Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/umuP025P8sqNUArlwHsxH_3ioyc.roa
File: umuP025P8sqNUArlwHsxH_3ioyc.roa (raw, json)
Hash identifier: Ddq/vqOTlyTngeOiMbylgxNbgTLtYRDtC18nU/mnbHg=
Subject key identifier: BA:6B:8F:D3:6E:4F:F2:CA:8D:50:0A:E5:C0:7B:31:1F:FD:E2:A3:27
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0971
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/umuP025P8sqNUArlwHsxH_3ioyc.roa
Signing time: Wed 29 Sep 2021 02:38:18 +0000
ROA not before: Wed 29 Sep 2021 02:38:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131590
IP address blocks: 103.227.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417 (0x971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 29 02:38:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BA6B8FD36E4FF2CA8D500AE5C07B311FFDE2A327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7d:72:ab:91:1e:b5:94:3f:38:3f:63:a3:9f:
7b:8c:d8:0d:33:a6:fe:16:de:2b:7d:10:36:71:3f:
a5:83:67:da:f6:13:19:bf:f5:d7:4a:f7:d0:5b:7a:
0f:9b:b5:91:eb:5c:34:39:1e:9e:70:8a:af:db:5c:
db:61:0e:06:0f:ac:b9:47:eb:b8:9d:9e:92:12:3e:
48:97:3b:91:0c:e5:68:46:3e:87:d4:d6:12:74:4f:
66:00:7e:19:b6:90:c9:da:11:7f:a8:2b:60:de:2d:
93:cb:d3:db:7b:f7:f0:f0:ae:6d:cd:fe:5a:c3:82:
a4:42:7b:66:30:3f:bb:c5:19:ee:ce:22:a1:80:00:
3f:5e:ed:bb:aa:ac:87:5c:91:83:41:54:d3:0d:3b:
a0:a3:c4:62:90:9e:e4:a0:b7:2a:d2:09:51:ef:41:
4b:d4:fe:72:f0:15:f2:eb:64:b4:05:63:af:72:d7:
0e:84:03:d8:48:7b:7e:a1:a1:05:7d:f8:9c:d5:8a:
40:48:36:70:59:65:90:2c:3f:ad:50:af:b4:6d:cf:
24:cd:03:e0:13:9e:57:5e:25:57:ea:f5:c4:63:cf:
60:8d:20:a8:c4:34:4a:73:1d:4d:0b:c2:dc:1f:aa:
23:84:c5:ca:a2:3b:32:cf:cc:52:e4:c7:04:82:96:
fb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6B:8F:D3:6E:4F:F2:CA:8D:50:0A:E5:C0:7B:31:1F:FD:E2:A3:27
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/umuP025P8sqNUArlwHsxH_3ioyc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.227.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:f7:79:19:53:99:9b:15:53:90:44:7c:0e:ed:6a:ad:c6:eb:
fe:e9:69:df:1a:39:36:be:ff:23:a6:d6:53:4a:bc:ae:ae:be:
b5:91:ea:ad:b2:43:4c:2f:e1:52:e5:1f:1a:2f:43:af:e3:e7:
7f:fb:c6:3d:5a:0d:64:9c:d9:b3:d9:31:22:f1:24:00:a3:27:
28:c7:80:a9:96:c2:9f:d2:41:2e:50:3b:a7:ee:6f:01:84:7e:
25:0c:b3:b1:b3:2d:ef:5d:72:5c:a9:7a:25:67:29:b6:ff:63:
f2:aa:01:1e:b4:1f:ca:cc:ad:cd:fc:db:81:b1:ff:40:89:15:
b1:87:a7:d8:d5:34:21:4a:e6:df:4e:32:52:8d:27:a9:9e:e5:
be:09:6d:a6:7d:62:84:b9:81:2a:d7:5c:ff:21:04:83:b4:0f:
0f:34:d1:d1:1d:e0:94:45:24:a9:8f:62:62:98:41:9d:37:8e:
67:58:a7:79:f2:02:44:55:69:be:8c:80:24:0c:7c:b2:a5:bb:
ee:e6:86:42:e2:da:b9:dc:a1:91:bd:e9:79:8c:02:39:b8:33:
36:7b:ca:cf:6b:6a:13:a9:bb:a7:73:3d:14:56:c3:63:28:9b:
63:44:85:58:70:a4:c9:a0:7b:66:bb:9b:0f:39:70:2f:d3:d3:
8f:18:66:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:14 2025 by rpki-client