Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/E3jGnkAq2KZhO2yL3Fg6ejLldfw.roa
File: E3jGnkAq2KZhO2yL3Fg6ejLldfw.roa (raw, json)
Hash identifier: xEMuw7wr0xDQdbPKuMkwj4xAalTX50QiI9Cs+G7g/CI=
Subject key identifier: 13:78:C6:9E:40:2A:D8:A6:61:3B:6C:8B:DC:58:3A:7A:32:E5:75:FC
Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Certificate serial: 05
Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/E3jGnkAq2KZhO2yL3Fg6ejLldfw.roa
Signing time: Wed 13 Apr 2022 03:54:09 +0000
ROA not before: Wed 13 Apr 2022 03:54:09 +0000
ROA not after: Thu 13 Apr 2023 01:26:39 +0000
asID: 63895
IP address blocks: 103.185.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Validity
Not Before: Apr 13 03:54:09 2022 GMT
Not After : Apr 13 01:26:39 2023 GMT
Subject: CN=1378C69E402AD8A6613B6C8BDC583A7A32E575FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:af:2b:aa:50:74:3c:ec:13:90:72:85:a5:ae:
b2:06:e1:41:89:55:e7:db:dc:11:1f:0b:98:f8:b6:
2a:59:95:d8:47:5b:7d:a2:70:ca:1e:b7:6f:96:4c:
a4:65:60:21:00:57:14:4b:57:c7:b9:6e:0d:f0:4b:
36:0a:99:d2:0b:30:9b:69:c1:6f:01:36:f4:7a:e9:
12:98:6a:d8:ab:5e:36:8d:78:0e:3b:db:49:01:c0:
13:f7:1f:fb:4d:2c:26:cf:06:ea:48:3b:b6:32:06:
c8:2f:de:c7:ae:be:c5:83:73:e6:bf:a3:ed:ca:00:
15:de:6a:08:0b:80:5e:e1:de:14:31:14:1b:5b:b2:
18:32:12:4b:39:0c:e4:3e:03:49:b9:d6:4c:0f:4a:
1c:76:f1:37:9a:b8:1b:a5:00:a7:8c:9c:03:73:b2:
03:c6:cd:46:70:e4:db:17:7c:a1:74:1d:47:e0:fe:
2d:62:2b:26:4e:44:80:41:e6:d2:75:fd:bd:7f:fd:
bf:2c:58:c6:42:0e:3d:1f:e1:57:da:f4:a9:62:6e:
0f:06:5a:74:72:50:dd:e0:42:db:ab:6a:aa:9d:be:
5d:13:34:0f:f4:3e:cb:30:4d:6d:fb:f9:5a:b2:11:
13:ae:4f:c0:ee:d2:9c:ae:c0:42:2d:ff:a8:3d:88:
be:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:78:C6:9E:40:2A:D8:A6:61:3B:6C:8B:DC:58:3A:7A:32:E5:75:FC
X509v3 Authority Key Identifier:
keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/E3jGnkAq2KZhO2yL3Fg6ejLldfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.29.0/24
Signature Algorithm: sha256WithRSAEncryption
34:38:fe:d4:d8:c4:86:35:55:8d:93:a5:c1:68:89:dc:50:e0:
ed:65:3c:3c:8d:e3:9b:51:4e:57:c9:97:0c:1c:09:91:c3:7c:
cf:ff:df:5f:e6:c2:74:2d:db:c3:65:93:cb:79:75:ca:4e:1f:
96:de:6a:61:f8:a2:d2:f6:23:dd:3f:24:c0:e9:8c:d8:92:03:
d0:4c:01:79:68:06:32:d7:7f:fd:fa:c3:34:83:b5:9f:0f:e5:
b4:19:07:00:32:78:f5:a5:98:fd:12:58:c6:22:79:3a:0d:44:
43:f4:c8:f1:79:2f:88:94:53:7e:73:7e:58:82:32:97:c8:1f:
bb:97:6f:bb:51:06:f6:bf:73:d4:bf:d1:5e:6f:19:ca:11:ec:
02:ba:96:e0:1b:fb:d4:77:b0:ca:63:ad:3c:aa:01:7d:1a:a7:
30:2f:68:9f:e1:19:80:c0:3b:b6:58:85:46:2f:8b:42:c0:a4:
0b:8b:c5:99:f9:f0:64:1a:23:7b:f1:00:22:39:4a:44:a7:5c:
fb:94:c4:61:66:fb:51:e7:12:1b:06:48:ed:e3:6e:8f:2c:fb:
e3:61:38:18:06:b4:50:56:09:6d:01:e5:d3:50:ad:6d:36:86:
aa:da:57:2a:d8:8d:19:82:15:0d:6e:ea:79:38:b4:38:6e:4a:
f1:11:d3:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org