Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/epQOLGQ2alSm32v70ygN77qug2I.roa
File: epQOLGQ2alSm32v70ygN77qug2I.roa (raw, json)
Hash identifier: 8Q51t3+YdDu1zbJlnchTXpqWik8sB4KaBwLYVyVgUNA=
Subject key identifier: 7A:94:0E:2C:64:36:6A:54:A6:DF:6B:FB:D3:28:0D:EF:BA:AE:83:62
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 077F
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/epQOLGQ2alSm32v70ygN77qug2I.roa
Signing time: Sun 11 Oct 2020 12:02:49 +0000
ROA not before: Sun 11 Oct 2020 12:02:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 48024
IP address blocks: 103.122.20.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1919 (0x77f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Oct 11 12:02:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7A940E2C64366A54A6DF6BFBD3280DEFBAAE8362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:36:b5:0b:32:2f:15:06:cc:b4:03:0d:88:58:
5c:6d:12:f7:90:b7:ec:0a:59:70:37:1c:05:35:ca:
fe:0d:f8:96:e2:f3:83:ac:67:ac:80:a6:97:81:bd:
d1:66:54:9e:94:3c:2a:77:49:d0:81:ea:e4:67:a5:
b5:bc:fc:8a:65:a7:7f:9a:a4:a1:b0:8b:ac:a6:94:
e8:76:d9:63:0c:37:59:dc:05:95:aa:4b:85:fb:48:
e2:52:bd:35:90:72:24:c1:b3:af:df:46:41:a0:60:
91:2b:c3:25:c5:fa:b0:7e:f5:64:9a:e2:86:83:d5:
8e:a6:68:56:47:d2:7b:62:7d:95:16:44:85:a7:c0:
ea:6d:2e:c8:fb:9e:0b:01:cb:e9:ed:73:ec:d7:8b:
7a:3b:15:15:15:bb:22:ed:0d:b7:23:ca:3f:b3:e7:
33:a6:4c:33:b6:f3:1e:c9:dc:96:2f:56:f0:2f:45:
0b:a2:a6:2a:79:53:c3:c5:c6:25:e3:80:77:33:49:
93:4e:f6:57:b3:d6:7c:0d:c2:35:3a:56:94:1a:0e:
44:e2:fb:8e:a7:2b:da:5a:b8:41:0b:2b:e7:0c:de:
65:a4:47:09:3c:27:fc:ef:b7:81:71:1a:38:98:b4:
a2:59:cd:b5:fa:53:7b:b8:eb:f8:ca:3a:28:9e:8f:
de:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:94:0E:2C:64:36:6A:54:A6:DF:6B:FB:D3:28:0D:EF:BA:AE:83:62
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/epQOLGQ2alSm32v70ygN77qug2I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.20.0/22
Signature Algorithm: sha256WithRSAEncryption
85:63:0b:39:eb:80:4a:0b:35:ef:88:fe:a9:e1:f0:8d:63:75:
d1:d4:1d:af:9c:9b:63:e5:f1:42:88:94:57:f8:e7:16:03:f1:
4f:91:9c:f2:8c:53:a8:6a:3e:27:cc:15:3f:c3:cd:fc:3f:3b:
26:27:0f:8c:7a:17:d5:99:da:8e:53:e6:ce:31:93:b1:35:bf:
c9:a2:eb:14:86:57:db:42:54:c2:1d:86:29:25:44:d8:63:ae:
af:bd:bd:72:d6:3a:ff:c6:69:bd:75:80:26:33:f6:93:7c:b7:
52:49:ec:93:01:92:fe:11:bd:e0:7f:ba:6e:00:91:9a:a3:40:
9d:58:74:41:d0:e4:48:51:44:af:c5:26:30:49:e9:29:2b:ff:
d7:4e:ca:ce:1c:c1:79:a2:b0:cb:3d:7d:0b:05:a4:9f:48:b7:
54:59:6a:f8:28:51:cd:ed:d4:c6:55:87:2f:9d:5e:73:2b:5b:
82:ee:23:27:12:ca:a1:64:37:4f:34:06:31:00:ad:41:00:86:
80:62:6e:b9:c5:f6:da:cd:6f:12:84:6f:75:ca:35:a5:26:79:
bd:df:40:d7:3d:65:51:03:5e:f1:57:f8:82:c5:93:87:a3:7c:
61:b8:fd:af:90:76:71:3b:e1:d2:63:16:cd:49:c0:bb:02:56:
0d:a0:05:6b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:26 2025 by rpki-client