Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/hPy_Pao6mAt0lXsKDn4bNlPqgkM.roa
File: hPy_Pao6mAt0lXsKDn4bNlPqgkM.roa (raw, json)
Hash identifier: ZPlH9si+HPUAp1h/cs6HFpGoNAwI20RylTHhbscO2K4=
Subject key identifier: 84:FC:BF:3D:AA:3A:98:0B:74:95:7B:0A:0E:7E:1B:36:53:EA:82:43
Certificate issuer: /CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Certificate serial: 09EE
Authority key identifier: 27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/hPy_Pao6mAt0lXsKDn4bNlPqgkM.roa
Signing time: Tue 29 Sep 2020 10:04:50 +0000
ROA not before: Tue 29 Sep 2020 10:04:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.136.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2542 (0x9ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Validity
Not Before: Sep 29 10:04:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84FCBF3DAA3A980B74957B0A0E7E1B3653EA8243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1c:4a:b7:a6:4d:43:3a:c6:44:bb:32:20:82:
ac:bf:5f:fb:31:ca:8f:1c:48:57:43:b9:6c:bf:d0:
68:af:2c:3a:30:d4:c0:1b:df:12:1d:b0:2d:c0:23:
72:15:35:db:77:c4:13:02:58:82:31:ed:4c:25:91:
a5:29:02:85:57:92:11:45:1a:6f:38:15:ab:7a:23:
a5:00:f5:b7:fb:63:73:f9:89:a0:21:98:72:11:3c:
74:e3:86:d9:c7:e1:1e:18:63:bd:06:89:16:b3:d6:
0e:fb:c4:fb:b3:01:1f:a9:30:4c:21:1e:07:55:cd:
47:df:20:29:78:22:34:2d:d2:5a:d1:43:6a:8d:94:
15:f3:08:95:1a:59:58:84:f3:90:80:ed:01:b0:a4:
00:58:8c:fc:88:8f:07:2b:01:9d:a1:88:05:2f:77:
e5:e7:ff:90:bd:ae:55:ac:a9:c1:04:72:a7:49:02:
cd:a2:09:94:0c:79:12:42:e6:3d:b1:b3:c1:ac:56:
7a:9c:51:e1:64:57:76:8f:21:64:cf:02:8a:56:de:
1a:45:a3:44:62:88:9a:bc:95:c6:6b:dd:64:9c:86:
49:64:50:f4:d6:62:d5:b3:19:c1:43:3b:34:a0:52:
c3:08:87:f7:53:24:eb:24:c0:5b:13:0f:d7:4a:35:
d0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FC:BF:3D:AA:3A:98:0B:74:95:7B:0A:0E:7E:1B:36:53:EA:82:43
X509v3 Authority Key Identifier:
keyid:27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/hPy_Pao6mAt0lXsKDn4bNlPqgkM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.210.0/23
Signature Algorithm: sha256WithRSAEncryption
08:d8:af:79:a8:58:0f:6d:6e:6b:e1:2c:77:71:ec:73:10:9b:
f6:5c:ed:18:3f:57:b4:67:fd:7c:e5:f0:1a:15:03:fb:34:78:
69:58:c0:ff:89:07:73:f5:59:3d:2d:d7:d0:d5:6c:43:a6:ab:
99:40:85:97:2a:31:75:ec:ab:86:ff:3a:d6:96:d2:56:60:a2:
8f:b5:1a:5d:f5:68:22:b2:6f:8b:db:27:66:88:2d:11:ee:fe:
43:56:4e:f9:33:97:44:f7:f5:78:7a:9b:95:e1:c8:e3:15:ff:
eb:21:ba:6d:37:1f:04:cc:11:81:be:ef:32:6c:ed:f8:41:53:
20:de:6a:c7:f9:67:0d:9a:0c:d1:36:9c:1d:a1:a2:28:4e:7f:
c2:38:f6:81:ea:bb:fc:4d:5c:56:23:36:d7:b5:46:2b:eb:9b:
8a:83:0f:d8:5d:21:eb:f0:df:08:55:7f:db:7c:0f:66:18:1d:
e3:cc:34:ed:9f:ed:52:08:73:ef:96:7d:c7:84:99:2f:3e:52:
c2:81:79:2d:bf:8e:e3:35:89:ec:59:5b:39:28:71:68:60:22:
12:d0:1e:9e:2a:87:f4:7f:d6:34:4d:1e:0b:72:99:7a:e2:35:
10:9f:7f:b8:5d:26:d8:b4:1c:1b:53:d5:db:c7:f6:66:f1:6b:
3f:f5:6d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:26 2025 by rpki-client