Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/LdBXARfOfq3vtDJIM8sSLPJCN-c.roa
File: LdBXARfOfq3vtDJIM8sSLPJCN-c.roa (raw, json)
Hash identifier: 8XgH2H05XdvMaSF3NFDBkcaXy3h3OnyHP7ccC4OQPCI=
Subject key identifier: 2D:D0:57:01:17:CE:7E:AD:EF:B4:32:48:33:CB:12:2C:F2:42:37:E7
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0B74
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/LdBXARfOfq3vtDJIM8sSLPJCN-c.roa
Signing time: Tue 31 Oct 2023 07:31:58 +0000
ROA not before: Tue 31 Oct 2023 07:31:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 103.130.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2932 (0xb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Oct 31 07:31:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2DD0570117CE7EADEFB4324833CB122CF24237E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:65:86:4c:35:92:be:31:c4:ce:0d:ca:9d:cc:
71:59:2a:3f:82:a0:9f:52:c7:ae:f0:e6:ce:00:75:
bf:d2:59:2b:32:84:84:a3:b8:00:87:92:bb:53:85:
2d:90:d3:92:f2:06:d6:94:9c:cd:51:72:dd:53:0e:
90:44:8f:15:12:0c:bd:7e:ef:03:40:49:23:d2:43:
b2:96:c6:9a:54:7d:54:1a:eb:2a:e3:b0:bc:b3:da:
61:42:3b:5c:d5:24:be:43:f9:6c:dc:a4:51:04:c6:
0c:fa:d0:1f:fc:65:64:15:e4:cc:38:16:bf:d0:8b:
df:db:29:d7:db:bd:17:0d:45:7f:60:c5:de:4d:85:
52:43:db:cb:2b:43:f1:93:d9:19:f1:d4:bc:79:4e:
73:36:cf:91:bc:d3:7d:33:cd:1f:59:ad:d1:9d:c7:
09:1c:e4:bc:73:51:25:1c:8b:56:1a:d4:be:e5:ae:
04:ba:d3:9b:81:f0:14:af:db:04:9d:d6:8d:04:87:
cb:cb:5b:fd:d0:ce:67:4b:75:70:bf:f6:66:7c:54:
25:a4:05:5a:7c:9b:19:6e:90:a1:7a:02:37:15:43:
46:d6:04:57:31:6a:73:a8:ab:4f:0f:18:30:f1:41:
71:93:09:61:91:1d:53:eb:0e:1c:17:0f:33:ef:a2:
3b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D0:57:01:17:CE:7E:AD:EF:B4:32:48:33:CB:12:2C:F2:42:37:E7
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/LdBXARfOfq3vtDJIM8sSLPJCN-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.44.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:d5:92:96:96:fd:7f:96:31:ae:98:9a:de:aa:d5:4a:eb:96:
b5:88:c1:8e:7f:5e:26:dc:6f:68:0f:bf:06:22:8f:e3:53:0f:
88:0f:7a:57:c0:28:5c:b9:ae:f1:32:79:cb:e9:04:5f:34:a5:
38:06:83:25:4f:f8:57:ef:bc:99:06:94:45:a4:bc:d9:85:6e:
c0:aa:77:e3:5d:9e:26:07:7a:7b:f8:ef:97:b1:f7:30:40:02:
7b:55:2c:20:1c:5a:e0:70:72:3f:ed:d2:13:40:6b:eb:7b:b2:
c4:00:95:91:bf:15:9d:f3:77:e4:21:be:52:b2:44:fb:b4:4b:
cb:9c:46:7d:92:46:8e:29:6b:ea:65:83:f0:37:78:3a:1d:e2:
16:54:7c:3a:79:a8:91:0b:de:13:5d:35:8d:5b:44:a7:0c:a3:
55:3b:75:01:c9:3a:0d:ab:0b:b1:51:84:c6:59:ae:ca:d1:a4:
db:76:40:81:21:60:26:2a:f5:09:31:73:9b:b0:5c:85:12:23:
2c:77:88:82:3f:8d:d8:72:f7:dd:ea:69:7d:7c:6b:ae:13:05:
e1:40:7c:ce:24:33:5e:fe:ad:0c:ba:b9:9b:42:54:59:7a:6e:
bf:55:d7:6f:2e:50:bc:d6:cd:af:d4:06:97:bb:b6:97:06:73:
9f:c6:1b:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:19 2025 by rpki-client