Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LUHWA/446dg9gGKmMiShpqiVfRAdenXNk.roa
File: 446dg9gGKmMiShpqiVfRAdenXNk.roa (raw, json)
Hash identifier: aO80Cveq/9ysneuYDGm7Kw0F1c0UXgRlNH8I9VQwgPQ=
Subject key identifier: E3:8E:9D:83:D8:06:2A:63:22:4A:1A:6A:89:57:D1:01:D7:A7:5C:D9
Certificate issuer: /CN=5818978B2D089A5F3DEAE0AF01E9335F4DD5D4BC
Certificate serial: 1133
Authority key identifier: 58:18:97:8B:2D:08:9A:5F:3D:EA:E0:AF:01:E9:33:5F:4D:D5:D4:BC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WBiXiy0Iml896uCvAekzX03V1Lw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LUHWA/446dg9gGKmMiShpqiVfRAdenXNk.roa
Signing time: Fri 01 Sep 2023 09:16:15 +0000
ROA not before: Fri 01 Sep 2023 09:16:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 103.124.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4403 (0x1133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5818978B2D089A5F3DEAE0AF01E9335F4DD5D4BC
Validity
Not Before: Sep 1 09:16:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E38E9D83D8062A63224A1A6A8957D101D7A75CD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d3:ac:15:e6:5a:da:3e:17:1e:28:a5:44:fa:
d0:00:66:58:ac:8f:d6:a2:7c:a8:c5:2d:42:49:04:
ac:69:e3:ec:d1:87:a0:03:88:69:eb:66:1c:fa:47:
48:74:7a:57:da:94:c5:25:80:81:20:23:39:42:2a:
f0:43:b9:f2:8b:70:3f:f6:38:e0:f8:1b:81:0d:22:
a6:87:81:0f:89:03:88:d1:7b:f7:69:17:8b:7e:40:
91:7f:2e:1a:61:a0:1c:72:04:5e:07:51:69:8b:dc:
0a:27:02:be:c2:da:54:5c:30:94:5f:86:cc:9b:4f:
a1:eb:db:e5:1f:60:db:8b:4a:99:d6:13:e1:72:d3:
b6:26:c5:e4:f9:94:7f:b7:a4:07:dd:3d:18:1f:68:
78:2e:7d:32:02:7c:a0:1b:a7:35:3e:7e:87:b2:1c:
82:b7:02:10:d0:6a:ec:f8:db:22:e6:d3:9f:7f:c1:
d8:63:b7:ce:6d:70:1d:b9:70:35:ba:c6:ce:c2:fc:
7f:ac:07:b8:2c:61:1a:71:9c:5d:96:6d:c9:0d:0e:
2a:bb:61:c5:69:ec:42:7a:c3:11:af:bf:24:c4:ba:
af:09:d7:e3:80:5d:5a:79:6b:e2:57:a3:29:2f:52:
3a:2f:bc:22:a7:14:5d:c0:a8:f8:dd:fe:24:01:6c:
6b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8E:9D:83:D8:06:2A:63:22:4A:1A:6A:89:57:D1:01:D7:A7:5C:D9
X509v3 Authority Key Identifier:
keyid:58:18:97:8B:2D:08:9A:5F:3D:EA:E0:AF:01:E9:33:5F:4D:D5:D4:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUHWA/WBiXiy0Iml896uCvAekzX03V1Lw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WBiXiy0Iml896uCvAekzX03V1Lw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUHWA/446dg9gGKmMiShpqiVfRAdenXNk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.176.0/22
Signature Algorithm: sha256WithRSAEncryption
98:99:3c:44:ce:bf:06:3d:a4:53:a9:e4:ac:25:b7:3b:b0:d2:
d5:ee:4d:b1:9b:d6:95:d0:e7:0d:5e:24:3a:b4:55:60:44:fe:
75:67:70:bf:aa:85:2c:51:40:19:59:df:d0:69:a7:ae:7c:65:
27:b3:70:c8:9f:1f:30:8b:ed:0c:d1:20:4f:70:a5:47:51:b2:
ce:ba:c5:a8:ef:ba:be:b8:b1:b5:fe:15:7c:cd:8a:fb:b1:18:
7d:06:f2:2d:9f:03:61:d8:4a:e4:3c:12:16:d2:ca:b8:d5:14:
e9:a5:cd:c6:36:94:b0:8d:0e:1e:d1:19:39:a8:ea:66:d5:20:
b5:51:cf:83:37:d1:7f:e8:14:d9:91:a5:05:45:df:99:a1:f7:
1e:13:ec:2a:0c:43:0c:0c:d4:57:84:20:73:61:ee:f8:61:02:
0d:b0:08:4a:e4:8f:d7:52:40:41:dd:0d:2b:74:64:e6:89:ae:
6a:41:1f:2f:41:bf:f1:57:9a:c8:ec:c5:cb:e9:55:0f:4b:90:
cb:0c:93:13:2c:5f:62:af:90:70:f8:f6:58:9c:eb:62:29:22:
3b:28:8b:b4:9b:5e:10:fc:24:21:e7:5e:21:97:85:86:49:49:
4b:09:b2:e8:a3:3b:a5:b3:ed:d6:72:94:48:9c:ac:e7:9c:54:
4c:60:70:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:23 2025 by rpki-client