Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/5Z4x44xuL_Wc0jDJVW3j2fNPqBQ.roa
File: 5Z4x44xuL_Wc0jDJVW3j2fNPqBQ.roa (raw, json)
Hash identifier: tUbQHFh4yoGlhUvCphpSLdl8NN8NVWrCm4R7j0oXuwQ=
Subject key identifier: E5:9E:31:E3:8C:6E:2F:F5:9C:D2:30:C9:55:6D:E3:D9:F3:4F:A8:14
Certificate issuer: /CN=6D1243152906B6566A2B3E19CC468E46DE709D04
Certificate serial: 03
Authority key identifier: 6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/5Z4x44xuL_Wc0jDJVW3j2fNPqBQ.roa
Signing time: Wed 20 Sep 2023 18:52:22 +0000
ROA not before: Wed 20 Sep 2023 18:52:22 +0000
ROA not after: Wed 18 Sep 2024 09:08:23 +0000
asID: 131642
IP address blocks: 103.127.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D1243152906B6566A2B3E19CC468E46DE709D04
Validity
Not Before: Sep 20 18:52:22 2023 GMT
Not After : Sep 18 09:08:23 2024 GMT
Subject: CN=E59E31E38C6E2FF59CD230C9556DE3D9F34FA814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:72:54:53:c9:79:7c:cd:c3:4f:ba:de:2a:97:
b4:1d:9e:04:93:ec:7f:a0:3c:6e:67:83:6c:c2:f0:
86:b5:68:9f:34:34:a1:fb:fd:4d:93:79:5f:7b:07:
90:18:8a:2f:8f:18:ac:d7:7c:5e:e2:19:85:07:9b:
e9:ca:1c:59:e0:73:09:d2:c2:1b:2c:96:28:94:ce:
9b:63:ec:0a:76:5e:14:72:15:25:79:62:1b:6e:4d:
0a:0e:89:a3:d8:57:0d:f5:41:00:ff:57:2b:8e:5f:
66:b7:1f:ef:e1:f3:30:20:de:ba:78:99:4d:cb:54:
62:ca:41:89:af:c7:85:dc:ec:5d:e9:f6:25:c6:2f:
af:49:4f:48:11:05:68:bb:1d:93:66:4f:1e:71:88:
7a:36:3a:ee:89:ab:cd:2a:bb:13:16:d9:1c:29:03:
9e:d2:f9:e7:47:95:a6:69:b3:6d:58:47:3f:5b:e2:
31:58:f6:95:1f:ef:57:c1:7c:0f:01:b1:44:fa:b5:
1a:bc:0b:82:cf:02:3b:cb:93:bf:c7:9c:5d:33:db:
e5:d8:68:21:57:3a:6e:18:ab:79:43:17:9c:37:dc:
09:49:7e:d5:52:5b:e5:51:99:57:18:b6:df:9e:51:
ff:a7:38:d7:8f:7b:b7:a3:aa:61:e0:f3:09:88:39:
95:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9E:31:E3:8C:6E:2F:F5:9C:D2:30:C9:55:6D:E3:D9:F3:4F:A8:14
X509v3 Authority Key Identifier:
keyid:6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/5Z4x44xuL_Wc0jDJVW3j2fNPqBQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.216.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:cc:1b:6b:d8:66:fd:d1:8d:37:84:dd:0d:bb:bf:79:d7:b1:
d9:7e:02:6f:6c:24:9d:42:e7:95:1c:97:2d:45:64:92:a0:32:
eb:2f:4c:84:30:9a:ad:2f:8c:e5:b3:b4:7d:84:b4:d0:b6:ae:
86:2d:27:f3:c4:dc:83:54:b8:82:2d:7e:b7:99:6b:4d:ea:a7:
41:68:7c:57:81:60:75:de:e6:cc:c4:ff:a7:78:4d:fe:e8:91:
13:c0:1f:e9:d3:f1:25:aa:2a:fc:7a:6e:da:7e:fa:62:63:e8:
35:ef:20:44:f7:12:b2:c7:cb:a2:9c:85:76:55:8d:f8:15:6c:
e3:95:42:26:8f:66:79:a6:81:86:68:19:1c:ef:7b:c7:17:69:
25:b6:59:8b:90:79:fc:1d:5c:af:72:a8:ed:75:c6:18:ab:02:
be:46:e3:25:c8:10:fd:a2:4d:d5:83:5b:2d:07:f6:08:94:f8:
cf:6f:90:6b:fa:ef:07:b5:56:14:fd:f9:5c:0e:90:7c:b7:f2:
05:46:40:8e:c1:e2:37:0a:d2:73:64:1d:46:ee:51:8a:1c:63:
75:e3:61:3e:6c:d9:58:3e:1f:23:2e:6c:d5:77:87:0f:d8:30:
ae:06:ab:dc:ce:ed:c5:72:4c:cd:6e:e1:c0:2a:12:90:83:20:
1b:3d:04:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:28 2025 by rpki-client