Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/rmoGpdx5deP_ETGxsXD1sCZgxbk.roa
File: rmoGpdx5deP_ETGxsXD1sCZgxbk.roa (raw, json)
Hash identifier: xO0Q9uXem9211yAR2AYIAbsOjKKswIeSZKBx+0cJhEk=
Subject key identifier: AE:6A:06:A5:DC:79:75:E3:FF:11:31:B1:B1:70:F5:B0:26:60:C5:B9
Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3
Certificate serial: 1B
Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/rmoGpdx5deP_ETGxsXD1sCZgxbk.roa
Signing time: Sun 07 Feb 2021 13:13:14 +0000
ROA not before: Sun 07 Feb 2021 13:13:14 +0000
ROA not after: Wed 05 Jan 2022 01:37:26 +0000
asID: 131618
IP address blocks: 103.161.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3
Validity
Not Before: Feb 7 13:13:14 2021 GMT
Not After : Jan 5 01:37:26 2022 GMT
Subject: CN=AE6A06A5DC7975E3FF1131B1B170F5B02660C5B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:8e:f0:43:76:65:39:8c:1c:72:2f:15:e1:
12:54:31:12:cf:7d:cf:b4:71:db:b5:fa:26:16:1b:
30:af:18:d0:66:6f:b3:88:d1:0b:a3:5f:f4:9f:db:
4d:50:ea:be:4b:ee:45:e7:14:17:2d:af:cb:89:c7:
d4:38:0f:89:a8:35:31:37:13:79:71:84:26:8a:06:
06:1b:57:91:94:ac:61:6e:15:df:73:6f:7a:f4:28:
17:5c:eb:67:51:01:3f:74:0e:05:3e:1d:46:90:52:
da:dd:df:77:d2:8a:4d:b6:59:0a:d4:60:dc:fd:17:
95:21:bf:ba:d9:c7:ec:40:fd:f5:93:70:7c:26:57:
4a:5b:36:4e:3a:2c:62:91:4d:9c:3f:74:d3:d0:2d:
50:a3:32:48:7f:0f:e5:14:62:34:fa:14:f6:4b:9e:
58:d7:41:8d:3b:74:99:95:b5:99:bb:49:e3:cb:8a:
56:57:9e:9e:f8:d8:a2:15:97:ac:4c:2f:53:bd:66:
05:33:97:41:72:94:d7:ca:fa:be:58:b2:06:57:e4:
db:71:ee:bd:41:cf:9f:42:89:8b:53:83:82:3f:87:
f0:2f:e8:d5:cb:59:3e:22:19:e9:fd:e4:6d:e7:98:
ae:12:9c:df:af:b3:f2:de:be:c2:f5:f5:5a:fc:f4:
1c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6A:06:A5:DC:79:75:E3:FF:11:31:B1:B1:70:F5:B0:26:60:C5:B9
X509v3 Authority Key Identifier:
keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/rmoGpdx5deP_ETGxsXD1sCZgxbk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.6.0/23
Signature Algorithm: sha256WithRSAEncryption
45:58:1a:1c:fe:7a:7a:f0:00:64:6b:1d:ed:05:37:10:b6:3e:
23:3b:d6:3c:8a:e4:58:02:75:ef:fe:67:f2:54:17:3d:4a:21:
69:6b:cd:50:90:d1:5c:71:b3:a9:f2:54:26:c8:e2:20:7f:12:
eb:8c:95:89:89:08:f8:4c:25:43:02:c3:aa:d9:a3:dc:c2:78:
3f:fc:b6:d1:24:2c:78:4c:53:a4:b6:41:4a:40:26:19:db:b5:
c3:71:99:2d:2b:b7:bb:d9:70:4e:b5:cf:e0:f1:32:19:bf:cb:
49:51:25:ca:0a:2a:20:64:f4:26:75:2a:f7:46:2c:0f:bd:1e:
bd:e5:87:89:91:27:1e:bc:c0:49:4c:6a:13:0a:5b:8e:b8:b9:
6e:90:5b:8a:4e:10:ca:a3:84:69:78:b5:54:07:92:8b:a2:8e:
92:a0:e9:c5:91:c1:ee:f8:25:71:4d:36:74:e1:cd:4c:62:63:
3b:d3:4e:49:38:63:2e:26:53:87:45:a7:2a:10:4d:db:c4:9a:
a8:aa:c9:b6:0f:26:78:33:31:2c:fb:4b:ef:35:de:22:c3:56:
01:0d:0e:6f:8d:d6:87:3b:48:ad:51:da:55:79:aa:08:f1:d6:
bf:d4:aa:9f:fe:b1:c2:44:19:82:01:d6:ca:be:99:d6:33:2e:
71:3c:82:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:48 2025 by rpki-client