Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/LgjDApCI_LGEQcYEf8wTd7hBwiA.roa
File: LgjDApCI_LGEQcYEf8wTd7hBwiA.roa (raw, json)
Hash identifier: CfgvYm7QeZZgrxbC4reb/7iJA1buXeNCzJRs0ZkEXgs=
Subject key identifier: 2E:08:C3:02:90:88:FC:B1:84:41:C6:04:7F:CC:13:77:B8:41:C2:20
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B97
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/LgjDApCI_LGEQcYEf8wTd7hBwiA.roa
Signing time: Fri 01 Sep 2023 09:49:26 +0000
ROA not before: Fri 01 Sep 2023 09:49:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 101.3.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2967 (0xb97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 1 09:49:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2E08C3029088FCB18441C6047FCC1377B841C220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:75:35:7e:45:1f:11:cd:f6:dc:3f:0a:8a:5a:
2d:74:0d:f8:51:5c:b7:1f:dc:64:62:ee:d6:31:f6:
ec:3b:be:3d:7e:01:28:ab:03:ec:8a:c2:2f:21:a7:
b5:96:f0:88:4a:e6:a6:09:eb:a0:de:85:de:b4:e7:
48:0b:ad:8d:95:39:2e:28:1f:08:f4:e1:cd:14:72:
3d:b1:7d:6c:72:bf:d5:69:7a:fd:25:59:1e:f5:a7:
60:4b:ee:31:01:b0:08:b0:9f:6e:5c:a8:91:f4:1a:
12:3e:45:cd:07:84:3c:b4:73:c8:97:1a:72:33:55:
81:c3:0b:12:5d:73:ad:27:4c:7a:54:b2:74:4c:b4:
28:03:31:14:70:e1:7a:b7:0b:bf:9f:65:33:5c:f4:
c4:3a:48:bd:36:e3:6b:1e:92:eb:48:79:77:87:54:
24:de:7f:6d:ef:ce:18:bc:8c:cd:4d:7d:5f:50:29:
ec:32:25:ca:76:46:c4:14:75:9e:1a:8c:39:28:22:
6e:6d:b2:9e:32:74:27:97:44:77:0a:64:60:cc:3b:
02:78:ea:d4:73:be:57:59:76:84:6e:ad:c5:ff:76:
88:19:d1:a3:67:ce:93:08:75:b2:8c:89:be:8e:f6:
3f:da:09:4c:b5:23:e6:02:69:b0:41:56:22:62:1a:
cd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:08:C3:02:90:88:FC:B1:84:41:C6:04:7F:CC:13:77:B8:41:C2:20
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/LgjDApCI_LGEQcYEf8wTd7hBwiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.188.0/22
Signature Algorithm: sha256WithRSAEncryption
35:c8:2a:64:e9:5b:d8:fb:c6:0a:d0:ef:23:5a:3c:24:b9:a9:
09:3e:37:49:9c:22:ab:35:13:9a:29:82:12:f3:30:87:b3:6e:
e7:8c:2d:8d:fb:bb:ee:27:73:19:8c:14:f7:27:4d:4b:5a:a7:
04:9d:58:ba:b3:fe:0a:58:60:a3:e4:16:ac:3e:b8:e6:80:3b:
e0:47:ad:8d:ce:30:cb:4b:17:b8:44:a8:16:ec:61:d4:b2:e0:
48:f8:47:20:81:16:b5:c8:c5:0a:aa:94:69:f3:e6:9c:6c:27:
71:21:7b:61:bd:a7:9e:90:bf:1e:e4:a0:f2:fe:88:f2:27:51:
7a:e2:76:ec:f4:9c:08:31:11:e2:e7:d7:e6:d4:c2:8d:0d:82:
d8:be:06:93:57:79:98:fe:f8:ca:a7:fb:90:28:f2:a1:c2:ff:
06:13:24:ae:58:03:31:ae:6f:f1:93:fb:5b:93:52:25:ed:d1:
bd:e2:c6:15:0a:49:23:1b:72:a7:42:b0:05:63:ab:a8:79:96:
97:53:87:8a:80:c2:60:dd:97:6b:ee:c9:e8:bf:c3:41:77:c0:
07:b4:d4:33:e6:aa:03:b0:f5:33:3a:78:d6:55:5f:db:6c:38:
70:3d:09:92:de:78:7f:cb:78:96:af:ba:8d:f5:d7:64:a5:97:
0a:f4:bf:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:41 2025 by rpki-client