Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/2xiSFocXHCjML_rWLQpAO_1fu9Q.roa
File: 2xiSFocXHCjML_rWLQpAO_1fu9Q.roa (raw, json)
Hash identifier: jXSo4CDep1XJlRzJci3c/tEuZOnLFgEquBceUYr7riU=
Subject key identifier: DB:18:92:16:87:17:1C:28:CC:2F:FA:D6:2D:0A:40:3B:FD:5F:BB:D4
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B98
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/2xiSFocXHCjML_rWLQpAO_1fu9Q.roa
Signing time: Fri 01 Sep 2023 09:49:26 +0000
ROA not before: Fri 01 Sep 2023 09:49:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 101.3.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2968 (0xb98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 1 09:49:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DB18921687171C28CC2FFAD62D0A403BFD5FBBD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:89:bc:91:93:5f:53:b6:28:c0:21:3b:aa:13:
11:6e:05:e2:a5:a2:6b:cf:2a:00:0f:99:7f:d3:f4:
19:fc:9b:16:ef:d5:30:38:f6:e6:6c:2f:8c:2a:3e:
b8:0a:a7:43:fc:db:57:a6:8a:86:0e:e3:26:7e:ce:
31:0a:ca:41:d7:01:cb:2b:57:d4:b1:35:77:25:6a:
b0:c8:92:42:54:d1:93:52:4b:00:a3:17:f7:c3:51:
0b:16:63:c7:4d:3f:30:a1:46:2a:e5:8b:c9:5d:06:
95:5c:c1:99:36:a1:27:be:da:74:6a:71:40:34:e3:
36:48:2b:93:14:4b:f2:f2:22:84:5a:1f:73:5a:69:
39:1a:73:bd:39:b0:8f:80:fd:24:26:8c:89:ce:c6:
50:4b:8f:e4:22:8b:8a:90:c4:13:2f:02:01:4f:75:
0a:16:4f:7d:bf:e4:aa:87:0b:dd:13:86:bd:56:94:
74:c3:72:56:63:65:8d:fc:2b:92:3c:66:54:ee:d8:
49:63:23:76:13:72:83:be:19:5d:e0:57:39:67:b8:
89:48:24:47:49:9a:f5:88:1b:60:53:45:f1:19:ab:
12:04:bb:11:84:ab:89:d1:ca:13:0b:1f:ef:42:6d:
ed:4a:04:8f:6f:95:65:23:dc:4e:83:5a:ce:b2:8f:
a8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:18:92:16:87:17:1C:28:CC:2F:FA:D6:2D:0A:40:3B:FD:5F:BB:D4
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/2xiSFocXHCjML_rWLQpAO_1fu9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.106.0/23
Signature Algorithm: sha256WithRSAEncryption
45:85:ab:64:dc:17:59:31:5c:ff:bf:13:8f:23:5e:ec:3e:01:
7e:6f:50:1e:1c:dd:9d:fc:f9:3b:41:67:0e:1e:d3:d1:42:6f:
80:57:c9:1d:98:b7:60:27:35:ef:6c:77:41:fe:b0:be:3c:98:
05:2a:e0:4e:b5:c5:c9:fb:f4:3d:21:dc:21:b9:32:c8:3c:9b:
df:13:4f:cb:c3:87:7f:1d:80:fb:99:ed:8e:46:7d:55:09:e8:
a8:63:86:9e:a5:3a:6b:d5:db:72:83:c7:c3:d0:0b:d1:f6:13:
9e:f7:97:ce:84:f1:99:2a:18:9f:e8:79:0c:86:ee:cc:94:9c:
48:17:ec:f3:9a:9e:15:c8:a2:1d:8b:55:9f:bb:21:73:e0:73:
84:75:89:43:21:31:be:3b:59:c1:9f:d5:e8:18:6b:da:83:9a:
4d:08:f9:89:6e:87:2a:f6:41:f4:e8:0b:c8:5c:f0:01:fc:23:
be:aa:5d:1e:a5:42:8d:dc:3d:a2:76:17:ea:c1:3c:33:01:d0:
19:59:3f:d1:b2:de:ec:b4:f5:27:b9:09:8e:ef:3c:8c:c3:2a:
6c:dc:40:de:da:c5:a2:0c:8f:27:a9:7e:f8:d2:50:78:c0:94:
5d:20:4f:5c:85:f3:2a:6e:35:d1:b2:5f:a0:e8:2b:19:d6:09:
45:f3:30:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:00 2025 by rpki-client