w5dHoI79sQZjnmNHtd4VAXFkasqoLwPtaPDt2rxTNU=
Subject key identifier: FC:A2:69:52:79:D8:7F:57:94:4B:51:58:1B:3F:3D:6F:DB:3B:5A:CD
Certificate issuer: /CN=786648F79BB79E1F0B0FF9039692F74E4F3CE1F8
Certificate serial: 0871
Authority key identifier: 78:66:48:F7:9B:B7:9E:1F:0B:0F:F9:03:96:92:F7:4E:4F:3C:E1:F8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eGZI95u3nh8LD_kDlpL3Tk884fg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/_KJpUnnYf1eUS1FYGz89b9s7Ws0.roa
Signing time: Sun 07 Feb 2021 13:08:06 +0000
ROA not before: Sun 07 Feb 2021 13:08:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1340
IP address blocks: 103.10.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2161 (0x871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=786648F79BB79E1F0B0FF9039692F74E4F3CE1F8
Validity
Not Before: Feb 7 13:08:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FCA2695279D87F57944B51581B3F3D6FDB3B5ACD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bc:c4:81:04:1f:8d:ec:9b:74:4d:22:f7:2a:
d1:c5:20:35:2f:d2:c0:35:a1:a9:e8:a8:31:f8:4b:
2b:f4:fb:21:f8:86:77:44:08:94:8d:07:08:42:09:
55:d4:d3:d6:4c:bd:1e:5e:9d:ed:74:08:2b:31:06:
d6:5e:98:27:47:f0:bd:6b:75:d5:ca:eb:09:d6:34:
b3:ec:1e:e8:3b:07:23:b9:ac:86:2e:77:91:14:67:
f3:02:af:12:7f:65:00:f3:68:94:7b:88:04:67:74:
9b:92:e8:bd:81:29:27:40:40:32:cd:8d:73:3c:37:
45:fc:35:2e:ee:63:65:89:e4:0b:f0:9d:55:58:b5:
08:18:a3:7e:02:8e:a1:c9:9d:ce:2d:45:ed:e2:c0:
a3:6f:0b:47:f1:9e:95:90:49:12:8b:77:61:f0:33:
55:88:53:ae:5b:18:0e:84:a0:d3:5b:3d:34:9c:82:
c8:24:4b:84:33:34:64:d7:82:e5:d4:df:ea:b8:4a:
7b:4a:14:cd:54:0f:92:8d:46:4e:80:c8:15:ce:ae:
dd:08:39:5b:03:62:49:a7:32:54:1e:0e:2d:9c:07:
cf:ca:b5:87:76:e3:b8:c7:98:f5:0d:2e:26:79:21:
c6:0c:e7:1c:32:73:44:85:89:da:3e:cf:20:65:63:
7e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A2:69:52:79:D8:7F:57:94:4B:51:58:1B:3F:3D:6F:DB:3B:5A:CD
X509v3 Authority Key Identifier:
keyid:78:66:48:F7:9B:B7:9E:1F:0B:0F:F9:03:96:92:F7:4E:4F:3C:E1:F8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/eGZI95u3nh8LD_kDlpL3Tk884fg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eGZI95u3nh8LD_kDlpL3Tk884fg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/_KJpUnnYf1eUS1FYGz89b9s7Ws0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.10.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:d1:e0:f6:0e:3c:dc:07:e6:4c:ea:b7:68:d1:eb:50:ef:1a:
19:f5:18:85:05:5d:e6:64:62:f3:f2:0b:e2:c4:fa:b6:01:74:
47:16:7f:a6:7b:62:10:e8:9c:1d:91:ad:93:14:cc:f5:b2:46:
f0:49:06:1f:a0:60:35:68:a4:a5:1c:07:5a:c4:50:3c:5d:83:
5a:f6:68:04:46:72:d2:09:33:7b:48:f1:0c:15:eb:fa:d9:0a:
b2:38:fe:45:6e:ac:77:a8:88:99:c4:59:7c:d1:8a:53:68:b2:
6f:03:a9:7c:d7:84:5d:16:de:ad:41:5e:66:22:ab:bd:75:40:
36:4a:7a:24:1b:15:85:8f:d1:ac:cc:7d:c1:b3:0a:b3:8a:f3:
7a:af:de:d6:6e:88:de:96:37:34:7f:df:49:3c:da:37:64:44:
0e:80:d4:68:cd:ee:0d:16:70:3b:5e:9b:09:6a:07:26:e8:40:
b8:6d:d1:a4:63:4b:3e:53:bf:ed:52:4c:8a:77:17:f6:2f:54:
a4:cd:f0:43:e7:22:77:d4:75:6a:29:69:37:76:3d:03:89:9e:
d2:e7:93:0b:c9:79:aa:04:7d:ab:50:7b:55:54:b8:d5:e0:c3:
05:d8:a3:cc:14:9d:89:45:1e:2b:42:03:27:38:10:be:aa:4d:
00:1d:01:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:26 2025 by rpki-client