Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYVC/oMq3dQdoBsiAZukWmy9HK-RUcWY.roa
File: oMq3dQdoBsiAZukWmy9HK-RUcWY.roa (raw, json)
Hash identifier: /T6ByCLPM5nqvufaOKWjn3DWY9rzPC7Fgd1E6W9y1Sg=
Subject key identifier: A0:CA:B7:75:07:68:06:C8:80:66:E9:16:9B:2F:47:2B:E4:54:71:66
Certificate issuer: /CN=370F3943433AD963E299A9BE9239D0F3E37A082A
Certificate serial: 03
Authority key identifier: 37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/oMq3dQdoBsiAZukWmy9HK-RUcWY.roa
Signing time: Wed 23 Mar 2022 07:16:42 +0000
ROA not before: Wed 23 Mar 2022 07:16:42 +0000
ROA not after: Tue 21 Mar 2023 07:02:52 +0000
asID: 7483
IP address blocks: 103.183.154.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370F3943433AD963E299A9BE9239D0F3E37A082A
Validity
Not Before: Mar 23 07:16:42 2022 GMT
Not After : Mar 21 07:02:52 2023 GMT
Subject: CN=A0CAB775076806C88066E9169B2F472BE4547166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:1d:6e:29:a4:91:b3:0d:f6:72:bc:14:13:5a:
d5:25:4d:13:fd:9f:d7:20:c9:a9:27:50:b6:37:09:
e1:79:dc:ef:41:bc:e0:3d:f4:8a:c6:55:07:bb:c7:
f5:23:3a:01:f0:ad:f7:59:64:76:28:5d:f9:0b:51:
a4:4a:14:ff:35:43:47:85:63:22:6c:ef:57:a9:dc:
68:55:3e:2e:49:0c:c4:b4:87:9f:a6:73:c9:cf:e7:
90:87:3c:ae:6f:86:7d:57:54:f9:ff:eb:8b:59:e6:
ed:e1:9b:df:e3:4f:fe:02:bd:6f:9b:f8:13:b4:f5:
45:62:3e:9a:31:a1:c6:ee:97:ef:23:b4:51:2e:49:
aa:6c:8c:a9:60:e5:0f:55:00:9c:64:cc:7d:be:00:
37:f0:f2:fc:d6:3a:cd:0d:9d:eb:dc:5e:80:b3:b2:
3b:fd:77:a5:de:c1:85:5d:be:49:44:00:17:c3:ee:
23:e4:3c:3d:51:76:81:48:46:f1:2b:5c:9e:10:75:
31:1d:4c:ae:b9:6a:1d:5e:01:c7:46:2a:38:bc:92:
8e:6b:bc:ad:d7:70:3d:f8:83:e0:ea:10:36:0a:b6:
54:11:d5:b9:88:61:75:6e:90:bc:30:a7:0c:20:0b:
af:fa:ce:fe:b2:52:f5:7e:bd:ad:3a:0b:66:bb:a4:
56:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CA:B7:75:07:68:06:C8:80:66:E9:16:9B:2F:47:2B:E4:54:71:66
X509v3 Authority Key Identifier:
keyid:37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/oMq3dQdoBsiAZukWmy9HK-RUcWY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.154.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:56:4d:de:5b:a4:ea:1a:0c:3f:e9:ca:42:cb:7d:c9:ba:0a:
79:46:d6:4a:fa:d8:40:2e:db:20:b2:aa:b9:f0:91:bc:d7:2a:
7d:6b:63:82:be:32:ee:9f:07:52:47:c6:2f:62:09:71:58:ab:
30:9a:be:16:8d:a8:f8:a0:2f:79:58:27:97:9e:5e:01:b6:52:
a6:d1:19:4f:69:b1:6a:63:f5:68:89:b6:62:5d:f0:a1:9f:ed:
26:8a:55:61:af:be:8a:7b:c1:a1:89:5f:f6:93:a9:d5:bd:a0:
0a:3d:89:4e:a2:fd:ce:54:e7:18:26:57:13:91:91:ec:20:bb:
63:b4:ae:c9:84:e2:8c:31:f2:fc:98:8b:54:df:05:7d:1b:01:
c6:55:72:70:c5:fc:b8:eb:56:ad:a7:a3:5d:3d:e9:4b:a5:88:
2c:38:96:a5:a2:c4:7f:ac:63:d7:f1:4c:f2:0a:c2:1a:df:25:
04:a3:ba:2b:65:4c:a5:90:09:53:c6:73:7d:96:ac:be:bf:96:
d6:ff:a7:50:97:ee:ee:dd:16:67:38:47:f2:62:23:f4:21:52:
e5:44:d2:ec:44:4d:b1:44:5a:78:92:f3:b7:ea:f6:35:90:a2:
2d:a4:9f:89:ee:53:2f:86:f3:97:e0:d0:86:b6:d6:b7:e2:37:
40:6f:1f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:42 2025 by rpki-client