Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0juY4qxFfOLcPh4i9fPnCEU3UFs.roa
File: 0juY4qxFfOLcPh4i9fPnCEU3UFs.roa (raw, json)
Hash identifier: ESmzt3hAuUmuw7Ja+LiT8yiKcQKYQD6KyrywbndjO6A=
Subject key identifier: D2:3B:98:E2:AC:45:7C:E2:DC:3E:1E:22:F5:F3:E7:08:45:37:50:5B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1050
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0juY4qxFfOLcPh4i9fPnCEU3UFs.roa
Signing time: Sun 18 Sep 2022 23:56:07 +0000
ROA not before: Sun 18 Sep 2022 23:56:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4176 (0x1050)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 18 23:56:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D23B98E2AC457CE2DC3E1E22F5F3E7084537505B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a9:61:95:70:62:8e:9c:8c:6d:f9:03:5a:97:
cc:83:98:ff:fd:f1:e9:0a:c1:4c:67:31:4d:bb:20:
ab:24:80:93:51:29:88:79:17:98:ed:ab:6d:8b:71:
c3:6a:88:5f:c6:c4:22:dd:05:93:10:94:5a:4d:9e:
75:33:73:9e:ea:b9:01:6c:f8:a1:6b:f3:d2:bd:1b:
e5:8a:79:b4:54:e3:47:6e:2b:8d:65:af:d2:a7:97:
21:55:5b:1c:12:d2:18:bb:a1:7b:c6:61:18:b2:78:
4a:45:a0:31:39:7d:ea:ac:ac:9e:dc:cf:59:8f:d7:
b6:65:00:3c:db:37:ff:22:1c:8a:c3:b3:5b:84:e1:
1d:49:10:37:6a:11:33:c0:d9:92:55:48:38:fd:42:
7d:e6:ae:4d:57:c6:1c:99:1f:da:de:22:ae:20:e5:
32:8f:2f:ec:ee:15:90:87:7a:56:99:be:12:0a:a0:
c5:25:8e:e0:a7:57:23:86:7d:54:62:b0:7d:3a:06:
8d:0a:14:dd:2d:02:a8:d5:04:c1:5a:af:8b:35:3f:
f8:5b:c3:f2:e0:13:86:66:c1:2f:39:95:2e:da:be:
7e:4a:73:e8:e4:3f:fe:ac:55:b9:41:fc:24:a9:8d:
2d:f5:8c:45:46:80:db:76:03:ad:31:39:94:b7:04:
0b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:3B:98:E2:AC:45:7C:E2:DC:3E:1E:22:F5:F3:E7:08:45:37:50:5B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0juY4qxFfOLcPh4i9fPnCEU3UFs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
53:a5:5a:eb:bb:07:24:33:98:89:e5:18:e2:83:bf:16:13:8a:
b9:09:3e:c0:b8:54:a1:44:ce:d1:99:74:d0:48:43:be:60:71:
68:69:90:10:5b:62:e3:5a:27:a9:1e:a3:44:b7:bb:05:04:60:
0a:be:88:4e:2a:3e:9b:ed:b1:0c:b6:f7:d5:e7:a2:ec:2e:f5:
66:3b:8d:b9:12:0d:91:e0:11:41:1c:41:5c:6f:a1:c2:d7:c9:
cb:33:b2:1e:6f:f1:06:a3:4f:07:ff:f4:53:23:66:04:62:51:
31:f9:17:36:ff:da:38:90:03:a9:13:46:ee:d4:37:99:67:07:
75:6e:6b:39:01:55:49:f2:dc:56:72:1e:31:af:9e:ae:14:85:
bb:9e:86:03:32:a5:de:0b:e7:bd:f8:03:91:a1:e7:11:13:ef:
1b:51:d5:a9:dd:72:07:2d:65:b9:44:75:71:0d:ab:f8:e0:73:
53:1b:3a:f7:ed:d1:b0:30:9d:28:1c:5c:84:cb:e9:3e:88:fc:
8f:d1:02:96:fc:b2:27:78:4f:13:df:53:da:68:27:d9:a9:94:
94:46:18:30:67:8b:8d:e9:86:96:f0:43:51:39:56:78:f7:45:
20:f8:a9:06:dd:96:e3:8b:da:9f:25:6c:ba:79:bd:f8:59:1f:
d8:82:0a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:13 2025 by rpki-client