Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/pGjEeuA-Txl5UKbx1jTiccVyQcQ.roa
File: pGjEeuA-Txl5UKbx1jTiccVyQcQ.roa (raw, json)
Hash identifier: KgcKM4ksHOwvEUu1BPqDaW5NCzNFj9bF2Ry44hrqlBs=
Subject key identifier: A4:68:C4:7A:E0:3E:4F:19:79:50:A6:F1:D6:34:E2:71:C5:72:41:C4
Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99
Certificate serial: F0
Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/pGjEeuA-Txl5UKbx1jTiccVyQcQ.roa
Signing time: Tue 07 Feb 2023 08:35:15 +0000
ROA not before: Tue 07 Feb 2023 08:35:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63893
IP address blocks: 103.180.14.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99
Validity
Not Before: Feb 7 08:35:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A468C47AE03E4F197950A6F1D634E271C57241C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:e3:9b:8c:e4:fc:22:03:df:cc:cb:ae:eb:
7a:fd:e2:27:b4:47:98:37:11:e4:6b:24:1d:b9:b3:
2e:67:c8:61:f8:8b:13:1b:68:6c:10:22:ed:99:c8:
50:f9:16:e6:fd:83:3c:e0:fb:56:7a:56:d4:e4:f8:
8b:a7:fe:6f:20:ed:d9:98:5f:80:f2:13:33:6f:0f:
12:03:41:dd:d5:79:e7:a5:1f:6d:13:0b:57:9c:7e:
d6:55:31:2b:5e:8e:56:03:9a:00:e9:e1:2a:a4:b2:
c7:23:59:3e:00:b4:4f:e1:f6:9d:db:a6:b3:db:33:
4e:7e:50:d6:f1:13:ce:fe:cd:51:83:55:20:21:d6:
f3:50:74:45:14:21:96:1e:c7:57:03:90:c9:b9:dc:
34:94:cb:b8:67:06:79:23:cf:80:48:be:dc:56:61:
48:5a:fa:58:cc:ac:88:46:85:2b:25:4e:c7:c6:11:
ce:da:30:2b:de:e4:ed:41:c0:1f:f7:6a:69:56:4e:
b8:ee:b5:27:c6:e0:c4:e3:93:ea:1e:c1:b2:c7:8e:
e1:2f:ee:f1:ac:c0:63:43:d4:ab:37:d3:fc:b0:eb:
49:81:2d:f9:0a:ec:7d:35:42:8a:4a:97:ba:18:49:
d6:04:5e:5e:91:b7:92:3c:50:2a:26:42:b9:b1:57:
40:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:68:C4:7A:E0:3E:4F:19:79:50:A6:F1:D6:34:E2:71:C5:72:41:C4
X509v3 Authority Key Identifier:
keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/pGjEeuA-Txl5UKbx1jTiccVyQcQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.14.0/23
Signature Algorithm: sha256WithRSAEncryption
75:63:75:11:b5:be:1a:3f:58:29:e0:fa:c0:d2:1e:8f:2c:6e:
89:90:3f:2d:e6:c7:00:ee:79:3e:b0:2b:22:b8:88:07:8e:49:
69:2f:2d:ac:47:06:15:31:89:f5:89:88:a6:2c:c3:83:35:cd:
39:b9:ec:cf:19:56:5c:03:05:56:8a:0f:70:8f:37:b7:12:87:
b2:d4:dd:e5:c0:e4:85:9d:85:93:84:1b:c6:de:70:67:77:a1:
8f:b8:6c:56:2f:3d:34:bb:38:e3:96:f8:28:80:dd:f0:c2:fe:
14:9b:86:c7:d2:5a:7a:fe:0b:bc:25:fa:c9:92:23:0b:58:01:
2a:64:5f:1f:13:fd:48:a1:94:dd:37:86:51:33:e6:b8:09:a3:
34:52:62:5c:2b:38:e4:7b:b1:92:ff:55:a6:db:93:fb:80:18:
b2:8f:5f:c6:a2:15:04:0c:a5:f4:7d:05:a2:9f:e6:80:e9:fc:
04:75:11:9b:a1:ac:39:03:de:61:f5:90:d9:5d:5a:32:8e:87:
7c:a9:f1:4b:d1:57:90:dd:85:1b:73:a5:c8:07:56:83:1c:60:
db:32:82:9f:d1:17:b6:68:89:8d:02:8a:28:74:20:7d:d2:b3:
f5:cf:be:82:13:26:a3:45:20:ca:33:b7:5c:e5:4c:b6:a1:ea:
2a:e7:e3:41
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:04 2025 by rpki-client