Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CTII/dcQ-947kKYGLQgIrWF-gmrO0HEQ.roa
File: dcQ-947kKYGLQgIrWF-gmrO0HEQ.roa (raw, json)
Hash identifier: DJJbab+THiv353z8PbHFk2N8KdG7To8yP1JvnvbgWmE=
Subject key identifier: 75:C4:3E:F7:8E:E4:29:81:8B:42:02:2B:58:5F:A0:9A:B3:B4:1C:44
Certificate issuer: /CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Certificate serial: 1095
Authority key identifier: FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/dcQ-947kKYGLQgIrWF-gmrO0HEQ.roa
Signing time: Fri 16 Dec 2022 15:11:46 +0000
ROA not before: Fri 16 Dec 2022 15:11:46 +0000
ROA not after: Fri 15 Dec 2023 01:35:19 +0000
asID: 135391
IP address blocks: 103.130.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4245 (0x1095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A
Validity
Not Before: Dec 16 15:11:46 2022 GMT
Not After : Dec 15 01:35:19 2023 GMT
Subject: CN=75C43EF78EE429818B42022B585FA09AB3B41C44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e0:3c:87:e6:3a:05:dd:53:bc:34:1e:59:59:
49:47:71:31:9c:17:13:fb:73:4c:d7:ad:8e:34:c5:
e7:41:9b:87:e6:bd:5a:76:29:ae:67:26:f6:1c:2b:
f8:db:ec:56:4f:90:f3:d3:2c:bf:f9:b8:16:4b:cb:
68:32:df:43:31:cb:5f:c7:0b:10:41:02:69:61:68:
f0:c9:9d:e7:39:84:22:ba:36:2c:f4:52:a8:39:e8:
03:b2:ad:9d:4a:b3:76:a9:9f:77:95:cb:2e:c9:95:
32:7e:a0:21:9e:2a:7b:f8:c3:0b:ed:77:d6:e0:39:
ef:a5:e5:36:86:c8:83:15:fb:40:22:0e:5b:4d:bb:
38:50:05:3e:f4:3d:f2:12:72:41:39:46:02:75:a7:
51:99:17:9d:b6:3a:54:2d:c6:cc:e3:04:f1:34:54:
d3:01:0e:69:74:16:5c:e5:7a:ad:54:ce:11:07:81:
c7:72:a0:37:98:b7:4a:5b:a0:c3:d6:66:3c:ef:40:
43:86:97:db:2e:96:ab:29:7a:fa:95:7b:1c:d5:cc:
dc:4a:92:22:42:db:7b:48:ca:ce:97:77:11:36:af:
8c:82:cc:a6:69:63:a0:b1:5d:69:f5:5d:36:f1:b5:
6f:49:63:7e:72:a5:0b:ff:1e:30:40:2e:11:e1:1d:
27:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C4:3E:F7:8E:E4:29:81:8B:42:02:2B:58:5F:A0:9A:B3:B4:1C:44
X509v3 Authority Key Identifier:
keyid:FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/dcQ-947kKYGLQgIrWF-gmrO0HEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.248.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ef:94:ba:13:49:d7:af:59:6e:43:79:d0:8d:49:6a:3a:b0:
27:9a:29:6e:95:72:f3:46:c4:8b:d2:db:13:32:a4:19:ed:7e:
30:c6:0d:ea:2c:ac:13:69:53:b4:22:7e:06:f7:cc:c3:6a:7a:
e6:fe:29:0c:78:00:4f:2d:4a:4f:aa:78:a7:91:bd:65:51:26:
25:e8:3f:82:bb:cf:52:3c:95:47:da:f8:52:3b:a6:95:8c:b8:
22:e3:fa:ef:01:84:58:36:6e:21:eb:d8:ac:a6:16:16:3c:af:
b3:50:3e:79:4c:5e:e1:37:ea:d3:6b:23:cf:81:95:9b:78:ff:
4f:4f:29:bf:c7:ef:35:1c:6d:9a:99:c9:5a:a6:87:d8:35:8a:
44:18:1d:9d:da:7a:ea:42:f0:84:bb:49:e4:ad:33:4d:7e:96:
48:26:1c:a1:17:a9:1c:68:70:90:28:31:2d:83:58:6b:28:00:
9f:98:b7:81:50:3f:3f:e9:7d:76:f1:be:f8:c3:f9:49:4c:9e:
1e:73:cf:69:33:7b:fe:71:04:e2:98:eb:bc:21:fc:68:98:b0:
88:6f:61:de:b8:78:cb:b2:f2:c3:53:cc:4f:5e:06:e1:09:5a:
c9:bc:1f:27:66:29:83:58:b3:01:e7:fb:2e:31:e6:fd:8a:97:
31:6f:ed:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:51 2025 by rpki-client