Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/gWeUY8tyyCxLmDbBP8ugtjwMr2U.roa
File: gWeUY8tyyCxLmDbBP8ugtjwMr2U.roa (raw, json)
Hash identifier: GuDLl8Nb33BNZFAgSLJSLVYMMYa8WMaOg02nZFH9ErM=
Subject key identifier: 81:67:94:63:CB:72:C8:2C:4B:98:36:C1:3F:CB:A0:B6:3C:0C:AF:65
Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Certificate serial: 0A35
Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/gWeUY8tyyCxLmDbBP8ugtjwMr2U.roa
Signing time: Tue 18 Oct 2022 06:40:51 +0000
ROA not before: Tue 18 Oct 2022 06:40:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17710
IP address blocks: 103.234.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2613 (0xa35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Validity
Not Before: Oct 18 06:40:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=81679463CB72C82C4B9836C13FCBA0B63C0CAF65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:78:19:68:45:0a:45:d9:49:85:7d:a8:90:e4:
87:bc:84:03:5f:95:9a:3f:e5:92:56:93:c9:50:95:
8b:64:47:3c:64:68:28:3c:f0:2e:da:93:52:a6:9d:
4e:b2:bb:8c:fd:ca:fa:ff:79:1a:7b:ec:ed:ed:45:
e3:7d:ef:07:c5:1f:31:32:ea:5e:01:89:85:44:cb:
ff:ce:08:44:ec:ef:b9:c9:47:21:bb:1c:a5:fb:c1:
67:d2:8a:4d:a6:9e:97:fa:d2:3c:21:15:b6:35:15:
d2:df:aa:8c:1b:ed:5b:6a:7c:a6:b1:8c:a1:73:7f:
ff:7a:2a:73:17:42:7d:2a:4a:2e:a7:97:78:aa:2c:
da:38:18:00:fd:d2:19:76:ff:fe:26:8f:5e:5e:02:
23:bf:f0:b8:5a:f3:61:9f:f5:3e:90:8c:6f:14:8e:
ce:82:57:aa:86:2a:d5:cf:52:cc:f5:66:b1:b1:19:
6a:81:dd:da:64:97:49:da:61:b9:6f:a7:8d:5b:65:
cd:7e:91:c8:68:91:34:98:fa:1f:bc:24:db:04:a5:
d9:9e:25:73:11:d6:e8:5e:82:4b:66:6e:34:2c:90:
7d:bc:94:2c:ed:90:32:a3:18:4e:1e:37:4a:bc:2c:
69:f7:91:f0:20:56:1f:ac:a2:eb:6c:b5:b9:d2:95:
83:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:67:94:63:CB:72:C8:2C:4B:98:36:C1:3F:CB:A0:B6:3C:0C:AF:65
X509v3 Authority Key Identifier:
keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/gWeUY8tyyCxLmDbBP8ugtjwMr2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.81.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:5b:eb:d2:e8:23:71:26:72:63:cf:a3:94:1f:48:49:ee:ed:
2a:60:72:d5:27:bd:92:22:ac:2b:1e:69:41:a8:69:67:b9:b4:
b3:7b:43:87:5e:7d:e7:bf:b3:eb:51:b3:c8:a3:eb:4b:6c:1a:
24:ab:cc:3c:79:3b:1a:73:ca:f4:09:db:da:a5:28:75:83:9d:
32:25:98:86:ac:c2:bd:c0:7d:22:03:d2:62:3e:e9:cb:ba:6c:
5f:4d:63:86:aa:3f:69:bb:b7:d9:21:63:b8:66:d4:7b:f4:5d:
ef:b4:3d:e1:5a:c3:3a:f8:4f:2c:a7:0e:fb:a8:b2:50:55:c7:
bb:2b:e7:3b:c6:d9:d6:40:00:1d:7d:1a:52:00:e3:ac:05:75:
e0:c2:60:32:18:97:dc:58:76:1c:74:83:cf:f4:7e:ca:0f:ab:
91:c1:50:34:a8:00:48:86:68:b6:fe:cf:60:ee:c5:6f:f4:c3:
1b:0a:88:59:07:b6:73:ad:d8:6f:5e:42:02:95:bf:45:8a:c1:
74:16:7f:37:b9:d0:64:c2:0a:9c:93:61:ff:36:34:8e:f2:df:
0d:76:5c:9e:b0:2b:d4:5b:b9:92:fb:8d:93:02:38:80:e1:ef:
53:7b:3a:52:f0:b1:b3:40:bc:69:90:bd:71:36:09:64:63:49:
8c:03:fe:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:35 2025 by rpki-client