Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/HYRHwp1UqY8uRhwgCu9Pn2L5wio.roa
File: HYRHwp1UqY8uRhwgCu9Pn2L5wio.roa (raw, json)
Hash identifier: gzTWIuZ3VyvA0k83GMbpfammH43YkVMfYhGz3GQGD+Y=
Subject key identifier: 1D:84:47:C2:9D:54:A9:8F:2E:46:1C:20:0A:EF:4F:9F:62:F9:C2:2A
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A73
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/HYRHwp1UqY8uRhwgCu9Pn2L5wio.roa
Signing time: Fri 16 Sep 2022 06:13:29 +0000
ROA not before: Fri 16 Sep 2022 06:13:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2675 (0xa73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 16 06:13:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D8447C29D54A98F2E461C200AEF4F9F62F9C22A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c5:14:e0:70:97:a8:58:30:f7:be:0e:5b:3a:
ae:cd:07:48:55:ad:be:a9:84:53:c2:b4:af:7b:f7:
34:f3:98:31:5d:23:c0:c0:47:11:7a:bc:c3:c9:df:
c6:6f:a5:b5:e4:a4:0b:2c:1d:9e:1f:e0:ec:96:c9:
82:50:f7:ed:88:2b:c0:c4:7a:4f:65:d7:9c:5a:c7:
1e:aa:af:40:5e:a9:ba:2f:c4:5a:93:55:11:e9:2f:
21:e2:d7:4a:40:9c:07:8b:0d:3c:e1:4f:77:f2:17:
82:4a:80:51:b0:33:0c:b0:67:17:a0:57:ed:2e:20:
43:6a:69:b0:61:58:55:1b:58:f9:f1:86:f0:13:5f:
97:40:7e:a9:c5:aa:e7:aa:04:c1:f9:af:20:b6:56:
7c:74:42:bb:4a:35:b8:ce:30:fe:55:f5:99:6a:0e:
ba:6f:e9:c0:bc:33:93:4a:cd:b6:76:e0:8e:07:bf:
e9:29:81:e3:c8:9a:19:5a:db:56:59:53:22:a6:46:
22:80:20:f5:c2:a6:e4:66:f0:c0:f1:ae:0e:15:d0:
66:29:0a:de:bf:46:5a:07:5e:ec:7d:88:48:93:24:
cf:9f:4f:07:72:3e:f2:ac:b9:99:dc:1e:1a:3b:2f:
0b:6a:ef:85:42:b5:d4:33:7d:73:f9:4d:ae:43:1c:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:84:47:C2:9D:54:A9:8F:2E:46:1C:20:0A:EF:4F:9F:62:F9:C2:2A
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/HYRHwp1UqY8uRhwgCu9Pn2L5wio.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.160.0/23
Signature Algorithm: sha256WithRSAEncryption
85:3b:f7:6f:87:52:85:42:54:5b:c3:7f:bb:58:95:f0:fe:b0:
c8:e9:26:85:59:22:d8:60:06:db:38:47:82:44:9a:84:91:38:
a6:6f:23:6e:d9:62:dd:62:63:1c:8f:b7:0c:0e:c3:07:3d:9f:
e6:cf:7b:5e:01:bc:30:e7:92:af:87:92:c2:fe:4a:17:bb:06:
d1:ef:f5:4b:43:25:01:55:d1:4c:71:4a:cd:5b:6f:af:d5:1e:
4e:9c:bf:34:91:23:96:d4:2d:e0:d5:76:17:1d:02:42:4b:68:
b0:01:82:23:bc:52:be:11:98:f2:d1:08:39:0e:ed:cb:b5:4a:
f4:94:24:a5:86:0c:f3:ea:65:47:98:65:81:72:82:7f:3d:6c:
af:03:f0:a5:0d:6b:35:af:19:85:b8:c5:d7:c0:30:16:0c:83:
db:49:42:4e:bf:ad:45:1e:ca:3e:d1:69:2c:cb:ba:1a:56:96:
6b:19:f2:37:58:d5:df:e9:cd:22:44:1c:95:68:43:78:e8:a5:
d5:ea:18:95:3b:55:c4:fa:6b:af:b5:d8:28:e1:06:c1:95:67:
43:87:8f:52:5b:d9:d1:c6:45:e0:96:87:fc:31:36:2a:1a:8a:
67:5a:b0:e7:c8:a0:f2:3e:4b:91:db:03:c4:5b:70:7b:a5:df:
fe:62:26:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:38 2025 by rpki-client