Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ARY0med9_rG2rZxhaJAmrHorKkM.roa
File: ARY0med9_rG2rZxhaJAmrHorKkM.roa (raw, json)
Hash identifier: mh6iIwm3CYzSJnT+a2Mq2+BKxaoXag0IdcW1Aic0zd0=
Subject key identifier: 01:16:34:99:E7:7D:FE:B1:B6:AD:9C:61:68:90:26:AC:7A:2B:2A:43
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FBD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ARY0med9_rG2rZxhaJAmrHorKkM.roa
Signing time: Fri 01 Sep 2023 08:29:29 +0000
ROA not before: Fri 01 Sep 2023 08:29:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 203.163.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4029 (0xfbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=01163499E77DFEB1B6AD9C61689026AC7A2B2A43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b1:70:f2:fd:65:6b:b6:7f:1c:d4:bf:bd:c7:
d1:45:d1:4e:be:2a:bb:ef:46:0c:24:e5:7d:fe:8c:
21:f0:d3:ed:ac:c5:d9:8d:d8:a6:61:d0:87:57:00:
d1:fe:f7:1c:7b:58:8f:2f:e3:58:f3:b1:fe:9f:c2:
64:37:b9:11:e9:dd:ef:a3:88:e2:ee:d7:54:38:7b:
52:cf:0d:8b:7b:fb:55:d9:ef:c8:4d:9b:6b:eb:d2:
52:02:28:95:39:ef:35:95:0d:52:7d:71:f5:38:76:
b7:c7:3f:ec:98:c6:c8:37:e7:0c:22:3a:ef:ff:07:
a6:43:bc:84:64:21:ef:70:66:07:d0:a2:02:c7:48:
d2:c9:8f:69:63:d7:c1:9e:07:6e:9e:37:11:4a:be:
56:7c:f4:b1:bc:8e:cf:bd:49:62:e4:82:96:f8:c2:
98:77:01:9a:b7:29:26:b3:fe:e5:05:8d:da:ac:45:
8c:fe:5e:89:6e:c2:eb:bf:86:c3:6f:f6:99:bf:86:
c6:1d:63:e6:89:01:ae:ce:e8:1c:f2:41:2d:a8:1a:
f2:e8:47:7d:b0:37:d6:ca:d3:d3:ea:1e:8f:0f:b1:
d5:97:1c:a9:48:d9:f7:81:ba:79:f9:3a:d8:c9:b3:
a4:43:ca:e1:9e:80:15:fc:e4:da:2e:10:00:d7:50:
52:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:16:34:99:E7:7D:FE:B1:B6:AD:9C:61:68:90:26:AC:7A:2B:2A:43
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ARY0med9_rG2rZxhaJAmrHorKkM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.204.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:65:f9:b5:f9:94:e2:96:b2:96:9c:0a:30:b7:1f:8a:c5:13:
e3:1d:29:7a:2b:d1:0d:0f:fa:26:ea:a2:dc:17:54:56:f7:61:
4a:17:a6:f1:71:63:52:ef:56:12:23:f4:78:1e:e9:8c:ca:b0:
4f:d6:75:f8:71:65:51:1a:04:26:8e:82:60:84:87:3a:68:5f:
d7:87:61:44:47:23:dc:10:8e:be:f8:7f:a2:79:41:53:a6:a0:
e6:a0:4d:c3:36:6a:c9:c6:d7:5b:6f:6d:9f:d1:9a:8c:5f:09:
48:cb:3a:63:94:3b:08:2e:d0:d6:a3:d0:02:b7:7f:c8:3f:a9:
d9:59:bf:b6:49:a7:bb:64:b1:75:01:06:0a:ed:ae:42:93:08:
52:f4:c3:11:d2:27:c0:b5:54:2c:68:c2:23:e9:ee:e2:c5:a4:
9c:45:21:d4:cc:d6:dc:1d:46:02:99:46:71:21:db:91:36:be:
56:05:1c:42:23:a9:c2:3c:df:e9:95:1a:f8:07:4e:5a:17:22:
1c:4d:9e:e1:9a:52:4e:bc:c3:d1:ad:23:d1:d4:64:b6:30:4d:
bd:1a:c0:10:8d:df:89:18:1e:5a:4b:7f:b2:00:7f:f7:33:ce:
07:38:79:23:90:74:71:44:dd:34:9b:87:1f:f9:30:c6:d3:07:
c1:ad:bb:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:50 2025 by rpki-client