Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/w12nnGXWqP9_6NLnxPc3K93cXd4.roa
File: w12nnGXWqP9_6NLnxPc3K93cXd4.roa (raw, json)
Hash identifier: DddfOP7r/nx9ubblfYuBP22G4oZCgorqo16Ja0Xto8c=
Subject key identifier: C3:5D:A7:9C:65:D6:A8:FF:7F:E8:D2:E7:C4:F7:37:2B:DD:DC:5D:DE
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 20
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/w12nnGXWqP9_6NLnxPc3K93cXd4.roa
Signing time: Thu 04 Aug 2022 02:26:18 +0000
ROA not before: Thu 04 Aug 2022 02:26:18 +0000
ROA not after: Thu 29 Jun 2023 03:08:49 +0000
asID: 56850
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Aug 4 02:26:18 2022 GMT
Not After : Jun 29 03:08:49 2023 GMT
Subject: CN=C35DA79C65D6A8FF7FE8D2E7C4F7372BDDDC5DDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:cc:de:c2:95:6c:b6:e5:0e:9e:29:df:a9:9f:
aa:b9:79:0f:20:4c:56:1c:ce:ca:91:7f:a3:c8:bc:
87:4f:94:fc:bc:55:fd:65:a9:07:2a:48:f4:db:de:
1a:57:6a:64:af:4a:ca:f2:ef:e6:82:f5:49:ab:70:
7f:c1:ea:2e:dc:5a:a7:45:02:b2:d9:2d:6a:23:d8:
97:fe:a7:fc:c4:bf:f5:ae:92:c4:a8:3b:50:3d:92:
20:79:39:b0:9e:7d:9a:c3:e6:55:ad:99:64:17:0c:
2d:1e:f6:6d:ab:02:1b:c9:a4:c4:de:16:0b:69:52:
c6:b8:3d:c7:97:ed:0b:23:34:5b:b9:80:18:34:6c:
11:24:8a:11:b2:5d:64:3b:2a:f0:84:ad:1e:9f:c9:
a6:dd:24:a6:a8:4e:0b:db:c8:49:aa:71:f7:b9:fd:
90:76:93:12:18:ac:34:64:0d:4b:e5:78:1b:1b:4b:
ea:e6:2b:81:d0:05:10:d9:15:47:76:da:34:40:71:
93:d9:db:36:e0:64:85:fe:6b:ea:e7:e2:39:9d:a0:
ab:22:6e:34:74:9c:64:5e:8b:df:b9:61:af:c5:6d:
3c:8e:ce:ee:96:93:5a:94:f6:fd:25:42:76:66:7b:
ca:c6:58:34:77:f9:08:df:47:de:1d:7b:02:05:ff:
ca:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5D:A7:9C:65:D6:A8:FF:7F:E8:D2:E7:C4:F7:37:2B:DD:DC:5D:DE
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/w12nnGXWqP9_6NLnxPc3K93cXd4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
09:23:07:64:0e:4e:b9:93:ca:3c:b4:df:d3:94:6b:05:60:5c:
c6:6a:b2:1e:3c:c6:7d:5a:bd:45:a3:ab:29:03:60:2d:b9:18:
dc:a2:25:a1:f9:53:65:0d:5d:a7:26:43:6e:ed:93:69:fe:2a:
b8:a9:01:fe:ed:70:55:4b:01:26:17:23:f2:3b:e8:7f:52:56:
a3:6c:55:42:7f:1c:a6:2c:77:73:da:83:1f:86:b4:7c:69:83:
42:1b:e8:ac:4e:10:dc:76:33:87:9b:fb:fc:68:e7:ae:00:00:
15:be:63:bf:d4:5e:58:17:7b:9d:48:29:af:11:83:88:b2:61:
27:a6:62:d6:9a:54:a9:b9:a6:80:62:ab:90:a3:ea:74:c2:04:
c0:c2:a9:ab:40:22:bc:04:ac:8a:e8:be:8a:a9:a0:d9:b8:c5:
a0:cc:c4:8a:07:6f:64:e8:38:26:5a:ed:f3:ef:be:64:61:0c:
4d:9f:15:cf:8b:a3:be:71:79:11:f3:ab:13:24:70:6a:e6:3b:
41:3d:68:2b:00:3d:e9:13:0c:9f:aa:25:7c:8f:82:0b:8b:4d:
ad:a2:c4:43:69:cf:ba:9f:b4:ca:79:f6:72:e7:ba:da:0c:b7:
96:39:8d:a6:74:f2:a4:2f:f1:7f:e7:cc:9b:9d:17:6f:53:4d:
2c:60:7b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:05 2025 by rpki-client