Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/SYAJ8k6KAtpQfreAWjol8AiloH4.roa
File: SYAJ8k6KAtpQfreAWjol8AiloH4.roa (raw, json)
Hash identifier: 1KqyNZuaKn4NreYxcX8fCNqJxM0wjdvnY2pGFdswOyI=
Subject key identifier: 49:80:09:F2:4E:8A:02:DA:50:7E:B7:80:5A:3A:25:F0:08:A5:A0:7E
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B68
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/SYAJ8k6KAtpQfreAWjol8AiloH4.roa
Signing time: Sun 07 Feb 2021 13:05:01 +0000
ROA not before: Sun 07 Feb 2021 13:05:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2920 (0xb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 13:05:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=498009F24E8A02DA507EB7805A3A25F008A5A07E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9f:61:bd:01:ec:0e:e9:b3:e4:40:a3:da:09:
84:1b:de:12:16:d3:51:7f:94:5b:20:66:60:97:33:
8e:40:81:c9:10:ff:fc:0b:de:b7:1b:26:bd:a5:ac:
88:3a:b5:63:6b:6e:de:eb:16:47:39:ac:8a:f6:e1:
d7:61:b3:26:06:cc:28:6e:28:67:42:d3:45:20:fa:
ff:a2:2d:d5:6a:5f:4c:5f:5e:7a:cc:e5:a0:00:df:
fa:2b:0d:22:ee:3e:a9:ec:61:79:03:24:b8:2b:61:
41:1a:d8:d1:10:1e:53:26:1f:d3:2d:74:d3:cc:a3:
6d:ec:79:83:7d:11:9a:92:0f:38:3c:d8:4a:e0:d8:
1a:79:24:36:f1:ac:d4:c2:da:8e:40:7c:5d:a9:5d:
73:90:64:dd:b9:88:31:ec:51:27:a4:98:c7:34:54:
74:66:a1:68:2b:95:8b:ae:ef:0c:69:1e:43:22:c1:
f0:f1:b6:c4:e1:ac:61:85:05:71:21:33:fa:eb:d5:
ee:75:a5:85:5e:1b:57:63:9c:d4:2b:b9:c4:30:95:
37:76:c8:6c:34:63:9d:53:57:bb:bc:c4:65:4d:86:
63:38:e9:5c:92:da:36:82:15:c8:71:52:dc:03:1a:
53:18:8e:0e:60:6c:1a:0f:33:30:53:68:63:fc:10:
75:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:80:09:F2:4E:8A:02:DA:50:7E:B7:80:5A:3A:25:F0:08:A5:A0:7E
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/SYAJ8k6KAtpQfreAWjol8AiloH4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:7e:bf:3a:af:dc:64:8a:59:c5:03:d4:fe:08:30:7a:2f:75:
ac:e2:e2:38:a5:e2:42:09:89:c6:64:d5:7a:ec:3a:04:77:66:
01:ee:71:70:55:bd:11:13:e7:f8:a1:f0:6a:e7:4c:c2:6b:e3:
9d:12:5e:04:75:9a:a5:08:0d:ca:6b:b0:7b:17:50:b9:c6:e0:
9e:be:37:38:00:11:7d:10:9b:aa:f5:06:1e:41:ee:87:0c:57:
79:be:63:e6:eb:13:8b:36:4d:d4:92:e6:34:28:af:4e:4e:7b:
2f:b8:ad:78:d1:aa:38:35:a2:df:ca:fe:9d:b1:fe:a0:be:89:
9f:65:39:a8:dd:59:ee:48:16:ec:ce:0e:f4:37:71:53:28:b8:
af:70:69:9f:ff:98:83:d6:b3:fd:fe:75:9d:a2:32:73:c8:07:
0f:81:83:2b:0b:ec:03:87:39:94:2f:49:77:7c:2a:58:35:7a:
1f:5d:be:12:ad:2f:29:63:6c:dc:d1:40:19:99:86:31:d1:2b:
13:57:98:70:66:0d:a7:f5:f6:0e:22:fd:03:ef:46:8e:02:f4:
73:84:90:6e:f7:78:4c:f6:7f:09:f1:82:c9:f0:51:86:db:09:
c3:9c:e1:6a:f1:89:31:58:1d:89:0b:df:37:b0:dd:ee:72:13:
75:58:d7:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:47 2025 by rpki-client