Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NETEASE/BcOVhOjbi4qmjDkNykzoW2v11lQ.roa
File: BcOVhOjbi4qmjDkNykzoW2v11lQ.roa (raw, json)
Hash identifier: JA8IoX1v1neDnUyqHWMNs/MTvf4mLmKNH7ZnWE0nJck=
Subject key identifier: 05:C3:95:84:E8:DB:8B:8A:A6:8C:39:0D:CA:4C:E8:5B:6B:F5:D6:54
Certificate issuer: /CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00
Certificate serial: 1172
Authority key identifier: DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/BcOVhOjbi4qmjDkNykzoW2v11lQ.roa
Signing time: Fri 01 Sep 2023 09:26:18 +0000
ROA not before: Fri 01 Sep 2023 09:26:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131659
IP address blocks: 103.131.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4466 (0x1172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00
Validity
Not Before: Sep 1 09:26:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=05C39584E8DB8B8AA68C390DCA4CE85B6BF5D654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b3:4e:3d:83:08:9c:7e:1b:d4:9a:8b:c8:24:
50:73:8a:b6:72:f8:ed:e8:88:b2:fd:b7:24:d0:06:
d2:33:a9:9c:78:0d:5f:66:bb:0c:02:d7:57:86:b7:
e9:ca:25:3a:2d:a9:86:72:f8:31:b2:03:07:3f:c3:
66:88:20:e3:7d:1b:7b:e3:c8:65:38:2e:03:21:0e:
b1:a2:5e:60:b4:ed:3a:41:27:e2:b0:51:17:7e:33:
7a:64:6c:5e:55:62:9f:f2:96:e6:91:d5:a1:ae:68:
5a:61:58:a1:2c:5f:6a:bf:1f:9f:55:06:54:f1:81:
e2:7a:e7:e8:46:67:dc:c5:d1:9b:7a:58:da:31:92:
ab:63:f5:dd:84:32:50:1f:e2:2c:85:ac:76:df:05:
f9:ae:17:a1:89:d7:46:b5:c6:d3:f5:b8:03:e1:96:
b1:99:03:99:bb:8d:75:ba:42:b0:fe:90:2e:38:4e:
03:29:18:c5:c9:8a:78:8a:b2:5a:8a:7c:43:95:fc:
dd:b1:10:69:85:c4:31:3e:67:53:45:5d:a2:15:68:
7a:f9:4c:3c:ad:e9:2a:e3:4c:08:8f:95:30:2c:c7:
2f:d5:3e:22:0a:9c:9d:10:30:b7:c9:4f:2a:83:9a:
d7:5d:49:99:17:72:28:aa:fd:c3:c9:70:64:60:34:
33:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C3:95:84:E8:DB:8B:8A:A6:8C:39:0D:CA:4C:E8:5B:6B:F5:D6:54
X509v3 Authority Key Identifier:
keyid:DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/BcOVhOjbi4qmjDkNykzoW2v11lQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.252.0/22
Signature Algorithm: sha256WithRSAEncryption
39:84:c2:73:c7:1d:7f:81:2a:92:6e:09:d9:37:51:a5:8a:3c:
7a:50:24:b0:99:f0:ae:be:2c:9d:e5:63:cd:4e:7c:ac:85:5a:
34:e4:b3:6b:17:c8:b5:53:1d:f2:d8:19:39:e0:95:f5:95:b5:
dc:99:f8:21:05:ab:96:e7:61:af:e9:73:83:e5:07:83:52:81:
6e:e1:f2:bf:8f:d6:a4:26:19:47:9e:ca:ac:a3:3a:c0:3a:72:
43:2f:7c:32:57:a4:37:59:ea:18:fd:4c:86:40:02:e4:bf:19:
08:77:84:ed:ad:1b:ce:c4:fb:96:b9:f7:14:5e:f2:20:3d:12:
3a:b2:fe:81:ca:6c:b6:25:c7:0a:79:b1:13:5e:5d:90:fd:2c:
a2:5f:84:79:6b:03:62:88:59:62:6b:de:89:25:c1:e6:c8:4b:
2e:c4:b6:97:14:8a:96:af:6a:c4:25:4d:d1:da:f7:a4:a0:a8:
e1:af:8a:3a:c0:5c:51:1a:ff:e5:de:5a:22:8e:01:99:93:d7:
2e:d2:f6:89:8b:0e:e4:95:ff:6b:9c:f2:40:27:21:cc:69:c4:
d8:de:42:da:e4:14:a3:23:6a:3b:da:64:03:9b:28:d6:82:3c:
44:0e:46:95:d2:65:c2:f5:00:c8:92:81:13:a8:fd:7b:5c:23:
56:22:ef:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:04 2025 by rpki-client