Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/WHqcR_l-zBscRQXAxBypGem70Ro.roa
File: WHqcR_l-zBscRQXAxBypGem70Ro.roa (raw, json)
Hash identifier: cPKVWQOtOtHimfsZzIM8KCYB0oD791arNzG5Xsdr/BI=
Subject key identifier: 58:7A:9C:47:F9:7E:CC:1B:1C:45:05:C0:C4:1C:A9:19:E9:BB:D1:1A
Certificate issuer: /CN=AEF6D09D9C14A108AA2051743C1379ED8FF25B48
Certificate serial: EF
Authority key identifier: AE:F6:D0:9D:9C:14:A1:08:AA:20:51:74:3C:13:79:ED:8F:F2:5B:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rvbQnZwUoQiqIFF0PBN57Y_yW0g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/WHqcR_l-zBscRQXAxBypGem70Ro.roa
Signing time: Wed 04 Oct 2023 06:48:27 +0000
ROA not before: Wed 04 Oct 2023 06:48:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63899
IP address blocks: 103.191.22.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239 (0xef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AEF6D09D9C14A108AA2051743C1379ED8FF25B48
Validity
Not Before: Oct 4 06:48:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=587A9C47F97ECC1B1C4505C0C41CA919E9BBD11A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:dc:af:94:7b:d0:09:5b:4c:48:b9:34:e6:ad:
ca:b6:5d:08:38:af:38:e7:15:99:b8:12:d1:24:7c:
d6:b7:4e:4a:ba:8b:b4:1c:05:fe:6c:d8:b0:ad:d6:
f9:95:df:e9:4c:f3:11:71:3d:9f:c8:2f:59:56:f9:
ce:f1:3f:33:46:9a:eb:77:64:bb:b0:41:a3:22:13:
71:05:8f:f2:40:68:e7:d7:46:27:39:79:ff:51:17:
f0:26:f0:5a:52:e9:a4:d1:1e:55:07:5c:da:83:38:
87:82:ff:34:06:87:0e:f3:cb:7b:36:db:a8:fd:b3:
2e:1d:4b:6d:3f:8b:05:15:c2:4e:68:be:5a:14:24:
98:88:4b:35:7d:7d:b2:05:a3:d1:c6:f5:5b:8a:95:
d2:83:dc:38:f6:34:cd:74:4f:5c:5e:a8:bb:fa:ec:
c5:e7:4e:66:0f:ce:92:72:1b:6b:0a:a2:60:7e:31:
32:38:f8:9b:31:92:4c:97:7d:4d:df:48:7b:b9:92:
83:f5:3b:29:78:d2:d4:ce:e2:65:c4:8b:55:ec:e0:
99:24:e1:82:83:65:de:80:60:74:6f:25:df:ad:c4:
b0:3d:d8:61:8f:4f:1b:d6:0c:c3:70:f1:66:b9:fd:
93:e1:a8:45:25:40:56:b5:fb:34:24:88:f9:f7:d8:
24:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7A:9C:47:F9:7E:CC:1B:1C:45:05:C0:C4:1C:A9:19:E9:BB:D1:1A
X509v3 Authority Key Identifier:
keyid:AE:F6:D0:9D:9C:14:A1:08:AA:20:51:74:3C:13:79:ED:8F:F2:5B:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/rvbQnZwUoQiqIFF0PBN57Y_yW0g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rvbQnZwUoQiqIFF0PBN57Y_yW0g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/WHqcR_l-zBscRQXAxBypGem70Ro.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.191.22.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:f5:ff:c3:b6:9e:20:ba:58:20:f2:6d:26:06:3d:e8:fb:1e:
b5:c5:20:19:8f:23:d5:35:73:f1:8b:18:d1:5b:9c:0f:af:1d:
00:70:b1:90:e6:7c:90:b1:05:fe:28:61:39:dd:5b:a3:ec:35:
d1:07:00:58:fa:04:a0:5d:1d:c4:86:70:7e:17:f2:c5:76:79:
ff:76:f6:72:dd:49:1d:df:e2:b1:7b:39:08:71:70:ee:c0:74:
10:27:ae:79:4e:42:de:79:85:dd:15:01:f3:f5:31:25:10:31:
e0:7a:e6:59:71:84:b5:26:6e:85:60:ac:0f:54:b5:49:fb:de:
61:a4:b5:ef:51:15:6c:49:d4:88:92:4a:4a:55:84:19:42:88:
9c:b3:4d:82:19:a4:0e:8e:45:81:75:c5:80:af:c2:a8:c5:11:
fd:cb:e1:c4:1d:3c:29:72:2f:b3:3e:b4:9b:cc:e1:3c:3d:02:
76:5c:48:c8:b2:17:6d:38:df:b7:39:f4:e8:47:9d:ea:51:9e:
a8:2d:cb:35:f4:98:fe:26:2a:46:9b:55:15:17:21:44:f7:dd:
b7:d7:f8:9c:e2:52:d6:7d:b0:cf:48:24:97:d7:10:db:a5:8c:
2b:d6:b8:15:51:24:d2:9a:3e:8f:9e:f4:0f:35:e8:c8:63:78:
38:6c:f8:8d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:34 2025 by rpki-client