Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/laZ9ANU-JVpD2m3UKnEONPHtkCs.roa
File: laZ9ANU-JVpD2m3UKnEONPHtkCs.roa (raw, json)
Hash identifier: trQwS3lQ0PEcso56Vp8+eBla1ygtVa5OSFnZjDaKWA8=
Subject key identifier: 95:A6:7D:00:D5:3E:25:5A:43:DA:6D:D4:2A:71:0E:34:F1:ED:90:2B
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A8C
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/laZ9ANU-JVpD2m3UKnEONPHtkCs.roa
Signing time: Tue 20 Sep 2022 05:54:34 +0000
ROA not before: Tue 20 Sep 2022 05:54:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 101.3.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 20 05:54:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95A67D00D53E255A43DA6DD42A710E34F1ED902B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c2:43:07:5d:68:fb:72:7e:eb:b0:78:11:4a:
b7:46:af:3d:f9:05:99:ae:e0:a6:71:f8:30:6c:69:
29:73:34:cd:91:10:66:9a:93:b8:be:e7:e9:93:0b:
f0:6a:02:90:1d:49:ea:db:ab:f1:01:d1:a3:85:1c:
71:03:e0:ad:c0:bf:e4:97:a6:e8:5c:fa:63:22:65:
35:ef:c3:75:51:3b:23:f0:ce:fa:fa:36:a5:c4:e7:
ec:7a:d8:0a:28:8d:94:2c:99:d8:9c:51:49:94:c7:
ce:ec:94:9f:02:0b:9e:e6:d2:5e:83:9d:6a:4a:e7:
17:d7:93:83:f7:93:24:dc:24:48:69:3c:5b:54:d4:
f7:fe:92:65:c6:66:2d:9b:27:b8:a4:ca:4b:40:b4:
66:ea:d5:14:7c:3b:fa:37:76:4d:4c:3b:bd:61:62:
aa:84:e8:5b:c2:e4:a1:4e:99:10:63:20:8a:1b:5c:
4c:01:92:54:e3:8c:33:1a:c8:34:e4:97:78:77:21:
69:e5:85:36:45:78:a4:71:72:cc:21:07:74:8d:59:
20:25:12:b2:a3:cc:96:de:cb:fa:bc:84:dc:84:66:
6a:6f:ed:6f:2f:73:d3:49:11:c4:f4:8c:fe:cb:25:
12:dd:b9:98:69:83:79:05:e0:ec:36:fd:23:04:c8:
28:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A6:7D:00:D5:3E:25:5A:43:DA:6D:D4:2A:71:0E:34:F1:ED:90:2B
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/laZ9ANU-JVpD2m3UKnEONPHtkCs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.160.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:c2:cb:3d:7c:f7:a7:40:5d:1d:e3:83:08:58:7a:0e:3c:4e:
da:61:36:22:bf:b1:6f:b6:c5:0e:fa:43:6f:34:0f:7a:a2:7e:
61:08:71:e9:23:7f:99:c6:69:60:1e:28:ef:ff:2c:20:c6:c1:
42:ab:ae:9a:c9:60:76:af:46:50:b0:3b:62:e7:11:1b:15:ed:
06:39:97:13:e4:97:f4:4c:f4:25:d9:6d:65:24:c7:7c:00:a2:
76:f1:1f:ab:31:72:b9:dc:ab:a4:72:89:03:01:d5:4a:62:68:
cd:f0:d7:25:3d:92:83:40:a6:d4:d2:7f:2c:6e:c8:1d:8b:cc:
0f:3f:f2:60:f8:e0:d5:56:ca:43:64:20:06:f1:8d:f7:d9:f2:
16:3f:98:1c:7a:1c:ef:ba:e6:43:f5:75:09:8e:77:be:14:68:
61:9d:9a:e2:65:6b:91:27:84:94:eb:97:f6:b9:46:10:68:84:
3e:de:de:69:f8:56:a3:79:4f:13:e3:7d:6d:aa:af:49:1b:40:
7c:80:42:88:bc:9d:54:0e:7d:2b:e0:4c:1b:c8:6d:54:ec:b1:
ae:fd:80:cf:e0:9a:d3:96:e0:ab:a1:70:8c:59:0d:0b:66:54:
68:46:3a:6b:f5:16:b7:bc:56:68:19:31:fb:85:e7:03:99:10:
0e:1b:b7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:35 2025 by rpki-client