Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UDemUE4WWAsVxIqF5T519l_bRj0.roa
File: UDemUE4WWAsVxIqF5T519l_bRj0.roa (raw, json)
Hash identifier: NfVUM0qymiaV6DnjOqAEjSgmaQADhs7ylbVfRU1WLHo=
Subject key identifier: 50:37:A6:50:4E:16:58:0B:15:C4:8A:85:E5:3E:75:F6:5F:DB:46:3D
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: 0220
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UDemUE4WWAsVxIqF5T519l_bRj0.roa
Signing time: Wed 17 Apr 2024 08:35:47 +0000
ROA not before: Wed 17 Apr 2024 08:35:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38047
IP address blocks: 103.183.78.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 544 (0x220)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Apr 17 08:35:47 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5037A6504E16580B15C48A85E53E75F65FDB463D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:80:b8:66:e3:50:75:bd:ea:ae:99:d3:62:12:
d8:84:51:b6:4e:84:2f:6d:73:4c:30:08:81:33:03:
08:5b:ec:b2:a6:17:91:5a:73:8a:96:27:a6:a3:62:
f0:a6:64:fe:98:32:fb:60:51:3c:55:f7:ec:98:0b:
d6:59:4e:a7:65:a4:01:51:7e:3f:53:49:be:7c:5b:
9d:9a:00:d7:6f:70:23:bb:b9:f8:bd:f8:09:30:ba:
b1:7e:b9:91:29:73:30:e8:2c:fd:54:5e:c2:5d:6a:
01:a1:00:0f:ac:39:da:53:2e:44:f3:cf:01:64:1d:
a0:e9:02:54:83:02:2c:c0:aa:62:28:51:eb:69:c3:
34:f4:95:dd:e8:ce:47:40:61:a5:3b:63:24:23:13:
e0:94:7d:20:5c:b9:46:35:a0:35:bc:f7:dd:bc:62:
97:22:a7:2d:fc:65:45:1b:ba:f8:cf:23:82:41:d1:
dd:29:35:9d:99:04:70:95:67:ca:29:26:c8:ae:cb:
99:8f:68:c0:f9:b2:99:1b:1c:50:a8:70:2b:71:8f:
dc:a7:ab:54:79:70:f5:16:2b:ac:9e:e6:ea:34:79:
7a:c9:d4:8b:f6:9d:c5:85:cd:32:0d:8d:69:d9:e9:
3a:ae:ba:f6:91:0d:76:c2:7d:d0:fa:2d:94:42:a8:
d5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:37:A6:50:4E:16:58:0B:15:C4:8A:85:E5:3E:75:F6:5F:DB:46:3D
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UDemUE4WWAsVxIqF5T519l_bRj0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.78.0/23
Signature Algorithm: sha256WithRSAEncryption
02:21:ee:6d:b7:62:33:de:50:4b:fb:9a:af:70:79:f7:76:ef:
83:af:92:6d:5e:de:e3:c8:e5:ba:61:fc:6e:6b:91:fd:92:91:
f9:3d:ba:72:b7:f4:12:da:8e:af:a9:17:ac:2f:7e:58:13:1d:
d2:66:f6:4d:50:c5:f7:94:10:66:2d:b3:38:05:56:3f:0b:3c:
b9:cd:61:63:bb:18:fa:65:38:4d:28:8b:6e:e1:06:f4:4f:52:
82:b8:c5:61:28:03:2f:56:c1:83:d3:eb:51:2c:d8:14:c8:22:
10:c8:a5:2e:5e:96:06:66:94:b3:58:4a:92:6e:37:48:f7:51:
86:30:49:57:e9:69:60:74:48:12:b8:11:be:75:7e:31:b1:3e:
2b:07:f4:b6:0c:76:c8:b8:be:6f:f9:db:6a:76:84:a9:f1:49:
6b:a3:29:d0:40:2c:41:52:5c:f4:a4:a2:a6:18:c9:ce:7d:2e:
74:ef:7a:ac:a5:51:e5:a1:42:65:ab:6b:a1:df:a0:c3:ed:e5:
bc:5e:d3:39:b7:c3:1f:16:db:6d:3a:2d:f6:6f:50:35:60:fc:
b7:9f:d9:ae:65:42:84:07:6c:11:93:e9:d4:f7:65:89:ea:d8:
d3:23:31:64:59:29:bd:07:87:d9:a5:82:eb:10:4b:7f:81:d2:
56:7b:a7:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:41 2025 by rpki-client