Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/RgcijBn9FLk0cxLBvyYEKPEp1UM.roa
File: RgcijBn9FLk0cxLBvyYEKPEp1UM.roa (raw, json)
Hash identifier: FexNeIbTzjOBEEPzl+vzzNc82t9gwCT/c17F9pNn4Vg=
Subject key identifier: 46:07:22:8C:19:FD:14:B9:34:73:12:C1:BF:26:04:28:F1:29:D5:43
Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D
Certificate serial: F2
Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/RgcijBn9FLk0cxLBvyYEKPEp1UM.roa
Signing time: Thu 30 May 2024 09:34:34 +0000
ROA not before: Thu 30 May 2024 09:34:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 201217
IP address blocks: 103.220.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D
Validity
Not Before: May 30 09:34:34 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4607228C19FD14B9347312C1BF260428F129D543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:06:86:92:6d:d8:27:08:6d:b3:96:dc:84:7b:
d9:b0:bb:94:f2:79:5f:c3:ba:8e:08:da:6d:62:e6:
eb:09:73:ac:d7:f7:de:40:22:f8:69:1e:11:30:2b:
04:e1:a2:dd:83:c4:08:50:f7:57:10:5b:32:b7:65:
96:da:96:f2:61:74:e6:7c:83:1f:8d:2f:e0:2c:e5:
c7:1d:d5:c9:11:3d:85:be:65:19:e2:3f:bf:c8:60:
b7:71:f6:f4:45:16:22:ae:a8:d1:4a:4b:4b:65:6a:
32:86:fa:ab:11:ca:38:53:70:f6:c1:87:24:9c:e3:
2c:dc:f9:a1:e2:17:d2:5c:07:06:f6:d9:68:5b:6e:
c9:5c:5e:79:0a:b2:d3:96:04:2f:29:46:13:de:c9:
5c:1a:7a:e1:48:12:0c:9e:9c:61:29:b2:c5:30:04:
f6:3d:2b:68:2f:23:ca:13:10:09:51:e5:ee:d9:31:
68:c3:aa:27:67:04:25:19:6d:52:1d:b1:aa:40:c0:
1b:d6:11:d9:56:18:63:24:4c:1f:67:63:41:ec:15:
c1:9c:12:46:b6:89:b7:37:cf:7e:4f:70:e8:b6:1e:
a5:46:a3:2d:11:38:00:d7:3a:cd:cc:58:ba:ca:ad:
83:a1:10:30:e0:6c:ca:3f:e8:ea:79:b3:6f:33:97:
06:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:07:22:8C:19:FD:14:B9:34:73:12:C1:BF:26:04:28:F1:29:D5:43
X509v3 Authority Key Identifier:
keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/RgcijBn9FLk0cxLBvyYEKPEp1UM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.220.218.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:12:61:ea:66:c2:0c:18:d2:03:f5:62:e0:d9:b6:00:06:e6:
1d:5e:d7:84:ea:33:31:11:09:92:5f:b6:b7:9f:7f:4d:e6:2e:
ef:e0:ec:59:ae:35:5c:70:34:53:cf:32:d0:8d:ed:51:01:a3:
09:cd:9c:40:a1:4b:34:55:29:3e:ba:5b:0a:2a:3c:75:16:27:
99:2c:39:c6:05:2c:f4:9f:89:50:e1:7b:44:1b:b8:ca:03:5d:
92:00:75:a9:76:a6:0e:d3:66:5b:18:59:9d:e9:e3:52:de:4d:
e5:8a:03:e4:41:b1:95:a9:75:d7:da:cc:d7:1b:63:be:27:3a:
99:5f:84:99:71:56:08:c2:21:36:8f:e8:31:67:73:d2:d1:2b:
33:6f:ca:db:9c:81:4a:dd:79:ab:d5:58:21:6d:e8:f3:6e:86:
42:8f:c3:fc:1a:c7:ba:79:f0:41:52:09:29:bf:b2:a4:f6:44:
84:de:52:02:d5:8f:8d:8c:b0:fe:1d:69:c6:dd:b9:c3:a4:62:
7a:fa:a3:f2:f3:3d:82:e1:c7:18:25:43:e9:f2:3d:a4:03:02:
5b:48:d4:fa:1f:98:d7:95:08:08:fe:e3:a8:f1:20:17:c2:48:
71:c6:98:d6:13:7c:ff:38:ec:21:88:ef:f9:a3:ad:7b:23:e6:
c9:aa:ed:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:33 2025 by rpki-client