Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CTII/6awpbUAWNj6TMffoMXE0JweGTns.roa
File: 6awpbUAWNj6TMffoMXE0JweGTns.roa (raw, json)
Hash identifier: 9sC2tELS0x1GC15SSJC0stQVHamYNIs2E0WgGnSNlXc=
Subject key identifier: E9:AC:29:6D:40:16:36:3E:93:31:F7:E8:31:71:34:27:07:86:4E:7B
Certificate issuer: /CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Certificate serial: 10C0
Authority key identifier: FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/6awpbUAWNj6TMffoMXE0JweGTns.roa
Signing time: Fri 17 Feb 2023 06:48:51 +0000
ROA not before: Fri 17 Feb 2023 06:48:51 +0000
ROA not after: Fri 15 Dec 2023 01:35:19 +0000
asID: 137443
IP address blocks: 103.130.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4288 (0x10c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Validity
Not Before: Feb 17 06:48:51 2023 GMT
Not After : Dec 15 01:35:19 2023 GMT
Subject: CN=E9AC296D4016363E9331F7E83171342707864E7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0a:30:e2:15:c9:69:2c:2c:67:80:13:fd:cd:
1d:00:b5:13:e4:fd:fd:7f:92:3a:90:74:47:b4:a1:
ba:84:40:5d:0c:34:11:93:54:7e:30:ed:f7:b5:2d:
7c:b9:a6:56:06:46:e1:c3:7a:5c:5a:5d:12:12:fd:
23:b7:20:45:67:9d:00:0e:98:a8:d5:e6:6e:de:06:
a3:68:27:16:2c:ba:8b:af:9d:ec:68:86:36:81:6e:
31:e3:44:b3:86:ee:01:e7:a0:af:6e:47:be:47:1f:
34:42:59:0c:db:d0:ee:39:7a:74:6b:09:9d:e2:a5:
9a:24:41:3e:d8:64:88:54:67:28:1a:ac:ee:d3:6e:
6b:dc:1c:35:76:b4:a2:b0:02:62:ed:a0:11:4a:db:
d1:a7:31:91:ef:e5:67:ad:70:3d:25:43:ba:5f:a2:
5d:81:ff:e2:94:6c:47:79:84:14:d0:e2:72:25:d5:
2d:c6:e3:c8:a2:41:39:96:48:04:64:3f:54:44:0d:
0a:37:83:8c:78:3c:a2:14:43:98:ad:0b:0f:79:cf:
b2:c6:b3:28:f2:ab:b0:e8:fb:bb:ba:7c:22:d2:72:
ad:0f:e7:12:06:e1:71:82:b8:eb:77:35:8e:65:81:
9a:b7:b3:39:0a:95:08:c3:40:cc:c9:59:1a:21:d0:
87:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:AC:29:6D:40:16:36:3E:93:31:F7:E8:31:71:34:27:07:86:4E:7B
X509v3 Authority Key Identifier:
keyid:FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/6awpbUAWNj6TMffoMXE0JweGTns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.249.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a9:74:07:78:b5:84:ec:e1:b5:a9:ee:eb:10:ca:5f:4e:0f:
16:dc:88:26:d4:84:39:d0:49:dc:af:f4:b2:01:5d:1c:3d:b2:
ac:9a:8c:4e:14:77:72:30:43:e8:83:5a:dc:11:bc:bf:3c:55:
62:dd:64:cc:e7:21:3a:dd:56:ca:9f:67:50:c9:4b:51:58:af:
f0:d9:c3:9c:13:0c:b2:a2:a2:34:be:01:2f:2f:f8:fc:92:fd:
91:b9:9a:05:8c:2a:c9:48:67:b0:47:ac:b9:60:90:4c:48:37:
b4:c4:16:73:3d:d1:66:76:0e:1a:cd:da:12:7f:1d:2a:39:af:
a0:68:5f:94:74:c3:30:7d:b7:ff:c3:db:3d:09:e8:ae:85:7d:
27:17:27:26:73:d3:6c:62:5e:11:d5:8a:90:05:13:3a:bf:a4:
ba:cb:a6:89:9c:1a:99:da:f4:c6:5a:64:82:00:e8:8d:c2:fd:
19:27:62:cb:3f:e0:bf:c6:ee:de:a4:f5:64:46:10:0f:17:15:
f5:11:a4:dd:1c:41:fa:2f:df:2a:86:76:1f:40:9d:48:9f:ef:
8f:6d:ba:36:e8:47:0d:7a:60:fb:fc:c5:14:17:ce:5f:b2:67:
2c:a9:36:db:3f:0d:04:62:6d:99:c3:74:3f:e8:c7:58:bd:e2:
75:66:5a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:44 2025 by rpki-client