Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/eo3fVVFn0OwmUtUBjaJ-00PVaW0.roa
File: eo3fVVFn0OwmUtUBjaJ-00PVaW0.roa (raw, json)
Hash identifier: YHcJIlG7kCQkgxRI326fOB3Y2XTxp5vZQ1uxmdcZdA4=
Subject key identifier: 7A:8D:DF:55:51:67:D0:EC:26:52:D5:01:8D:A2:7E:D3:43:D5:69:6D
Certificate issuer: /CN=76637EEBEFEF70C538CEADDCF9848FAA79C736A5
Certificate serial: 0131
Authority key identifier: 76:63:7E:EB:EF:EF:70:C5:38:CE:AD:DC:F9:84:8F:AA:79:C7:36:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dmN-6-_vcMU4zq3c-YSPqnnHNqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/eo3fVVFn0OwmUtUBjaJ-00PVaW0.roa
Signing time: Fri 01 Sep 2023 09:18:39 +0000
ROA not before: Fri 01 Sep 2023 09:18:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7483
IP address blocks: 103.189.108.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305 (0x131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76637EEBEFEF70C538CEADDCF9848FAA79C736A5
Validity
Not Before: Sep 1 09:18:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7A8DDF555167D0EC2652D5018DA27ED343D5696D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f4:89:b6:66:19:9a:f0:35:ff:ac:0f:e7:d4:
7c:e2:98:1a:47:85:f0:97:ac:55:1b:df:17:b9:5b:
75:e3:7a:a9:a4:73:d1:98:a7:f9:dd:28:e9:c7:fa:
fe:07:19:39:86:0a:1d:9a:d1:39:42:cc:49:cc:7b:
77:16:f7:0a:30:10:e0:20:f6:01:98:d7:1c:23:28:
26:56:6c:2d:15:2d:b6:a8:6e:5e:37:19:e6:f4:46:
13:50:17:7a:c9:a8:9e:d9:dd:0e:8d:36:27:8f:7c:
f9:f0:f0:17:e1:70:25:db:20:7d:a3:ac:1c:c9:b8:
c1:b9:b3:34:0c:b5:76:59:f7:64:85:e0:36:62:1d:
16:e2:d9:a1:d6:d4:d9:45:4f:93:b6:56:c2:fc:e3:
db:40:c4:f6:76:82:02:22:2a:68:fe:d4:f2:e5:2a:
aa:54:24:df:00:48:f2:9a:78:a6:db:c5:88:78:81:
ce:a8:d2:d7:6d:6e:2b:59:bc:54:0c:b8:6a:55:f2:
1a:c0:7b:35:4f:c3:d2:b3:a5:bc:7b:df:56:78:10:
b5:5a:f9:14:ac:9c:8a:62:6e:f7:08:44:04:61:18:
31:0a:19:9f:91:6b:8d:1d:6f:8b:84:cd:5f:c9:f8:
33:a8:9b:f1:b7:66:d5:90:42:c5:46:e8:d0:0c:4e:
3d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8D:DF:55:51:67:D0:EC:26:52:D5:01:8D:A2:7E:D3:43:D5:69:6D
X509v3 Authority Key Identifier:
keyid:76:63:7E:EB:EF:EF:70:C5:38:CE:AD:DC:F9:84:8F:AA:79:C7:36:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/dmN-6-_vcMU4zq3c-YSPqnnHNqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dmN-6-_vcMU4zq3c-YSPqnnHNqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/eo3fVVFn0OwmUtUBjaJ-00PVaW0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.108.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:5b:b7:44:54:75:b3:d7:20:5c:be:c6:0c:ce:f5:71:84:a1:
6c:29:c4:d8:3e:b8:ea:dc:1c:76:f0:5d:37:72:d8:46:ab:7f:
29:e7:45:82:93:a5:f2:0c:1e:64:5c:bb:33:8c:2d:37:d4:4d:
dc:32:5f:d6:95:61:58:da:34:9e:e8:00:85:d9:50:ee:f6:78:
2f:16:fd:96:8a:4d:f1:ca:db:1f:ef:8d:dd:41:4d:10:8d:c7:
72:e7:c6:95:91:dc:e1:67:16:88:10:3c:db:c8:50:31:94:cf:
55:7a:53:7b:77:98:06:e7:ec:2b:2a:ab:f1:97:da:59:48:39:
61:02:b4:35:53:bf:7b:f5:c1:d4:c0:ca:9d:b2:a7:52:e4:36:
ce:8d:8d:dd:0f:e6:41:2e:44:72:aa:6c:f4:fc:1e:76:2e:e8:
64:23:83:a3:82:22:99:56:1f:a3:36:4e:a0:48:df:6d:b0:bb:
a3:19:e7:fa:45:a9:6b:5f:e9:4d:54:a4:52:32:7e:6e:12:f0:
c3:44:4c:3e:5e:29:6d:e7:4c:02:4e:76:ea:32:58:db:b2:69:
9b:65:b9:f2:c6:e7:72:94:87:ad:1b:80:29:23:17:7d:7f:31:
3e:13:0e:f4:ff:83:36:29:25:38:90:20:ce:01:7f:fd:8f:d8:
0e:30:94:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:27 2025 by rpki-client