Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/VXfZQ9ZgKozLbq_8iYcmxsk7As0.roa
File: VXfZQ9ZgKozLbq_8iYcmxsk7As0.roa (raw, json)
Hash identifier: PDTe6qiFLiVLUy8i5R/jNpQaj3SL/f+fPVoN+pQdPDM=
Subject key identifier: 55:77:D9:43:D6:60:2A:8C:CB:6E:AF:FC:89:87:26:C6:C9:3B:02:CD
Certificate issuer: /CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D
Certificate serial: 030F
Authority key identifier: 0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/VXfZQ9ZgKozLbq_8iYcmxsk7As0.roa
Signing time: Mon 29 Jun 2020 05:49:25 +0000
ROA not before: Mon 29 Jun 2020 05:49:25 +0000
ROA not after: Tue 02 Feb 2021 02:20:09 +0000
asID: 18049
IP address blocks: 103.126.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 783 (0x30f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D
Validity
Not Before: Jun 29 05:49:25 2020 GMT
Not After : Feb 2 02:20:09 2021 GMT
Subject: CN=5577D943D6602A8CCB6EAFFC898726C6C93B02CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ab:bd:0f:e1:48:dd:25:9d:3f:d4:7d:27:f6:
dd:bd:8b:13:35:9a:ae:33:be:0f:cf:f2:a2:9b:ae:
04:8b:15:8d:33:9d:d2:d0:e6:ef:56:e1:62:4f:b8:
66:13:25:30:da:a8:59:3a:bb:32:ad:e7:22:c0:60:
f3:e1:ff:fd:9f:b2:29:9a:ad:c3:b0:69:ea:f4:74:
92:dd:87:b5:d9:f1:8d:f7:39:6c:de:fa:5f:68:41:
70:ca:76:c7:ba:db:cc:ff:ca:f0:2b:53:de:93:b3:
b8:04:cc:d0:0d:6e:2e:ac:91:58:1b:5f:4d:3c:bf:
fe:38:d0:5f:b2:5c:13:3f:6a:96:42:05:34:fa:1a:
1b:82:6a:95:d2:ae:e1:a8:bf:8f:63:09:35:19:36:
6d:01:a9:ea:69:0d:9a:95:b7:f9:bb:f6:12:ac:5e:
0f:c8:3c:f9:d9:d4:92:2e:79:dc:16:ec:8d:e2:18:
ab:32:37:d3:ea:7f:6e:5c:a2:e9:54:38:40:b2:85:
2b:3e:7a:e7:ed:9a:da:b0:0e:68:16:17:0b:a1:94:
28:88:fa:81:17:66:ce:1d:87:4b:cc:80:36:d3:80:
cd:c0:f4:0b:99:82:4e:f3:28:3a:5d:25:78:f5:00:
51:bb:98:7f:c3:27:6e:ad:e7:b4:6e:00:30:7e:21:
da:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:77:D9:43:D6:60:2A:8C:CB:6E:AF:FC:89:87:26:C6:C9:3B:02:CD
X509v3 Authority Key Identifier:
keyid:0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/C9olxjD4_0bjB7GUzSqtHm0GMx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/VXfZQ9ZgKozLbq_8iYcmxsk7As0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.88.0/22
Signature Algorithm: sha256WithRSAEncryption
47:08:8c:8c:cb:e0:f2:ee:ea:76:4f:8f:c3:42:2d:85:94:8a:
5e:1f:82:cd:2d:21:04:6a:07:55:b3:88:ac:bd:b6:76:36:21:
f9:2c:d9:84:55:e5:58:6a:f2:a7:cd:5a:f8:eb:34:97:1d:c0:
73:bc:1b:a8:62:b2:32:01:40:3f:73:20:7a:6e:ba:51:3c:b2:
9f:5f:3b:14:7f:ed:d9:85:3b:de:fe:84:84:e1:54:e8:72:f8:
c3:4b:00:54:f0:40:0f:a8:c3:db:93:8e:00:dd:50:4b:85:88:
4f:ae:75:5b:b7:ca:77:e1:24:1f:a8:45:25:56:dd:4e:61:18:
70:5e:71:74:6c:92:65:77:a4:a2:75:d4:18:df:63:0a:bb:1e:
53:8f:f2:f6:b7:05:75:2e:56:c7:48:04:59:7e:4b:38:1c:04:
f2:ea:5c:e4:a0:31:4f:57:2b:8f:71:5e:36:17:52:9d:de:ef:
61:1a:e7:54:47:99:c0:fa:b0:a1:81:18:a0:2e:55:9f:39:a9:
59:d7:cb:f4:65:fb:3a:74:15:3a:53:33:49:d2:a3:69:d8:7d:
4d:0f:68:1d:62:86:6f:ea:de:18:37:53:7a:8e:9e:59:31:71:
af:68:47:de:da:25:9c:18:2f:1f:ca:6b:80:0c:85:b1:02:d3:
e3:c5:c3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:33 2025 by rpki-client