Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/jX2p1ScLsMQZTlK31B7NR9p7NRY.roa
File: jX2p1ScLsMQZTlK31B7NR9p7NRY.roa (raw, json)
Hash identifier: /UazxvzkLBoIptFUqwFKqFOY5CSIEmO7c8siOPY5kNs=
Subject key identifier: 8D:7D:A9:D5:27:0B:B0:C4:19:4E:52:B7:D4:1E:CD:47:DA:7B:35:16
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 077D
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/jX2p1ScLsMQZTlK31B7NR9p7NRY.roa
Signing time: Tue 29 Sep 2020 10:02:54 +0000
ROA not before: Tue 29 Sep 2020 10:02:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1917 (0x77d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 29 10:02:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8D7DA9D5270BB0C4194E52B7D41ECD47DA7B3516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7b:36:5d:ee:b5:41:a2:21:d5:d7:53:4f:bb:
45:cc:81:c8:1c:af:31:48:85:87:1f:ff:48:3b:ad:
a1:4d:73:96:7d:db:63:06:a5:97:8a:f1:7c:d2:65:
d3:51:0b:07:8f:ac:66:74:ba:7c:96:24:02:4c:3e:
61:f8:a0:12:74:d5:73:c0:97:2b:75:ec:95:56:18:
f1:8b:f9:0b:d8:46:d2:5b:6e:d1:bb:b6:2c:3b:2d:
95:56:6c:bd:86:a5:7c:42:78:34:2f:24:2b:3c:c4:
2d:92:5f:63:c8:52:51:df:78:34:b9:49:c1:52:d6:
af:2f:21:6b:62:a5:06:c1:68:4e:ad:ac:7d:21:a2:
69:e3:7a:3d:f5:00:00:19:43:c4:41:be:64:ea:6c:
7a:c0:96:65:06:68:a5:80:a6:93:23:02:9e:38:75:
30:fd:55:50:ea:5b:4b:f3:26:18:86:77:ec:1f:fb:
13:b0:55:9f:9d:6e:ad:bb:b0:ba:ba:2c:da:53:a8:
e7:04:5b:b7:f3:bb:60:59:b0:6d:af:f9:47:74:19:
ea:4f:16:48:90:62:a4:31:cb:57:df:51:37:fd:5b:
a3:d6:dd:76:ff:f6:8a:c6:64:51:92:ff:82:7f:c1:
93:8c:c1:c4:84:e8:8b:8a:8d:06:e4:dc:e3:ec:43:
a1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7D:A9:D5:27:0B:B0:C4:19:4E:52:B7:D4:1E:CD:47:DA:7B:35:16
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/jX2p1ScLsMQZTlK31B7NR9p7NRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:3f:5d:af:57:6c:30:fa:cb:e2:8c:b0:33:28:17:a8:3a:58:
f3:0f:f5:fe:3d:41:a6:66:e4:a2:9d:a9:4f:ae:b6:30:01:1e:
30:5d:8f:dc:30:ed:af:73:f2:1f:c6:33:47:cd:0b:3f:92:88:
81:cc:27:26:3f:14:5f:ae:ec:4a:b7:1b:9e:f4:fb:ca:9e:61:
98:51:1e:7d:1c:b4:22:97:ed:72:fd:ef:5b:33:fc:a7:d4:b0:
6a:4c:da:ea:a8:0b:46:87:a2:5c:a6:a9:a6:79:a7:f0:3d:51:
9f:e0:9a:72:33:e7:0d:b3:bc:ca:6b:e4:26:49:eb:11:dd:7e:
43:23:76:12:80:87:e4:a9:ee:b4:7d:14:8c:30:51:09:d1:dd:
4e:c8:b1:e0:67:92:c1:e8:53:8c:27:01:ed:1c:95:42:ee:97:
df:db:e3:96:bf:41:89:ef:13:17:16:7c:41:0d:e4:e4:5f:60:
ae:38:f9:60:3f:9d:92:ad:a9:6e:02:b9:09:a1:3a:85:5c:9c:
03:ff:74:01:94:6b:24:07:7b:73:05:61:08:61:9f:6c:a7:a4:
43:68:fe:1f:5b:51:4f:13:98:45:56:14:94:a8:a7:f2:ab:5a:
a9:d4:6f:7d:d8:bb:4e:75:97:f5:4c:5b:89:75:6a:d9:5c:40:
ab:5d:1b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:33 2025 by rpki-client