Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/4epEKiK-yPILhUbzhcLAG6t9frk.roa
File: 4epEKiK-yPILhUbzhcLAG6t9frk.roa (raw, json)
Hash identifier: WGEoI33oHsqbkxrDJcfgn6m+7zudC9VYUAP5HTOBskE=
Subject key identifier: E1:EA:44:2A:22:BE:C8:F2:0B:85:46:F3:85:C2:C0:1B:AB:7D:7E:B9
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 09A8
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/4epEKiK-yPILhUbzhcLAG6t9frk.roa
Signing time: Mon 06 Dec 2021 07:52:31 +0000
ROA not before: Mon 06 Dec 2021 07:52:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 101.3.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2472 (0x9a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Dec 6 07:52:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E1EA442A22BEC8F20B8546F385C2C01BAB7D7EB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:43:4a:1e:8e:f1:c7:83:af:57:31:e2:a9:
1c:ad:a5:33:45:87:fd:de:8a:0d:47:fa:a5:ba:35:
c9:c4:5c:a1:5a:f3:4e:e9:81:82:34:51:d6:db:29:
64:73:6e:d5:ec:b8:c1:2d:40:d5:e7:df:8c:7a:64:
95:30:17:78:8e:48:a6:ad:4d:25:b6:86:af:c4:8a:
2d:af:2b:26:85:77:2a:b3:dc:01:31:15:59:64:63:
20:86:e1:d4:52:65:60:85:1a:1c:df:eb:0c:0e:06:
b7:78:a7:6f:c5:08:3c:96:13:3e:f0:94:02:fa:d1:
66:f2:96:9e:a1:aa:e2:58:b1:3f:97:39:bc:50:f9:
0f:e3:2e:8d:91:ba:32:ed:f4:44:dc:3b:e4:2d:b8:
8f:18:de:b0:04:46:89:d1:60:23:a3:33:4e:5b:6f:
34:0c:da:25:46:a4:f1:2c:b3:53:7e:ac:25:a5:0b:
7a:7f:4d:90:2a:a4:70:cd:a8:58:ca:c9:6c:36:0e:
44:59:cf:05:c3:3f:3d:63:00:50:e5:1f:fe:0f:eb:
1a:df:ad:39:25:b9:91:e4:4c:a6:28:53:aa:24:12:
fe:05:16:a3:58:bf:e8:e5:f4:23:1d:c9:81:58:0a:
8e:46:79:c8:15:8e:68:e9:fe:ec:0f:7e:6b:99:11:
c5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EA:44:2A:22:BE:C8:F2:0B:85:46:F3:85:C2:C0:1B:AB:7D:7E:B9
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/4epEKiK-yPILhUbzhcLAG6t9frk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.128.0/22
Signature Algorithm: sha256WithRSAEncryption
24:ef:46:59:53:ff:98:f5:a0:25:b0:ba:b4:3d:32:23:51:83:
38:88:34:2a:62:e3:13:74:69:ae:a8:75:c2:04:86:86:87:f0:
14:3d:82:a6:01:40:18:b2:29:b4:0c:d4:e4:ec:c6:f7:20:b4:
20:cc:00:1a:e4:a6:b9:f5:5e:b1:89:1c:db:da:6b:31:d9:63:
3b:b3:fc:f4:85:1c:2b:44:57:3c:79:c9:a9:6f:01:1f:4e:bd:
72:06:f9:54:f7:2c:4b:6d:e6:43:1a:ad:d5:90:fd:95:8e:81:
b9:31:d0:c1:9e:42:20:a7:a8:f6:36:a6:da:bf:6f:7b:8d:a8:
b2:8c:64:78:8a:76:9a:a0:dd:98:4e:24:16:c8:f6:01:4d:9c:
42:58:0c:2d:e7:06:9d:03:d6:7d:cc:24:33:ef:3c:cc:14:cc:
17:0d:de:82:b0:e8:41:4e:51:e4:54:3b:ab:a2:93:83:51:75:
df:b4:ee:fe:95:26:fe:39:7e:e5:c7:92:4e:fd:c0:5b:4b:81:
bd:bb:d3:ee:2f:28:ea:44:db:ae:bf:e8:90:bc:f3:6e:78:39:
af:5b:b7:7e:35:d0:ac:64:22:f5:77:83:93:2b:3d:a3:46:43:
d8:63:11:32:d3:83:38:6a:e9:e1:ca:d0:fe:61:0b:df:51:8f:
c2:ea:0d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:23 2025 by rpki-client