Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/gWRYZxhaHtRmYUr6CGl_x7wK48k.roa
File: gWRYZxhaHtRmYUr6CGl_x7wK48k.roa (raw, json)
Hash identifier: WlFjGVqPp02ky65Y4jrKsuwo68ywLWZWjWvK6crxdhY=
Subject key identifier: 81:64:58:67:18:5A:1E:D4:66:61:4A:FA:08:69:7F:C7:BC:0A:E3:C9
Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Certificate serial: 07
Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/gWRYZxhaHtRmYUr6CGl_x7wK48k.roa
Signing time: Tue 11 Apr 2023 07:41:46 +0000
ROA not before: Tue 11 Apr 2023 07:41:46 +0000
ROA not after: Wed 03 Apr 2024 15:30:09 +0000
asID: 63910
IP address blocks: 103.130.236.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Validity
Not Before: Apr 11 07:41:46 2023 GMT
Not After : Apr 3 15:30:09 2024 GMT
Subject: CN=81645867185A1ED466614AFA08697FC7BC0AE3C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3b:23:d0:a2:b3:c0:4f:da:b8:b2:49:b5:09:
dd:bb:01:86:75:ed:e7:ea:1a:9f:d4:be:fc:d2:b8:
a8:55:f2:99:34:14:dc:c8:af:32:62:3a:fc:5e:fb:
fd:f2:51:15:7f:ac:6e:8c:94:98:ec:70:fd:ce:7d:
40:d5:e3:ce:d5:fb:12:9d:f2:83:dd:b2:d3:19:cd:
da:88:39:6e:1f:0f:b8:27:44:5e:f4:8f:78:dc:27:
2c:07:7e:df:11:93:cf:18:3a:f4:82:6a:9f:8d:3f:
16:80:59:20:da:86:0f:5f:ed:67:64:c2:b8:68:cc:
9d:ca:ac:3b:ec:8f:8a:24:75:55:91:07:1d:9b:c9:
2f:37:14:7d:6e:32:be:de:54:f3:b3:5c:f9:c1:20:
d9:12:7c:e3:6a:9f:2d:fa:3b:63:ec:3c:24:6a:55:
36:88:1f:ba:d5:d6:d1:45:ee:05:7d:91:89:7c:cf:
d1:1a:75:b1:96:a4:70:68:1c:b7:1c:03:3d:95:ed:
0c:2f:4e:de:e5:97:a4:ee:14:d5:0d:f1:d6:14:2c:
29:50:58:33:ac:37:d3:1d:24:39:a5:a9:eb:04:08:
1e:54:d3:bb:2b:43:4f:31:62:75:26:d2:8d:b1:26:
2f:6d:24:bb:d8:4d:7d:5d:05:33:c4:44:a0:46:eb:
57:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:64:58:67:18:5A:1E:D4:66:61:4A:FA:08:69:7F:C7:BC:0A:E3:C9
X509v3 Authority Key Identifier:
keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/gWRYZxhaHtRmYUr6CGl_x7wK48k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.236.0/23
Signature Algorithm: sha256WithRSAEncryption
44:a2:1f:60:4c:cd:4e:34:9b:16:dd:0f:c2:6a:32:00:8e:02:
2f:95:b5:6c:91:0c:d4:6c:65:78:13:10:26:5d:6c:8e:36:0e:
11:d9:bf:b7:c2:07:09:2b:2a:db:86:3f:94:87:49:39:ae:76:
80:e4:45:bd:1f:0c:ba:77:cb:8c:df:b7:61:e5:2e:b3:18:58:
07:6d:0b:0e:f2:88:27:7d:4c:07:8e:51:10:f5:61:32:2e:2c:
e3:11:d5:9e:90:c6:b4:9d:a4:1c:b2:b9:0c:7d:7e:35:61:39:
87:8a:80:39:18:35:d4:bf:98:bc:a5:00:f7:f7:b0:ae:0a:8d:
22:c1:36:41:45:30:c9:a2:c1:b4:23:2c:d9:f3:45:99:41:2c:
6e:2c:06:59:c1:5f:79:da:94:de:ec:76:27:0b:01:fb:4d:cf:
d4:d0:bb:5f:b0:ce:91:4a:bb:ab:2a:7d:f3:76:65:d4:27:eb:
01:54:a5:b3:a8:5b:29:b4:21:37:df:a8:aa:da:c6:58:3c:53:
a5:dd:e5:8d:cd:6f:20:fb:ba:ff:b0:7f:25:80:93:9e:23:2a:
83:48:03:00:fd:74:a0:ab:63:f9:f4:e3:07:c0:a5:03:82:4b:
5c:d8:62:e7:f2:d2:a2:76:d7:56:c6:b9:0b:5e:ef:b9:02:e6:
78:01:0f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:27 2025 by rpki-client