Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/VbjPyDFgGvvLfZWZaLWiT_PRB9o.roa
File: VbjPyDFgGvvLfZWZaLWiT_PRB9o.roa (raw, json)
Hash identifier: WqyvBf3QTDeSAIZZD9hjnvD7ZT2KIIh0BGaphi+y+Uo=
Subject key identifier: 55:B8:CF:C8:31:60:1A:FB:CB:7D:95:99:68:B5:A2:4F:F3:D1:07:DA
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A84
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/VbjPyDFgGvvLfZWZaLWiT_PRB9o.roa
Signing time: Tue 20 Sep 2022 05:50:00 +0000
ROA not before: Tue 20 Sep 2022 05:50:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2692 (0xa84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 20 05:50:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=55B8CFC831601AFBCB7D959968B5A24FF3D107DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:20:2a:23:62:f8:25:d6:1a:50:9f:91:b4:36:
10:a7:0f:87:d9:aa:c8:47:b3:54:93:18:4f:35:87:
73:df:37:52:b7:6d:a7:9b:92:50:21:cc:58:d5:8b:
04:b1:13:8f:29:62:51:c5:71:3d:b8:9d:1b:af:5a:
f7:a7:70:e0:34:6a:b3:06:59:12:06:79:cd:8a:89:
90:ae:ef:45:5e:59:b6:1e:1f:a5:7e:d7:77:67:5b:
8d:e0:5f:b0:52:6b:30:c3:5b:c8:44:17:b7:0f:26:
33:c7:6c:69:5c:f2:6c:03:af:d5:6a:66:a6:b5:92:
05:79:6b:24:27:f8:98:1d:ee:08:e4:0d:3c:70:21:
df:62:ad:44:70:11:3c:e7:2c:cc:29:5a:8e:19:05:
7e:b3:d6:a4:34:b0:b0:f4:63:24:c0:2d:e6:51:99:
ca:6e:14:6e:52:b3:47:2f:4f:0b:ca:40:55:27:94:
0e:40:a4:bb:6f:a0:15:89:c9:d1:5d:5a:29:db:83:
b9:56:d7:fa:77:15:c9:28:5a:ca:e3:43:7a:32:95:
75:23:b7:a4:40:ec:8d:80:14:a8:18:7a:2c:ea:6c:
ac:5f:eb:6a:c9:4b:3e:57:45:3d:3f:0e:db:0b:b8:
2d:ab:1e:97:13:7b:0b:56:ba:ee:77:05:ba:a1:5e:
39:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B8:CF:C8:31:60:1A:FB:CB:7D:95:99:68:B5:A2:4F:F3:D1:07:DA
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/VbjPyDFgGvvLfZWZaLWiT_PRB9o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.106.0/23
Signature Algorithm: sha256WithRSAEncryption
86:a1:2a:43:f9:73:8e:b5:5a:fb:8f:cc:79:6f:b8:14:c1:51:
1e:25:17:f2:2a:be:6a:7d:eb:ec:54:bd:c3:1e:0e:42:b7:0a:
b3:ae:17:10:fe:bb:60:45:49:25:9e:8a:b4:da:b7:53:e8:8d:
5b:6f:5a:f1:5f:4e:23:86:33:af:cb:5e:b0:30:4e:6e:3d:c6:
57:4f:35:a2:f7:46:54:cf:d1:b1:64:0a:31:74:2f:98:22:bc:
31:6e:eb:ad:9a:0f:00:68:bf:ef:83:96:94:49:d3:c3:2a:41:
8a:03:43:2d:73:cb:55:28:a9:5b:a1:2e:ce:02:9d:f0:25:8f:
10:55:30:5d:a6:6e:af:81:7d:1f:fa:b4:a6:ec:f8:fc:ea:32:
c6:bd:b4:b6:46:1f:cb:bf:64:70:a1:fa:0e:59:6c:1c:34:01:
54:92:99:7a:7c:51:97:db:0c:9c:32:8f:a7:70:3b:9b:b5:c2:
5e:e2:3a:a8:11:7f:e3:36:f7:33:be:a9:f8:d8:95:22:20:4b:
c1:37:60:94:30:72:95:3d:65:6f:a8:9f:30:f3:4e:7f:48:63:
ff:3b:b3:20:db:90:85:a8:5a:23:fb:5d:42:cf:6d:b0:ad:eb:
99:d2:b3:f9:6c:d5:77:90:c4:34:8e:a6:fe:ef:b9:84:99:75:
5e:5a:43:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:47 2025 by rpki-client