Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/4J2dOUxLpES2GzxxVQbBMIBbebU.roa
File: 4J2dOUxLpES2GzxxVQbBMIBbebU.roa (raw, json)
Hash identifier: 8D7NJ6G2NKL++Mum5Dkc1uXk46A6+Kd0YxgCliA3HLI=
Subject key identifier: E0:9D:9D:39:4C:4B:A4:44:B6:1B:3C:71:55:06:C1:30:80:5B:79:B5
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 04FB
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/4J2dOUxLpES2GzxxVQbBMIBbebU.roa
Signing time: Sun 07 Feb 2021 12:47:49 +0000
ROA not before: Sun 07 Feb 2021 12:47:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.150.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1275 (0x4fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Feb 7 12:47:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E09D9D394C4BA444B61B3C715506C130805B79B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:10:db:a1:f8:5a:47:fb:78:0d:5e:05:08:5a:
20:28:54:82:ca:b8:01:9b:3a:7a:ed:d0:5d:fe:17:
ea:e7:5d:d6:b4:ae:1f:d9:52:7b:82:37:46:80:f2:
04:ad:cf:85:fa:d2:f7:07:de:de:4f:f7:d2:85:50:
b8:28:bd:2c:66:3c:4d:35:43:12:76:c6:36:72:43:
d8:5f:f9:6c:0d:84:34:b3:cb:a5:a4:57:cf:be:98:
68:92:47:9c:01:5d:c0:e8:f5:72:37:90:d2:a3:78:
06:54:42:f8:70:13:cc:03:41:17:17:60:f7:d2:6d:
3a:69:02:b1:18:66:a1:67:b0:5d:82:48:72:ba:e4:
4a:6d:2b:6b:dd:c9:c7:a4:dd:7a:0f:54:ea:cd:7c:
dc:a4:4c:91:e5:cd:60:89:87:6d:19:7c:65:5a:29:
4a:58:29:b1:eb:6c:60:69:d8:5a:bb:64:38:54:05:
8a:aa:38:2c:02:c1:b9:56:da:1f:f0:7d:61:98:2e:
98:f3:ac:1c:18:88:81:3a:ea:4d:f5:8e:3f:83:b9:
ae:1a:7d:75:e1:52:15:eb:4c:ed:e3:0e:fe:bd:e3:
ee:bf:99:9a:9b:fe:6c:9e:bd:d2:86:9d:cd:79:20:
da:fe:3f:5d:b7:69:81:ec:a3:aa:7d:b8:18:55:9c:
6e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9D:9D:39:4C:4B:A4:44:B6:1B:3C:71:55:06:C1:30:80:5B:79:B5
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/4J2dOUxLpES2GzxxVQbBMIBbebU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.36.0/24
Signature Algorithm: sha256WithRSAEncryption
21:83:90:f5:2a:bc:c1:ec:2f:d9:51:74:a2:4e:c2:86:44:1a:
99:fc:78:57:54:66:ab:ef:7a:29:cd:fd:f6:1d:0e:ba:39:67:
12:ad:7c:ef:ae:01:49:77:e5:c7:59:80:8c:da:92:d3:f0:da:
0f:44:ec:0f:dd:91:2e:1d:ef:28:7d:79:69:b4:40:31:58:99:
12:45:1f:57:ff:87:d5:f3:b9:f8:bc:40:b4:27:5b:96:27:1d:
01:27:34:89:92:52:56:ed:ca:ef:b2:88:1e:05:80:fb:5b:c6:
51:96:89:bb:f8:1c:b0:67:85:cf:46:8e:29:10:e5:74:0e:7b:
d9:6a:ff:e9:26:eb:5e:ac:ce:d7:87:64:14:23:60:90:4c:1d:
2d:68:d4:38:52:68:66:ed:96:13:f4:9f:8c:0f:b6:8f:4c:75:
84:9c:97:2a:63:64:5e:2e:c9:bc:f4:b3:ca:d7:bb:4b:37:e9:
a0:c4:d9:2e:35:3f:d2:49:cc:04:06:70:33:21:a8:3c:19:cb:
b5:29:a9:01:e8:f3:4a:8f:22:11:ed:7a:52:b6:ba:4e:91:85:
03:47:66:b7:81:27:0d:f0:83:41:e1:07:b3:7d:53:4c:1c:85:
ef:50:ed:e5:ae:e1:37:f2:68:fe:d9:4a:f4:d7:bb:9a:36:01:
7b:9b:de:8e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org