Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/3W_Bf9h0EOOXdRb6frwr4yApEzY.roa
File: 3W_Bf9h0EOOXdRb6frwr4yApEzY.roa (raw, json)
Hash identifier: 5Z9rU5i2TOHDELXIbm7prMpa49T/AR6k8jSmxDwSlH0=
Subject key identifier: DD:6F:C1:7F:D8:74:10:E3:97:75:16:FA:7E:BC:2B:E3:20:29:13:36
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 0821
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/3W_Bf9h0EOOXdRb6frwr4yApEzY.roa
Signing time: Mon 10 Apr 2023 04:34:47 +0000
ROA not before: Mon 10 Apr 2023 04:34:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131666
IP address blocks: 103.144.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2081 (0x821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Apr 10 04:34:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DD6FC17FD87410E3977516FA7EBC2BE320291336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3c:00:9f:39:8a:08:db:d8:12:3d:79:cc:77:
0e:5d:1d:90:73:ac:64:f2:b9:d6:20:38:b9:be:03:
b5:6d:42:c3:74:47:1c:28:f8:74:28:cb:09:2a:d3:
45:fd:39:fc:97:20:b9:82:a1:a4:d7:34:3d:ca:54:
c2:7a:e6:65:b1:69:33:db:1a:c4:e0:b9:4b:18:f7:
3b:64:08:16:0f:f6:6e:dd:af:2e:64:f7:3a:e2:58:
ad:5f:ac:f6:90:d9:a7:27:1f:00:a6:bb:66:bc:6e:
06:ef:70:72:4b:2c:8f:7e:ba:12:cc:af:24:f5:c5:
42:a5:7b:bf:fd:84:d0:ea:f9:11:d7:4f:8a:64:d1:
f6:85:4e:e1:a7:1e:c3:e4:b1:24:9d:22:66:7c:b0:
80:5e:ff:52:4e:6e:16:00:16:89:d8:79:23:9d:85:
bd:c0:80:da:62:72:32:7e:fc:44:ea:43:d4:31:69:
7e:9b:11:cd:db:25:ec:68:7b:56:4e:34:f3:c9:58:
e1:7a:b1:86:cc:0c:c9:a5:e6:2f:9e:0a:6b:6e:d4:
9d:f3:b7:78:29:34:4e:9f:07:f0:6c:d2:57:be:33:
33:7b:78:d6:9e:c3:9e:04:d8:e2:f7:1b:29:c3:57:
0d:5a:bf:c2:68:4c:f1:8f:78:2d:8c:11:d0:69:47:
05:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6F:C1:7F:D8:74:10:E3:97:75:16:FA:7E:BC:2B:E3:20:29:13:36
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/3W_Bf9h0EOOXdRb6frwr4yApEzY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.35.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:74:29:60:ef:93:30:ec:ca:6c:13:20:c6:bd:cc:e9:58:fc:
24:1e:96:b2:17:c0:a2:ba:29:31:05:87:dc:3c:fe:0f:15:63:
02:07:ef:90:f6:8d:19:90:04:c2:47:4d:b4:74:a2:8e:bb:f3:
a1:34:9c:81:29:b7:d6:ac:b9:9f:42:78:d8:0c:31:2e:85:c9:
76:9b:11:9f:36:7d:c1:91:80:34:51:82:4e:e9:ee:39:04:57:
b9:87:4a:03:ae:83:1f:2f:3f:e6:61:e1:31:c3:28:e8:77:eb:
16:a3:2b:96:48:10:a8:4b:bb:10:04:a6:99:b0:59:c4:9a:45:
54:b7:6d:18:33:1c:36:98:40:b8:d6:6d:d5:2f:3f:08:41:f9:
d3:3d:e3:70:11:71:28:52:f3:33:3e:92:4b:55:78:7d:76:6e:
a3:73:6c:e1:06:42:8b:04:a4:ff:9c:a9:3c:43:5b:8a:6d:f8:
04:7f:ee:85:71:e9:74:46:da:d3:d9:13:7c:f3:28:b8:7e:f7:
f0:28:e1:b1:5a:54:5c:91:82:4b:5a:b1:df:92:26:96:7e:a4:
ce:11:81:02:f4:4a:7e:f1:1c:a8:d2:22:8a:e5:5f:08:28:75:
8a:65:92:61:a8:aa:b1:b6:dd:5d:fd:5b:7c:7e:af:4e:86:a2:
79:ec:ee:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:13 2025 by rpki-client