Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/mWkcOlea00z2vQ43ysz2Hs7bqwc.roa
File: mWkcOlea00z2vQ43ysz2Hs7bqwc.roa (raw, json)
Hash identifier: 7cPKIgLZGzUY91hpXuBeeJTMPjcpmtEnIV9TkRPhAQg=
Subject key identifier: 99:69:1C:3A:57:9A:D3:4C:F6:BD:0E:37:CA:CC:F6:1E:CE:DB:AB:07
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 088A
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/mWkcOlea00z2vQ43ysz2Hs7bqwc.roa
Signing time: Fri 01 Sep 2023 09:00:47 +0000
ROA not before: Fri 01 Sep 2023 09:00:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131666
IP address blocks: 103.144.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2186 (0x88a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Sep 1 09:00:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=99691C3A579AD34CF6BD0E37CACCF61ECEDBAB07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:b9:67:a7:2f:0f:2a:e3:3a:aa:78:97:7c:
2f:d0:b5:55:21:8d:7e:0a:fe:c3:48:68:9d:fd:b2:
12:64:45:c9:ef:b6:f9:d8:bc:a8:81:7d:a3:a3:49:
0d:a7:71:60:f8:dc:b9:75:0e:7f:d1:96:68:4d:25:
bf:d4:ee:5c:5c:fc:cf:d9:31:65:cd:33:3b:62:e5:
9e:65:04:18:99:e2:97:3f:37:fd:c3:9e:d0:ff:9a:
3a:1a:fc:22:14:b9:b8:60:74:5d:aa:e5:6e:2d:ea:
25:83:cd:db:52:5a:fc:b0:1f:56:37:0d:0e:92:aa:
dd:3e:df:ef:56:cd:a7:e8:00:6c:cc:50:22:23:b3:
58:70:de:29:90:79:b2:0b:dc:d1:68:fd:a2:f8:4a:
21:a8:55:12:e4:8f:38:46:39:7d:f3:06:52:40:7c:
97:40:25:a1:73:50:f6:97:b6:b7:35:76:a6:d4:b5:
54:ed:e3:98:a8:da:5b:77:03:0f:69:19:41:29:01:
4b:c7:dd:56:80:49:80:30:59:f7:38:b1:08:5a:c2:
50:78:a2:65:42:71:98:7c:5a:ce:75:85:a8:9e:da:
ca:d9:f8:53:16:96:d7:74:89:65:7f:1c:4d:5a:bb:
bb:74:a8:f5:d6:cc:56:7b:3d:06:e0:5f:0a:9c:28:
ba:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:69:1C:3A:57:9A:D3:4C:F6:BD:0E:37:CA:CC:F6:1E:CE:DB:AB:07
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/mWkcOlea00z2vQ43ysz2Hs7bqwc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.35.0/24
Signature Algorithm: sha256WithRSAEncryption
28:99:8f:7a:aa:53:27:da:48:34:e0:b3:25:88:48:e9:7a:9b:
0f:91:bc:3a:8c:e2:0f:4e:17:11:bb:fd:38:6c:2d:ff:21:d3:
d8:fe:5d:35:d0:a6:e6:e1:19:74:f4:f4:3c:60:fe:6a:ac:be:
07:39:9e:3f:68:2a:31:13:af:ee:d0:14:67:5e:70:11:6f:f9:
8a:0e:08:23:05:ec:fb:d4:a6:a2:89:a7:c4:73:bd:ce:fa:37:
1d:ba:a4:a9:c2:b8:af:ae:d1:23:72:f9:ca:14:b0:a9:03:f7:
e8:d9:b3:4d:de:fd:1f:84:5e:0a:69:3e:3c:cc:3c:fd:ce:47:
51:27:23:ad:b3:dd:80:8b:b5:35:61:73:e5:ce:ae:46:79:cb:
58:02:9a:f1:ae:bd:3a:08:8d:f7:74:4e:38:18:c9:dc:c9:a8:
93:93:6e:71:fc:73:e6:57:79:fa:2a:68:da:44:c7:5f:9f:28:
c6:dc:8f:23:0d:4b:07:b9:80:50:88:f0:2f:46:16:8d:85:a4:
d9:b7:50:2e:83:27:f1:ef:b2:f5:22:d6:10:8d:01:e7:01:59:
3c:06:7b:23:dd:67:54:8c:6f:7f:05:4d:23:5e:0e:e6:f0:b3:
c5:3d:b9:6e:07:ef:f7:85:38:4d:ad:4f:f4:b5:8e:f2:e1:e6:
33:96:ac:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:22 2025 by rpki-client