Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/e3wrnYmY4K-abUHTRsxZL5Doooo.roa
File: e3wrnYmY4K-abUHTRsxZL5Doooo.roa (raw, json)
Hash identifier: DBKnm1QAMNziaZPYLuqn2JnI1GKJLxh3Amv2IixWQjc=
Subject key identifier: 7B:7C:2B:9D:89:98:E0:AF:9A:6D:41:D3:46:CC:59:2F:90:E8:A2:8A
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 038C
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/e3wrnYmY4K-abUHTRsxZL5Doooo.roa
Signing time: Fri 01 Sep 2023 10:16:41 +0000
ROA not before: Fri 01 Sep 2023 10:16:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18178
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 908 (0x38c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Sep 1 10:16:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7B7C2B9D8998E0AF9A6D41D346CC592F90E8A28A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:38:75:36:81:19:94:9f:e9:ef:94:91:bd:48:
ce:4f:08:e7:28:68:2e:5b:27:cc:a4:ca:09:42:4b:
91:b8:c8:79:25:43:d7:6a:ba:8d:9e:45:95:67:06:
ba:50:5f:03:68:9e:33:2a:6c:9e:04:b7:d6:0c:50:
9e:b8:3a:c1:c7:c2:30:3c:7e:a6:06:37:63:21:18:
36:b3:29:f1:28:6d:a8:84:0c:1e:e8:d8:a6:55:dd:
f5:56:8c:3b:ef:a1:d6:65:d3:eb:58:1d:3a:1d:b3:
4a:51:36:ba:bd:13:4c:d7:84:35:34:f5:92:b8:84:
8c:7b:58:cf:42:56:95:4c:ac:0c:9b:38:c4:e1:9c:
01:b1:8b:dc:43:e5:c3:35:b5:b6:9f:7f:d9:e6:06:
73:c9:4d:fd:da:c2:d3:ec:b8:19:b5:2b:5c:2e:04:
66:14:43:39:ff:b2:fb:ef:45:fd:40:f0:8a:b7:ae:
2e:20:c3:6b:68:a7:e2:75:f4:aa:a4:ba:cb:4f:b7:
01:e3:9d:35:0f:27:bc:94:c4:9b:7f:06:d5:09:c3:
0b:4b:91:29:f6:d4:da:cc:3e:28:9f:6c:3b:de:96:
b4:4b:9a:46:8f:ea:ee:dd:dc:ec:64:62:d1:cf:f1:
3b:8a:04:46:2f:74:bd:fb:6c:6d:f3:93:50:77:5e:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7C:2B:9D:89:98:E0:AF:9A:6D:41:D3:46:CC:59:2F:90:E8:A2:8A
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/e3wrnYmY4K-abUHTRsxZL5Doooo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:48:74:8f:66:eb:c9:e1:ca:d1:ca:62:49:71:af:91:d1:cd:
d8:f0:8b:4d:19:f1:86:01:d5:27:a4:4b:21:34:0d:50:94:63:
86:81:bc:a8:a8:a4:61:6c:a9:7c:bd:3d:ce:a1:a0:d3:5a:6f:
7d:5c:47:ed:fc:43:f7:58:c1:12:84:ff:d0:82:ed:79:a5:11:
67:60:4d:29:15:41:a7:e7:e5:46:f5:41:bc:63:40:6c:46:8c:
6c:82:00:3a:fd:44:41:b1:49:1c:db:b1:0e:a7:d4:67:0f:3c:
b3:7e:5f:a3:e1:7e:5f:c5:4b:e6:ee:0f:6a:28:56:62:5a:de:
0e:16:01:cb:9a:53:a9:10:33:f3:c6:1c:12:e5:e1:6f:f6:a8:
47:3b:b7:63:7c:22:39:1b:9e:06:3f:c6:d3:bc:df:f5:98:a2:
f2:64:2e:7f:8c:32:8d:f9:7f:e4:3d:05:2c:63:10:1b:e5:0f:
c9:dd:0e:c4:89:9e:55:c8:98:c7:c3:7a:2f:f8:fd:ad:17:6b:
c8:40:ab:37:8f:0e:f6:02:69:c0:76:c0:5d:96:ae:8b:b4:2e:
26:28:94:82:5c:b5:14:a6:be:94:95:30:ad:9d:bd:bd:b1:e8:
08:f2:5f:8d:86:0a:8e:64:7f:6c:3a:8b:3a:65:22:52:f1:17:
4d:f5:c3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:22 2025 by rpki-client