Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/PQe3wBkSGflIzuS8pvtKC6Ruak8.roa
File: PQe3wBkSGflIzuS8pvtKC6Ruak8.roa (raw, json)
Hash identifier: 3NzU7vNO8gP6A3g2R12PgxtM2zLQGVIBPs5nUF5Fu6Y=
Subject key identifier: 3D:07:B7:C0:19:12:19:F9:48:CE:E4:BC:A6:FB:4A:0B:A4:6E:6A:4F
Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Certificate serial: F1
Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/PQe3wBkSGflIzuS8pvtKC6Ruak8.roa
Signing time: Wed 27 Mar 2024 15:28:57 +0000
ROA not before: Wed 27 Mar 2024 15:28:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 8075
IP address blocks: 103.131.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Validity
Not Before: Mar 27 15:28:57 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3D07B7C0191219F948CEE4BCA6FB4A0BA46E6A4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:d1:c4:a3:53:2c:d3:51:9d:97:c5:e7:6a:
0b:b1:eb:ed:56:d8:ff:9e:c2:60:f7:59:86:38:96:
6c:0c:86:ad:11:71:9c:16:9a:f2:ff:43:75:ce:fd:
94:72:a0:05:f9:91:6a:81:26:8a:fd:a6:55:41:03:
9c:b3:1e:6d:af:de:99:c2:98:2a:09:6e:cd:79:73:
dd:9f:1f:c1:d5:79:1e:cb:cb:6c:8e:71:bf:25:a0:
74:f3:a2:98:c2:36:37:bf:9f:93:1a:16:83:71:15:
55:17:36:55:c2:96:06:0f:c1:ca:51:e1:3f:e7:c7:
ac:8d:39:b8:6a:95:ad:e7:74:9c:6a:aa:2d:22:dc:
94:ef:5e:ec:d5:cb:7b:3e:73:e5:8c:a6:75:3a:a0:
e9:a6:de:c2:dd:39:0c:7e:44:96:ee:a6:4e:4f:cb:
1b:9b:2c:f5:fa:c0:be:e0:8e:11:d1:9b:db:fc:e6:
f8:5b:b0:a5:4d:cb:bc:08:87:32:9c:0b:b9:cb:4e:
6a:70:03:97:10:76:b3:f6:05:f3:03:65:28:b2:a8:
5c:3a:c6:ba:7a:f6:94:08:f2:23:2d:7d:8b:2c:e2:
12:f6:0a:ce:0f:f4:3c:a8:1c:52:fb:c8:f2:ae:8a:
3c:82:11:87:1e:c3:5b:0a:e7:07:4d:7b:30:a9:f0:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:07:B7:C0:19:12:19:F9:48:CE:E4:BC:A6:FB:4A:0B:A4:6E:6A:4F
X509v3 Authority Key Identifier:
keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/PQe3wBkSGflIzuS8pvtKC6Ruak8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.148.0/24
Signature Algorithm: sha256WithRSAEncryption
15:6a:fe:f2:81:de:14:47:5b:f4:57:d5:db:77:53:0f:af:8b:
5f:da:10:60:3e:58:b7:1b:a8:f9:9a:cd:b3:7c:94:8c:ae:7b:
b1:c9:98:3c:f8:5b:4a:8d:ed:29:b4:a0:0b:5b:f2:54:b8:90:
99:a4:26:0a:8f:b5:9c:c2:6e:71:ad:55:c7:9d:16:f8:60:e4:
f0:fc:ba:b7:9f:a4:d0:bf:8f:76:0f:4c:7a:9f:b1:0a:7f:2c:
09:35:09:57:4c:05:cb:b3:d4:a7:1f:d3:2f:b1:5e:80:be:94:
03:bc:3f:52:73:a6:45:2b:ac:46:73:2f:99:90:c7:55:1a:74:
97:4f:0c:9b:b1:8c:11:bb:62:76:1d:29:8a:55:55:02:16:22:
64:7c:db:b2:b4:ce:aa:17:20:3c:4c:02:79:1b:87:34:2b:b5:
1f:23:2d:f3:d0:eb:ff:6f:62:1c:34:79:33:79:2b:6d:7a:db:
ea:00:2b:95:99:df:20:db:9e:e9:a9:0e:81:4f:9c:e9:9f:0f:
87:bc:97:f8:dc:61:c8:af:58:c0:7e:c2:7a:28:c7:b1:72:72:
fb:c2:1a:9c:dd:c6:d3:cb:36:c6:30:68:76:21:a8:80:cb:d3:
ba:d9:7e:08:66:c4:6d:03:2e:17:ab:4d:41:e1:a4:4f:ab:59:
e1:0a:8f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:36 2025 by rpki-client