Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/kRux8_xVphn7UYLb9j8F4UnolS8.roa
File: kRux8_xVphn7UYLb9j8F4UnolS8.roa (raw, json)
Hash identifier: YKby601b3ctyJ4HTrCc0wpw3KRSkVaG+w32hH27iskE=
Subject key identifier: 91:1B:B1:F3:FC:55:A6:19:FB:51:82:DB:F6:3F:05:E1:49:E8:95:2F
Certificate issuer: /CN=8477B4B9FE729925D912C66D00B681DDA10A2A01
Certificate serial: 0953
Authority key identifier: 84:77:B4:B9:FE:72:99:25:D9:12:C6:6D:00:B6:81:DD:A1:0A:2A:01
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hHe0uf5ymSXZEsZtALaB3aEKKgE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/kRux8_xVphn7UYLb9j8F4UnolS8.roa
Signing time: Wed 29 Sep 2021 02:41:30 +0000
ROA not before: Wed 29 Sep 2021 02:41:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 103.117.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8477B4B9FE729925D912C66D00B681DDA10A2A01
Validity
Not Before: Sep 29 02:41:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=911BB1F3FC55A619FB5182DBF63F05E149E8952F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ea:59:3a:34:c9:a9:5a:6c:85:96:a3:d7:dd:
fe:71:f4:ce:1e:4e:73:6d:90:4e:f8:e7:59:54:f1:
d9:1b:e6:b8:bc:ec:2a:28:0f:67:9b:ba:d3:8f:af:
58:21:69:57:08:ef:e7:d3:3b:7d:90:62:1c:b8:33:
b1:3f:dd:53:2b:d5:e3:3a:cd:03:0b:cc:59:f3:71:
0f:78:93:22:6b:75:bf:fd:20:7a:d9:ab:0b:9c:2f:
84:c0:48:55:56:4c:f3:73:cb:27:01:67:db:e8:f1:
e7:1b:32:80:a8:53:a4:4f:3c:49:1a:f0:25:82:08:
0d:4d:6d:35:24:3d:04:49:ff:94:c3:fe:14:35:57:
4f:fe:b9:6d:ee:af:fa:6e:e2:9b:e3:0f:ef:fe:d0:
c4:79:16:ef:4c:44:fe:ae:ba:b7:c6:15:06:e4:fe:
61:2b:5d:e9:61:20:8c:c0:a1:a1:3b:49:e7:f0:8f:
eb:80:b7:fc:89:1e:54:2a:74:6c:d5:a8:74:77:c3:
3a:d5:0a:8c:c8:f2:f9:97:6b:0b:a9:25:21:7a:3f:
78:89:66:a7:31:0d:57:2a:78:aa:da:e8:74:ae:93:
51:da:dc:44:60:9e:7e:5f:02:1f:16:ba:dc:71:a4:
8b:b8:98:b0:03:aa:9f:7a:e1:59:64:2f:a1:c4:33:
d9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:1B:B1:F3:FC:55:A6:19:FB:51:82:DB:F6:3F:05:E1:49:E8:95:2F
X509v3 Authority Key Identifier:
keyid:84:77:B4:B9:FE:72:99:25:D9:12:C6:6D:00:B6:81:DD:A1:0A:2A:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/hHe0uf5ymSXZEsZtALaB3aEKKgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hHe0uf5ymSXZEsZtALaB3aEKKgE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/kRux8_xVphn7UYLb9j8F4UnolS8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.224.0/22
Signature Algorithm: sha256WithRSAEncryption
78:d7:21:a6:9a:e7:06:c8:9b:87:8b:93:c7:d2:d1:50:d5:04:
f5:1e:59:a3:15:c5:73:22:8c:1b:60:2a:ba:97:1f:30:0a:7e:
5e:22:6c:46:27:21:ba:d4:de:16:0c:8d:26:51:cb:19:e3:b2:
90:64:89:94:d9:38:5f:fc:75:8f:c0:11:ef:c2:a6:86:ec:35:
ca:ab:52:53:60:55:db:6d:ca:b1:0a:d1:25:74:1c:5c:c6:00:
51:32:89:b1:22:82:2d:3a:09:18:e3:e2:44:01:29:d4:af:93:
a2:f1:c8:46:ad:fc:5f:c3:62:a4:fb:78:3d:51:c1:c8:63:df:
39:37:e1:00:6e:94:c7:67:48:1b:6d:b9:b0:da:c5:3f:ba:9f:
08:65:b3:d3:76:5d:46:fd:b8:ba:8a:f5:55:03:2f:4f:65:70:
ca:60:26:70:c8:0b:fe:4d:f2:b5:ff:85:8d:26:ec:cd:9b:6f:
a5:4b:e9:8c:a2:f3:dd:6b:7c:50:c3:e3:f9:5f:2e:33:da:13:
ee:8d:59:2f:62:60:4e:15:ef:85:2d:99:19:48:c3:90:b4:7f:
47:4a:a7:87:6d:7e:ee:6d:f4:89:c4:39:01:75:7f:66:80:83:
ed:84:c3:cd:3b:b9:e0:b8:c6:f4:c1:c3:fd:10:1a:f6:a9:2e:
60:7c:54:15
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:25 2025 by rpki-client