Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/IKG67xpiz6bjhtYeKNZcwmjiZmM.roa
File: IKG67xpiz6bjhtYeKNZcwmjiZmM.roa (raw, json)
Hash identifier: g/8dW+uPsv7z4GFyxuHi2iOUhokcbe7R3BWRqqH62Ro=
Subject key identifier: 20:A1:BA:EF:1A:62:CF:A6:E3:86:D6:1E:28:D6:5C:C2:68:E2:66:63
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0B76
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/IKG67xpiz6bjhtYeKNZcwmjiZmM.roa
Signing time: Tue 31 Oct 2023 07:32:23 +0000
ROA not before: Tue 31 Oct 2023 07:32:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 103.130.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2934 (0xb76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Oct 31 07:32:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=20A1BAEF1A62CFA6E386D61E28D65CC268E26663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:65:46:e2:80:98:22:2d:65:9f:ce:6e:19:28:
11:0a:e2:93:f5:7e:8c:82:1c:32:dd:b4:14:27:bd:
ca:21:2b:39:e2:5f:f5:89:fb:84:03:11:9a:35:a3:
da:28:f9:c5:9d:5a:da:1c:10:8a:b1:e0:4e:ac:c5:
c4:73:c8:bb:97:57:92:bf:c6:f4:9c:a1:b2:43:24:
cd:3e:5b:27:e3:ad:6e:b8:0c:09:da:10:ae:94:22:
8a:ec:14:28:35:04:04:b4:90:ed:4c:d5:28:93:52:
ff:97:05:69:3a:b4:52:a6:a8:d1:29:20:cb:6a:eb:
b6:69:e1:0e:c8:1f:86:95:71:64:22:d8:36:7f:e5:
d7:08:b0:ec:3b:1f:fd:08:b4:65:96:98:2d:2d:9d:
8c:5b:b4:62:c5:05:44:2d:fb:24:c2:48:03:69:2e:
7b:7e:4c:65:05:9d:c6:35:18:b1:b2:a7:32:5f:00:
5c:48:9f:c6:ba:34:a7:44:2c:d7:12:e2:0b:18:6a:
38:2b:8f:9e:52:7b:99:ea:db:56:58:34:bb:e0:84:
54:c9:b3:58:f7:ba:42:f5:69:41:da:c5:85:fc:c5:
6a:26:7f:d5:0b:ce:79:47:79:fd:35:c4:95:dd:d4:
ca:17:86:ca:54:67:35:de:9b:6e:39:65:31:2f:63:
57:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A1:BA:EF:1A:62:CF:A6:E3:86:D6:1E:28:D6:5C:C2:68:E2:66:63
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/IKG67xpiz6bjhtYeKNZcwmjiZmM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.20.0/22
Signature Algorithm: sha256WithRSAEncryption
39:f0:07:e7:36:f1:e6:07:85:6a:d2:7a:26:93:c7:3f:93:49:
7c:7b:33:a7:53:0e:55:2b:b0:34:ea:29:b0:0d:9c:d5:cc:59:
a3:a7:b0:3c:82:3a:99:94:11:a8:e3:a3:c5:08:fd:e6:ac:98:
ff:2a:84:83:69:6d:5b:13:6a:90:a0:25:2d:3c:5b:86:99:8d:
04:6d:ae:6a:4c:87:8a:f8:b9:d7:e9:fe:6d:08:52:df:bf:dd:
5c:54:23:32:66:8f:d8:09:e9:05:03:0f:46:06:9e:3b:be:32:
6f:47:8a:e3:e1:27:b2:4a:90:fd:f0:90:48:a9:47:cd:73:11:
21:82:b6:70:f5:35:e0:0b:b4:9a:39:10:23:ce:36:74:f8:e9:
8b:a8:ff:cb:dd:1e:43:6f:0a:36:8e:52:dc:d5:d1:58:7f:b8:
cf:f1:d0:95:90:f0:c3:29:84:86:e4:af:52:09:19:2c:70:aa:
47:af:28:b2:e8:eb:44:53:95:17:ad:46:70:5f:53:7f:43:99:
38:65:4c:1a:f9:d6:6e:17:d7:a7:64:0e:62:e2:b8:50:fb:b2:
ef:36:f4:60:b3:59:2d:5b:1e:cf:d3:93:9f:85:1d:2d:3a:cf:
25:01:3f:94:6a:db:79:d0:9f:08:d9:37:c8:47:4c:b8:f4:7c:
fc:1b:07:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:23 2025 by rpki-client