Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/EPDS-7Z-s5kU24bfSCQzHUXlZMg.roa
File: EPDS-7Z-s5kU24bfSCQzHUXlZMg.roa (raw, json)
Hash identifier: hfBkruD/ouvjVLQoVRNeLHOKGbAw2b2jNKmonvhWHoA=
Subject key identifier: 10:F0:D2:FB:B6:7E:B3:99:14:DB:86:DF:48:24:33:1D:45:E5:64:C8
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B39
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/EPDS-7Z-s5kU24bfSCQzHUXlZMg.roa
Signing time: Fri 01 Sep 2023 09:34:45 +0000
ROA not before: Fri 01 Sep 2023 09:34:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4781
IP address blocks: 210.63.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2873 (0xb39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=10F0D2FBB67EB39914DB86DF4824331D45E564C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:73:af:c7:62:18:f2:61:46:10:cf:a4:66:c4:
62:1c:f4:69:4d:e8:65:3a:9f:2c:1d:b3:18:44:bf:
9e:5b:ad:ed:13:af:76:70:46:82:37:fb:31:1f:eb:
8a:0f:8d:1e:6f:88:51:05:35:43:e8:16:3e:29:03:
29:43:9d:a1:14:03:87:ca:fa:2f:47:f5:1f:f6:2a:
db:b5:24:54:9f:65:11:33:06:dd:1b:cc:59:6b:4b:
a4:92:4e:92:1b:dc:41:e2:e6:b2:aa:50:2b:a1:c8:
b4:cc:a7:23:90:48:93:cb:f7:82:64:8d:ae:61:c8:
59:11:0c:7a:df:a2:5c:67:5b:98:06:28:e7:cc:3a:
85:84:db:c1:c0:a0:d0:4e:ea:09:de:5c:e9:2f:45:
d8:0d:bb:7e:be:54:ae:8c:29:37:af:05:7a:1e:d1:
90:cb:79:26:76:e2:3a:2d:92:8a:88:5c:d0:dc:13:
e8:0f:d0:20:8e:37:de:c8:c3:c8:8a:87:48:a3:63:
51:05:af:0e:00:44:2f:fd:e9:0d:26:50:b6:c7:c1:
76:d2:d7:94:fb:1f:41:4f:c3:c0:d7:a2:8b:d0:c0:
67:78:58:ce:23:e5:c3:e4:4b:14:73:7d:28:41:6f:
de:e9:59:08:a8:a6:55:84:9e:6a:c1:c5:9a:91:f1:
19:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F0:D2:FB:B6:7E:B3:99:14:DB:86:DF:48:24:33:1D:45:E5:64:C8
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/EPDS-7Z-s5kU24bfSCQzHUXlZMg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.103.0/24
Signature Algorithm: sha256WithRSAEncryption
33:bf:67:a2:3a:62:be:ae:3b:ae:70:22:cf:62:d3:e2:7d:80:
15:c7:1e:82:03:dd:29:e7:64:45:7f:9c:e9:f7:fa:a3:4a:2f:
e8:ce:51:db:c5:b6:6e:84:a5:fe:8c:15:d8:e0:50:d7:38:76:
b3:b8:e0:b0:ea:88:aa:d6:1e:f2:ea:7b:b2:35:43:5d:c2:99:
86:18:20:92:ec:dc:c9:15:d9:7b:f6:48:dd:e9:0a:b7:a8:d9:
f7:f5:19:06:8b:8c:2f:5e:f5:1d:b4:20:a3:8c:82:47:43:89:
3f:35:5a:5f:0a:db:bd:65:46:ce:7c:f3:e9:13:39:14:5a:1d:
a9:db:40:27:bc:6c:5e:08:71:8b:82:7a:a3:c2:1f:7a:e0:4a:
58:a7:e0:a5:55:b9:9e:2d:d3:84:58:67:f5:86:82:4d:d9:56:
23:dc:de:c9:b5:94:3e:81:48:16:7f:8e:3c:92:a8:1a:0f:93:
8c:69:74:40:e3:ec:e7:00:be:10:5b:93:0e:8f:59:c5:2e:c0:
ff:75:4c:ca:ae:ad:9b:51:47:d9:05:3f:0c:5f:07:05:b8:2c:
7f:f8:63:11:3a:3b:ae:45:07:d2:54:1a:4c:f6:72:7b:95:40:
a9:d0:31:ae:db:58:90:fc:de:2c:fc:3d:54:a5:b9:fc:cf:cb:
a8:0a:c4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:47 2025 by rpki-client