Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CTII/RH3nE7SYdp-9jV2z75AGDK1I6vU.roa
File: RH3nE7SYdp-9jV2z75AGDK1I6vU.roa (raw, json)
Hash identifier: bTKF6/dpHGiVCRxOYWsccAtU5MdsK4dRpad4u5A0h+U=
Subject key identifier: 44:7D:E7:13:B4:98:76:9F:BD:8D:5D:B3:EF:90:06:0C:AD:48:EA:F5
Certificate issuer: /CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Certificate serial: 113F
Authority key identifier: FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/RH3nE7SYdp-9jV2z75AGDK1I6vU.roa
Signing time: Sat 19 Aug 2023 07:13:44 +0000
ROA not before: Sat 19 Aug 2023 07:13:44 +0000
ROA not after: Fri 15 Dec 2023 01:35:19 +0000
asID: 984
IP address blocks: 103.130.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4415 (0x113f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Validity
Not Before: Aug 19 07:13:44 2023 GMT
Not After : Dec 15 01:35:19 2023 GMT
Subject: CN=447DE713B498769FBD8D5DB3EF90060CAD48EAF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:34:af:96:ae:6a:b3:d9:e9:9a:17:89:0d:30:
e0:69:d3:b6:ef:85:d6:e0:9d:e2:9f:1c:9c:64:58:
29:b2:2d:4d:41:8e:fc:af:10:01:8b:9d:ef:7d:50:
42:11:61:b9:0f:b4:4e:2f:b5:a3:02:ad:98:dd:ce:
fa:c6:da:d8:3c:76:51:3a:45:59:f2:a2:d9:8d:7a:
79:7a:57:81:d7:d5:c1:c0:e8:f3:b6:99:21:1e:68:
9d:ba:9f:a5:82:ba:d7:d1:f2:10:55:a1:1c:66:de:
88:80:b8:5a:05:3a:9c:77:5b:dd:f7:a2:2f:49:20:
d1:2c:22:ea:f7:57:2a:85:e7:0e:ae:6c:d3:f1:b8:
57:d5:48:7b:97:cb:1e:9e:38:7a:fb:bd:98:a9:51:
56:b3:b2:6c:35:d3:22:51:9a:a5:6d:13:ce:1b:e5:
09:f4:44:4c:1f:3b:b6:79:b1:03:c7:6b:20:54:b8:
29:2d:72:e3:e1:d1:52:52:1a:34:e1:c8:58:49:99:
fb:f1:cd:d7:73:f8:15:12:fa:f5:66:dd:e8:a5:bc:
89:fa:91:e1:ee:2a:9f:be:9f:8c:c2:58:8e:16:b3:
8d:35:81:f4:ea:6c:28:93:dd:4e:74:9e:0b:3f:da:
2f:2b:d7:29:0a:31:94:33:c0:e9:3e:2d:52:3c:65:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7D:E7:13:B4:98:76:9F:BD:8D:5D:B3:EF:90:06:0C:AD:48:EA:F5
X509v3 Authority Key Identifier:
keyid:FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/RH3nE7SYdp-9jV2z75AGDK1I6vU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.249.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:40:7d:ae:33:55:0b:67:d9:05:bf:db:a2:5c:4b:0e:0a:9f:
14:88:60:4d:4c:d2:34:e2:d7:a2:8a:de:40:24:11:b6:d2:e5:
92:a7:d9:9a:7c:d5:d5:70:51:66:50:7b:3a:2c:36:68:85:b1:
24:98:1f:7d:64:a8:ea:da:87:3a:6e:ac:a6:cf:35:d7:f7:ba:
89:7b:79:0d:49:11:81:4b:3f:3c:67:fb:eb:76:7d:03:a4:d5:
5b:33:93:29:aa:d2:07:69:a4:ff:7b:49:f7:dc:fb:90:22:27:
63:9c:a6:de:60:4f:a8:f3:66:2b:ab:27:94:0a:14:e0:c2:17:
21:d9:4b:64:80:20:bd:fc:6f:76:2f:94:0e:46:35:98:6e:6a:
b1:e4:44:77:7e:92:ea:ed:12:de:90:9c:a1:03:b1:e9:34:8d:
ec:57:2f:4b:2e:00:b7:e9:e4:1b:c6:11:0e:30:a5:a9:90:d5:
12:1a:6c:0f:85:ef:57:ff:46:ae:fe:cf:9a:f9:4e:88:4c:eb:
65:3f:81:68:b0:33:88:83:be:eb:fe:b6:eb:1f:1a:06:ef:0e:
61:01:cd:2f:5e:4a:dd:dd:b1:fb:57:63:f8:5c:63:24:bb:b6:
ba:96:79:ec:46:ca:08:ec:4d:59:a9:06:a8:8f:27:3c:79:90:
12:81:34:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:07 2025 by rpki-client