Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIL/JqCtGmhSA2RyoRfLUqsXoJ24LpA.roa
File: JqCtGmhSA2RyoRfLUqsXoJ24LpA.roa (raw, json)
Hash identifier: BRd+U2qugZa8OneANmqwCz6f1uC+J6sf0rgQ3aEsl+o=
Subject key identifier: 26:A0:AD:1A:68:52:03:64:72:A1:17:CB:52:AB:17:A0:9D:B8:2E:90
Certificate issuer: /CN=6E0114FCCE7E3C83FE495A451286BB5A9EE13BA7
Certificate serial: 04
Authority key identifier: 6E:01:14:FC:CE:7E:3C:83:FE:49:5A:45:12:86:BB:5A:9E:E1:3B:A7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/JqCtGmhSA2RyoRfLUqsXoJ24LpA.roa
Signing time: Mon 22 Apr 2024 09:04:11 +0000
ROA not before: Mon 22 Apr 2024 09:04:11 +0000
ROA not after: Tue 01 Oct 2024 15:30:27 +0000
asID: 7483
IP address blocks: 103.117.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E0114FCCE7E3C83FE495A451286BB5A9EE13BA7
Validity
Not Before: Apr 22 09:04:11 2024 GMT
Not After : Oct 1 15:30:27 2024 GMT
Subject: CN=26A0AD1A6852036472A117CB52AB17A09DB82E90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:b7:44:17:20:e1:8e:0a:ac:35:e7:f1:14:
bf:26:75:c4:0b:1c:31:44:8d:34:c4:2a:e1:2f:cc:
94:ac:84:c5:50:9a:8e:3c:e1:10:45:a8:7d:84:1c:
15:a3:91:c9:77:52:8b:2a:2f:ab:79:05:52:03:15:
e2:50:b5:27:d5:d5:e5:54:5d:59:1c:86:3b:71:a0:
dd:d5:5f:8e:03:72:99:49:b5:37:b8:76:10:21:35:
ed:75:d7:22:fd:4e:98:84:45:ee:dc:fe:7d:5c:5d:
e2:d7:56:45:37:10:24:96:e1:6b:8c:c3:ce:22:9a:
ce:31:62:14:69:1b:26:7e:d3:75:dd:f9:77:fb:bb:
cc:36:91:0d:72:79:0b:ab:a4:71:d7:17:ce:73:9b:
97:16:53:2a:b3:75:c6:c8:96:30:ac:5c:2f:23:a7:
20:af:0f:31:d7:77:5f:c9:32:ba:4c:c3:cb:18:f9:
4f:e2:ce:1f:d3:30:e7:ac:97:ca:09:93:e6:f5:94:
9e:61:ee:d9:58:4a:7c:ac:74:1d:bc:92:80:83:b1:
57:0d:54:3b:31:89:41:90:12:57:50:cc:7e:f8:2e:
7e:bf:1c:a9:62:2f:db:57:e4:df:e2:e6:34:1b:a6:
24:c6:e3:ed:31:d1:fb:30:aa:c2:a5:03:2d:11:90:
5e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A0:AD:1A:68:52:03:64:72:A1:17:CB:52:AB:17:A0:9D:B8:2E:90
X509v3 Authority Key Identifier:
keyid:6E:01:14:FC:CE:7E:3C:83:FE:49:5A:45:12:86:BB:5A:9E:E1:3B:A7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/JqCtGmhSA2RyoRfLUqsXoJ24LpA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.134.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:1b:40:1a:bb:d1:cc:28:91:5f:28:f1:4f:de:9e:d3:db:a4:
4c:de:3e:eb:47:ac:af:0a:0a:2e:14:57:84:da:60:9b:4d:4e:
7b:f7:ca:2d:c0:d2:56:34:5e:91:34:62:0c:f1:61:4f:a0:42:
7e:99:c4:fa:8f:46:8b:e1:a9:03:0b:ee:74:ea:0e:1c:03:ec:
a6:32:0d:ea:ba:6d:38:dc:ef:b0:1c:7a:92:7c:99:26:37:3c:
b5:83:aa:cc:e1:95:60:54:34:66:56:56:08:27:b1:05:20:e9:
b6:6e:8b:33:90:19:f2:e6:8a:c0:3e:fb:e6:0f:99:3d:4b:c1:
8e:49:52:3d:af:8a:d2:2c:ac:89:1c:ff:ed:5b:cf:81:50:31:
0f:4e:b1:bf:a7:c0:87:42:a8:ce:de:c4:cc:d6:eb:b1:bf:a9:
4c:6a:d0:ea:4a:41:69:83:e9:1c:47:02:bb:1b:30:e3:fd:23:
be:f5:89:63:a7:87:f6:c5:09:f0:9d:10:36:5c:75:1a:6d:12:
e7:37:7d:28:ef:6e:22:fb:2a:a5:cc:5d:d3:e5:8a:ba:c3:ce:
19:d8:b4:1a:fc:ff:65:af:49:10:e6:04:2e:23:91:9e:de:99:
75:b8:f7:b8:46:31:1b:eb:95:b1:b6:a3:89:ce:f0:80:05:cb:
32:a3:f9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:13 2025 by rpki-client