Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/PwNwLxlbvtUleQxQcOGrCVST6T0.roa
File: PwNwLxlbvtUleQxQcOGrCVST6T0.roa (raw, json)
Hash identifier: gS9hQSLnPmiQTL5QKc7x1Yfu2Xg3Rlx+1vklHCHOgow=
Subject key identifier: 3F:03:70:2F:19:5B:BE:D5:25:79:0C:50:70:E1:AB:09:54:93:E9:3D
Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7
Certificate serial: 0BB8
Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/PwNwLxlbvtUleQxQcOGrCVST6T0.roa
Signing time: Mon 05 Aug 2024 07:11:20 +0000
ROA not before: Mon 05 Aug 2024 07:11:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 214766
IP address blocks: 103.129.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3000 (0xbb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7
Validity
Not Before: Aug 5 07:11:20 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3F03702F195BBED525790C5070E1AB095493E93D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:69:a8:e5:fc:99:2b:51:3d:a7:97:6d:1b:
7c:58:06:e1:17:9c:1a:06:03:f4:5d:88:1e:e5:29:
13:0f:44:69:3f:3b:bc:8c:01:e7:34:05:b6:2f:20:
92:75:fb:00:ec:80:7d:ee:5a:48:9a:d9:5a:45:de:
f0:e2:f7:ca:58:96:d4:2f:9d:90:f3:5f:c7:4e:1b:
ba:a5:0c:aa:c9:1e:64:53:9c:75:f7:25:d6:8f:78:
ac:85:c3:be:1f:ee:c1:ae:74:54:bb:f4:08:76:f5:
31:2b:30:45:13:84:e1:e4:b2:f5:6b:56:1e:b9:26:
27:5a:c1:30:b9:4f:45:a6:d8:dc:c2:2f:56:f2:8e:
ab:c3:b9:5d:9c:cb:12:b6:6f:d7:b1:88:e6:90:2b:
92:e7:bf:1b:f3:11:c8:a3:7c:99:29:88:1a:a6:db:
83:97:61:7d:df:27:e5:69:0a:18:0c:45:c6:f6:84:
46:f1:f8:ee:10:52:2a:e5:18:0f:eb:2c:46:03:11:
70:0b:fa:2d:f2:5c:3c:58:7f:7d:91:d5:79:4b:2d:
eb:a3:29:28:05:07:ca:dc:c2:1f:a0:2b:19:29:bd:
16:18:e2:1b:49:80:83:86:ab:6b:f7:a6:57:07:b7:
18:ea:c7:f7:58:0b:d1:25:f2:f3:36:dc:cf:88:18:
a7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:03:70:2F:19:5B:BE:D5:25:79:0C:50:70:E1:AB:09:54:93:E9:3D
X509v3 Authority Key Identifier:
keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/PwNwLxlbvtUleQxQcOGrCVST6T0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.160.0/22
Signature Algorithm: sha256WithRSAEncryption
88:55:9d:ec:62:28:6b:fd:63:cc:83:a2:1a:28:3b:4b:ea:01:
8e:0c:a8:95:c7:45:65:40:0c:98:cc:79:7f:3b:18:12:1e:67:
68:5d:2b:98:a2:c6:af:97:a6:0a:68:0d:92:d4:68:6f:f6:cd:
4f:3d:ea:ab:a9:09:80:ee:33:c8:7f:9e:54:9d:41:ae:dc:f1:
ed:39:94:97:4b:8e:65:e9:e2:05:51:e8:d7:92:45:39:45:db:
ba:e3:48:cb:f8:f9:a4:00:a1:17:e4:e8:69:9e:74:b0:55:2e:
bb:cd:71:47:e4:0f:55:6f:5d:77:87:68:f9:6d:2e:57:2b:62:
d5:05:c0:41:7a:01:27:fe:54:8b:84:bd:0a:55:c4:55:89:ec:
3c:20:c1:9e:80:a5:5b:8a:06:17:82:2d:ef:3a:61:d3:7a:68:
10:ed:d3:bd:d1:cb:36:62:28:b4:d1:d9:97:f9:5e:33:40:0a:
78:be:ba:d8:ad:1f:89:9f:47:f4:6f:f4:52:92:73:6c:40:d8:
ec:d0:94:86:11:80:bb:b5:27:1e:14:78:3f:8e:eb:55:94:39:
ca:5f:fb:a3:8e:37:97:ab:73:8d:2b:d1:c9:9f:0b:1d:22:06:
25:5d:6c:87:b8:1e:d0:8a:f0:1e:bd:75:c8:15:d3:95:cb:48:
46:96:4c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:48 2025 by rpki-client