Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/M3z2J__-aTUdUkGmwNgeiXopIXA.roa
File: M3z2J__-aTUdUkGmwNgeiXopIXA.roa (raw, json)
Hash identifier: 4tmBWqGCWoHmjP/UzekeoOxGI1rlVkZW9l6qbCdF9Iw=
Subject key identifier: 33:7C:F6:27:FF:FE:69:35:1D:52:41:A6:C0:D8:1E:89:7A:29:21:70
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 08A5
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/M3z2J__-aTUdUkGmwNgeiXopIXA.roa
Signing time: Fri 01 Sep 2023 09:34:30 +0000
ROA not before: Fri 01 Sep 2023 09:34:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131674
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2213 (0x8a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 1 09:34:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=337CF627FFFE69351D5241A6C0D81E897A292170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e5:9d:11:87:c6:91:72:32:3d:dd:7c:76:18:
6f:b9:b5:51:42:f6:9e:2c:01:ba:5b:79:32:27:d8:
fb:da:98:69:68:3f:9e:d5:c4:eb:90:43:d1:76:a4:
38:ac:a6:44:05:c1:71:fb:19:ec:e3:3b:7d:a9:7f:
fd:4a:d2:ad:3f:61:6e:d7:ab:bb:94:f9:a1:8d:b9:
6b:4b:2d:3e:0e:44:02:a2:66:50:41:5c:3d:53:31:
91:ab:4c:78:1c:a9:b2:2d:4c:bd:7c:10:5e:78:5c:
a0:d2:5f:b8:d8:ec:d6:84:ba:ea:2c:73:b6:3d:ec:
ed:e9:28:be:4d:b6:a3:da:bc:c2:8c:05:1b:bd:be:
62:18:84:e2:20:9a:99:d4:0a:24:ea:4a:17:37:9f:
1e:b5:e4:ea:d0:20:2d:30:93:93:a7:4a:68:f6:57:
70:49:5f:2f:1c:f3:c8:f0:3a:f4:73:e8:11:d3:ed:
c0:2c:d7:65:dc:52:86:7d:02:39:e0:af:33:44:cd:
ec:7f:14:8f:ac:e0:b8:b1:7b:6e:fe:15:e6:1c:16:
3d:be:07:56:2c:12:ec:75:c7:09:a2:bd:87:fc:f1:
5d:ec:4a:d7:e3:3c:46:6a:23:57:f2:d8:ea:42:e2:
15:ef:d2:e5:b5:96:21:a7:48:97:ff:1a:58:d3:ad:
9e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7C:F6:27:FF:FE:69:35:1D:52:41:A6:C0:D8:1E:89:7A:29:21:70
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/M3z2J__-aTUdUkGmwNgeiXopIXA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:c9:8f:45:33:28:ee:ce:98:07:f3:c3:de:93:f5:b4:b7:ab:
82:63:a7:0c:f8:fe:52:e7:df:18:fa:69:c1:92:7c:45:9c:34:
7e:94:4a:4e:24:cc:d3:fb:a6:e2:e6:93:98:36:c6:e8:3e:fb:
8a:c1:0d:76:05:57:b4:14:df:47:f3:7f:5d:8e:24:e5:0c:4a:
b8:49:56:94:40:cc:cf:86:1d:76:e1:8e:fc:80:b2:14:91:cc:
5b:e2:fe:c8:d3:97:b9:d1:49:30:2a:c2:84:fa:51:9c:bb:f8:
36:e0:75:e0:ec:21:d8:06:e2:6d:e2:89:86:0c:7f:96:a7:e2:
cd:03:ec:3b:3f:10:0e:f1:2c:2d:61:71:21:84:0f:26:e3:cb:
dd:d2:39:a2:3d:06:b9:64:4c:fe:e8:0c:60:28:44:5b:78:e2:
b0:4f:6b:29:0d:dc:0c:44:e1:1d:9f:47:3c:65:81:d2:3f:d4:
b2:88:65:82:36:7c:62:f0:ac:c3:d5:d3:e3:7f:06:58:86:2b:
f9:78:4d:f9:8b:cb:c4:36:cc:8f:c6:fa:1d:44:b3:c8:af:35:
9e:24:1b:dd:27:3f:cb:41:c0:da:30:3a:a2:00:87:8e:0e:89:
5b:0d:c5:53:64:d9:ba:c4:ae:5a:2e:f8:91:86:45:35:ef:d7:
42:ac:27:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:17 2025 by rpki-client