Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/CdkLqi4mPZ01T7p024yWVGwkZzQ.roa
File: CdkLqi4mPZ01T7p024yWVGwkZzQ.roa (raw, json)
Hash identifier: q5/19eyAZivj53QjeEqxyKNo1mlzav8eCEoy+AsIlA0=
Subject key identifier: 09:D9:0B:AA:2E:26:3D:9D:35:4F:BA:74:DB:8C:96:54:6C:24:67:34
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B2D
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/CdkLqi4mPZ01T7p024yWVGwkZzQ.roa
Signing time: Tue 25 Apr 2023 01:27:53 +0000
ROA not before: Tue 25 Apr 2023 01:27:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 101.3.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2861 (0xb2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Apr 25 01:27:53 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=09D90BAA2E263D9D354FBA74DB8C96546C246734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b6:50:62:c0:a5:c2:2a:c5:06:4f:aa:8f:c7:
e6:37:23:43:d9:e4:bc:9d:4e:55:2f:c5:98:76:1c:
a4:15:be:e6:3e:84:53:ea:9d:b2:31:64:b5:d2:5c:
c2:33:c6:90:54:7d:18:47:f7:6e:88:75:43:45:3b:
d5:3f:81:08:36:16:5a:9f:1e:e1:1d:a7:a5:82:48:
38:a6:2f:6d:f3:24:61:72:ae:cd:31:1e:01:3f:98:
40:26:14:b9:ba:33:04:8a:47:62:9e:86:fb:04:2c:
ce:24:2d:dc:50:bb:91:30:4b:9e:2c:46:04:f7:06:
3e:af:2f:a2:34:f5:3f:4e:83:20:fb:37:57:ea:8b:
ec:ac:35:ce:ce:37:ac:f6:b6:d3:6c:42:8d:3b:8a:
29:cb:b5:a6:1d:49:2a:c4:90:dc:da:c0:06:7c:b9:
76:12:23:85:f6:58:fc:87:37:f2:4a:c2:0f:36:8d:
6c:ef:ab:e5:1a:f4:53:6f:e7:be:21:ed:7b:63:06:
49:c8:f7:1a:d5:21:58:06:df:ea:8c:97:ad:31:c4:
12:d0:dc:cf:75:5e:18:81:2d:bc:8a:51:1e:7e:fa:
cc:7c:25:91:e7:c0:ca:c1:82:03:7a:7f:ef:59:ab:
67:75:c1:1b:18:d2:04:c1:49:2b:47:35:4e:ab:ec:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D9:0B:AA:2E:26:3D:9D:35:4F:BA:74:DB:8C:96:54:6C:24:67:34
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/CdkLqi4mPZ01T7p024yWVGwkZzQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.188.0/22
Signature Algorithm: sha256WithRSAEncryption
18:64:32:ca:38:a1:96:43:45:53:fa:0e:63:d3:e3:5e:54:a4:
b1:fd:fd:a4:93:2a:60:2b:73:5f:df:5c:f9:8f:49:90:9e:9f:
c4:98:90:7a:aa:9c:7c:4b:5d:36:bb:13:4a:b8:67:d2:4d:d3:
9c:c9:8f:d9:be:e5:4b:70:34:df:40:dc:ce:7e:c7:75:b4:67:
e6:9b:7c:22:60:ca:f4:4e:18:6b:a5:f6:b6:16:3b:8c:62:7b:
d8:35:61:c6:ec:11:31:d6:dd:28:a0:59:e2:5c:e9:95:84:4f:
e0:48:28:cb:df:e5:e5:5b:31:c6:fb:7c:95:4a:e5:a5:40:f0:
9f:cf:07:f6:7f:31:cd:fc:83:78:b4:db:72:1c:f2:8a:70:46:
3c:8b:e1:71:53:60:9c:35:69:24:6c:00:a3:37:44:03:49:51:
99:52:63:d8:ed:35:86:1d:8a:d3:24:a7:e3:78:ad:b2:c7:15:
f7:f4:7e:4c:66:36:cc:a6:4b:05:42:a0:e8:a9:84:e5:44:12:
7c:9d:14:60:34:26:04:8f:c7:6b:15:38:e3:1a:6b:81:43:ea:
80:3e:c5:46:a5:03:c8:3b:f9:32:5d:4f:ca:75:70:e5:a3:af:
be:f9:b0:f8:b1:6d:3f:9e:58:ed:87:41:4f:52:da:0d:fd:36:
1d:ae:37:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:10 2025 by rpki-client