Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa
File: QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa (raw, json)
Hash identifier: 2nMOcSA3xCauKphbsA1b1O8zUZXAG35t2uLv+oucYZM=
Subject key identifier: 40:37:90:65:93:31:A8:A3:E3:64:99:36:25:65:1D:DF:23:DD:D1:6A
Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B
Certificate serial: 01BA
Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa
Signing time: Fri 01 Sep 2023 09:03:52 +0000
ROA not before: Fri 01 Sep 2023 09:03:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38042
IP address blocks: 103.177.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 442 (0x1ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B
Validity
Not Before: Sep 1 09:03:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=403790659331A8A3E364993625651DDF23DDD16A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2d:43:16:34:be:d5:96:1d:dd:48:88:af:09:
78:aa:da:6b:30:35:03:34:9e:f0:3f:de:df:4c:93:
27:aa:25:67:f4:49:be:d5:a8:53:8e:65:bb:dc:0f:
d5:b1:38:9c:3b:0b:7a:dd:0e:09:27:ed:87:2b:1f:
c0:82:d0:ed:9c:f7:7f:f7:f5:20:35:05:04:b2:08:
41:0d:b0:2e:d6:e7:08:a3:51:7a:db:d2:59:4e:24:
aa:c2:e6:9b:0c:58:3b:9c:22:1a:7b:9a:08:4d:d5:
2b:ab:c2:19:d9:78:6e:a8:c8:4c:e6:ea:57:33:4e:
f4:a4:65:8f:52:9c:fc:75:15:3d:9d:46:08:9a:45:
66:78:1d:d9:12:73:92:dd:60:64:18:86:5e:d7:66:
1f:49:64:b4:cb:ff:8a:aa:52:6c:cd:a6:65:6b:01:
ff:1e:64:73:90:60:be:6c:7b:a3:d9:b2:d1:bf:9a:
62:51:b9:e3:b1:2e:1b:8e:1c:d0:b4:c2:8d:29:fe:
b0:d2:5c:d8:3a:d5:58:4e:42:be:f6:21:15:91:77:
32:43:8b:44:dd:42:98:98:39:e5:c2:0a:a4:eb:92:
58:68:7c:c2:5d:11:d6:5f:9e:89:bb:0f:d1:35:70:
54:f1:62:7b:f2:b6:06:7e:2d:29:74:3d:91:d7:5d:
da:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:37:90:65:93:31:A8:A3:E3:64:99:36:25:65:1D:DF:23:DD:D1:6A
X509v3 Authority Key Identifier:
keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.32.0/23
Signature Algorithm: sha256WithRSAEncryption
74:08:9f:35:e6:ba:08:5d:d1:a3:ef:13:6f:48:2e:5b:4d:18:
88:cd:a1:09:40:29:f5:77:97:1f:e8:ed:1e:21:35:ef:b1:1a:
19:55:9c:36:de:2d:9a:47:d9:c7:a4:6c:ed:72:51:d6:d9:da:
cf:14:9b:72:65:04:e8:5b:e2:9a:af:f2:12:ba:9c:3d:87:37:
ed:50:23:db:b3:6a:f6:98:36:79:1f:de:e4:8c:e1:d1:f7:6f:
f1:22:68:21:98:4d:44:e7:a3:5d:1e:54:59:bc:52:39:00:c0:
26:14:79:1f:c8:0d:9c:12:7e:57:ff:a0:01:73:42:5a:b7:86:
4c:75:a7:45:0c:fd:d9:da:8f:cc:cb:50:e8:1f:15:5c:ce:58:
c9:97:96:e5:8a:fc:65:ea:1d:76:dd:24:2a:30:36:7c:af:3c:
2e:70:88:93:81:e0:75:fb:1a:ab:80:61:51:b9:9b:0d:30:21:
59:7a:16:b9:34:d5:a1:f8:e2:9a:8c:46:5f:e0:d4:32:04:75:
75:2b:28:40:31:c3:00:12:ee:11:d9:da:93:b5:d3:f6:a5:b5:
7b:fc:25:80:be:de:70:da:b3:e1:35:8c:0c:ee:9e:7e:4d:18:
47:3a:61:93:7c:1e:c7:2d:15:c4:d1:28:80:8c:13:5a:93:1b:
e5:41:31:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:40 2025 by rpki-client