Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/RwiEfnOiMlq3U5Za6DwLf6Dly2k.roa
File: RwiEfnOiMlq3U5Za6DwLf6Dly2k.roa (raw, json)
Hash identifier: tkTJrTXxrZVtLGJHWt4acWfdgLrpN8Lq85kz6X+P3kQ=
Subject key identifier: 47:08:84:7E:73:A2:32:5A:B7:53:96:5A:E8:3C:0B:7F:A0:E5:CB:69
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 054A
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/RwiEfnOiMlq3U5Za6DwLf6Dly2k.roa
Signing time: Fri 01 Sep 2023 09:46:24 +0000
ROA not before: Fri 01 Sep 2023 09:46:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1354 (0x54a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 1 09:46:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4708847E73A2325AB753965AE83C0B7FA0E5CB69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:34:2e:d0:70:c6:c3:3e:e5:00:e0:f8:4c:
b0:db:68:28:e8:d8:5e:0f:52:d0:59:64:89:15:9f:
e8:d8:28:ff:9f:d8:39:f9:3a:7c:55:48:28:dd:9c:
0c:8d:d1:1d:15:4e:08:9b:27:02:27:87:16:28:e6:
da:8f:fc:93:2f:ee:e5:77:ec:1e:f8:02:f0:cb:58:
c1:3c:3d:d9:27:7c:37:fb:ae:7d:b0:33:d1:52:2a:
2e:96:8a:22:0a:a6:21:55:12:46:ff:cc:9c:9c:33:
d5:78:4d:4f:95:b3:ab:76:40:89:b6:26:e6:9b:81:
c6:f3:94:32:98:21:21:35:02:06:a5:96:a4:86:e2:
f0:f6:3d:90:a3:ec:e4:14:c7:24:eb:c9:fa:ec:60:
c7:dc:d4:90:1b:97:95:1e:ea:78:bb:bc:fa:80:eb:
04:a4:e4:67:eb:7b:c3:4b:f0:7c:56:da:f0:63:b8:
1b:5e:5f:bd:0a:2e:5c:d0:55:ae:24:7f:a6:8e:db:
29:90:20:41:9c:ce:ee:c1:59:ba:4e:46:f0:e5:16:
bf:68:0f:ee:0c:b8:74:b5:7f:ce:8e:1d:c1:db:81:
8c:d0:2e:16:5f:90:71:19:e6:c9:d6:66:02:df:5d:
07:0c:f9:66:10:a4:e0:7e:3f:4e:36:01:8a:79:07:
cc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:08:84:7E:73:A2:32:5A:B7:53:96:5A:E8:3C:0B:7F:A0:E5:CB:69
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/RwiEfnOiMlq3U5Za6DwLf6Dly2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
29:62:00:58:94:78:50:4e:ab:7c:be:cd:61:a8:c1:e5:17:f7:
15:1d:78:22:08:3a:4f:70:bc:94:84:57:76:c3:01:81:f4:34:
c8:15:68:f8:a5:36:82:a9:ab:36:7e:0a:b2:e5:eb:46:56:6f:
95:d7:2c:02:2b:8a:50:e6:30:b3:24:d2:49:4e:21:58:08:7f:
11:64:4f:b0:d7:96:7e:d1:8a:ea:38:88:87:48:50:3d:ad:35:
76:ac:06:38:60:46:78:82:8c:65:39:6b:33:85:4e:87:c7:da:
18:c8:4d:b1:76:d7:01:2b:98:19:f6:9d:29:ba:d8:89:13:c2:
06:90:2a:ca:82:a4:3f:8b:39:5b:b8:90:6c:2b:a0:02:b3:83:
7b:42:f8:08:ff:9f:a9:5e:53:0f:6c:c8:60:0f:24:ac:ab:64:
11:e1:1a:48:d2:00:3f:64:c9:42:03:15:4d:21:57:a7:65:a1:
d8:ab:fa:f6:90:97:47:f3:ae:06:88:63:a9:97:16:10:19:ea:
41:a8:db:44:71:a4:65:eb:50:88:be:62:d5:21:7f:b9:21:e1:
24:7f:cd:7f:80:cb:eb:f3:67:50:bf:a3:fe:7c:70:21:dd:71:
99:34:69:66:96:13:3b:95:4e:70:39:4b:bf:9f:e6:d8:a3:c9:
ab:5e:50:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:07 2025 by rpki-client