Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/LmxpwWqt3V8I9oQ20MUsyJFHtEM.roa
File: LmxpwWqt3V8I9oQ20MUsyJFHtEM.roa (raw, json)
Hash identifier: 3QatJdO4uPDF04cWIFkoHVymlkyVKVOA130Hc2kR9Vc=
Subject key identifier: 2E:6C:69:C1:6A:AD:DD:5F:08:F6:84:36:D0:C5:2C:C8:91:47:B4:43
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/LmxpwWqt3V8I9oQ20MUsyJFHtEM.roa
Signing time: Thu 15 Sep 2022 02:42:04 +0000
ROA not before: Thu 15 Sep 2022 02:42:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667 (0xa6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 15 02:42:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2E6C69C16AADDD5F08F68436D0C52CC89147B443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e9:ff:4f:42:58:a9:d0:ea:96:0c:79:aa:54:
af:4a:7c:e8:f1:88:b7:b0:3d:d7:1a:17:11:71:ba:
91:50:64:91:2b:06:53:f7:1f:a3:35:37:b5:09:ad:
c8:e6:44:a6:15:44:fc:4a:44:29:81:59:cc:6c:4b:
a5:71:99:8f:4c:6f:88:8f:6b:5f:f0:07:72:48:14:
92:07:a3:81:01:e6:56:bc:43:d1:32:22:05:87:66:
bd:07:8d:10:07:97:76:d6:4a:dc:6e:e9:e3:c7:1b:
6d:e7:80:f7:a3:58:71:4b:8f:62:3e:bc:d2:e7:4f:
a8:85:d0:92:37:6e:02:9c:f1:5c:ca:b7:57:ef:f0:
96:1f:c1:4b:44:fa:51:fc:c1:17:c3:5a:d7:cb:86:
11:54:6f:88:c8:60:a4:9b:c9:76:6a:df:9b:5a:ac:
c3:a5:e7:d8:8e:98:1d:72:13:06:d8:11:ba:dd:5a:
02:e9:40:81:23:e5:29:ee:ff:02:01:41:2b:ef:e5:
9e:5c:67:82:98:0a:99:0e:98:d3:d8:8a:a4:a4:7a:
88:04:38:f1:25:3b:f8:8f:32:34:e0:2e:f0:78:f8:
c5:e5:4d:51:b4:ca:c3:db:8d:82:cc:c1:e1:86:55:
fa:8b:d9:48:20:27:9f:29:a5:4e:0c:1b:56:36:04:
1e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6C:69:C1:6A:AD:DD:5F:08:F6:84:36:D0:C5:2C:C8:91:47:B4:43
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/LmxpwWqt3V8I9oQ20MUsyJFHtEM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.108.0/22
Signature Algorithm: sha256WithRSAEncryption
d1:50:0a:da:90:fe:43:65:79:1e:a7:2e:41:69:75:b3:6d:87:
b2:84:81:3f:51:a4:68:3d:ce:0b:aa:cd:c7:73:03:a3:90:1c:
10:ff:5f:de:f4:d5:22:88:10:2f:fd:b8:fb:de:65:7b:ac:68:
9d:c2:b6:09:e7:32:47:89:8a:2f:d5:c3:fa:df:d0:a8:77:8a:
1e:2e:f1:31:92:97:6d:51:ec:49:6b:6e:2e:14:5b:78:7e:09:
3c:c4:54:00:6e:d6:8e:23:57:d0:7a:e0:c7:f3:7c:27:2e:32:
ff:f1:dd:fe:74:34:5e:5f:54:e3:80:dd:2d:61:76:16:1b:14:
4a:85:8f:62:c7:9b:a7:2e:8a:97:08:71:0c:a1:a3:25:fa:40:
e0:14:a5:b8:2b:ce:4c:ea:de:b6:59:09:bb:c1:0f:0f:c2:95:
ae:b9:76:44:c8:bf:83:a5:11:23:02:58:48:cb:14:61:95:37:
2c:cb:ee:53:e9:4d:d4:15:58:2b:8c:52:95:1a:39:d7:d2:ca:
f8:27:1d:5d:64:39:c6:f5:c5:01:0c:d0:d9:b8:42:47:02:54:
a7:15:3a:29:1b:db:58:16:62:6f:80:2c:cd:57:0e:ba:d8:84:
e8:de:c3:5b:86:f5:18:36:26:43:4b:6b:30:e6:9f:94:e0:6f:
e9:fc:88:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org