Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/0QeGE1ZxV8b3n7EwbhDJn6bv6Ak.roa
File: 0QeGE1ZxV8b3n7EwbhDJn6bv6Ak.roa (raw, json)
Hash identifier: th129xS4r5nlhEm8u9kN9KBIqpKNfPJHZZEA1VlJ1Z8=
Subject key identifier: D1:07:86:13:56:71:57:C6:F7:9F:B1:30:6E:10:C9:9F:A6:EF:E8:09
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0960
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/0QeGE1ZxV8b3n7EwbhDJn6bv6Ak.roa
Signing time: Wed 29 Sep 2021 02:37:00 +0000
ROA not before: Wed 29 Sep 2021 02:37:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 103.123.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2400 (0x960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Sep 29 02:37:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D1078613567157C6F79FB1306E10C99FA6EFE809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:f7:b4:25:57:41:4b:c3:c5:bc:bf:12:36:
c0:82:5c:31:6f:bd:fa:f8:2c:54:fe:87:28:4a:74:
f2:f7:4e:bf:2e:ba:80:48:06:d6:3f:64:c0:48:e9:
b0:be:db:ca:df:23:b4:07:4a:45:d6:5a:ce:7e:f5:
d0:0b:3e:62:44:a4:97:aa:8b:1a:d3:f9:75:8b:db:
32:bf:73:2b:1e:a0:45:72:ae:fb:0d:a7:c5:18:ef:
e0:09:a9:83:7e:78:bf:87:46:d5:5a:73:5b:ce:cd:
ea:55:34:ae:39:3e:1e:85:16:43:f9:f8:36:67:de:
24:e3:66:1d:e1:2b:e0:d6:97:a8:56:93:ce:d1:e9:
70:79:40:e6:d0:49:01:09:e6:54:55:5d:66:05:2d:
0b:2b:eb:97:10:0b:0b:0a:0a:ff:bb:bb:c7:d8:d5:
6f:2b:73:93:b3:b9:b5:09:e3:74:44:e5:7e:50:8e:
c3:3e:25:85:57:27:1b:1a:63:ad:2a:47:17:3d:29:
75:6a:71:11:9f:61:c8:d1:58:39:9e:cb:a1:b7:5e:
16:88:7b:ec:20:3b:4d:fa:4f:b5:7b:4c:7b:e0:fd:
3f:1b:11:39:58:f1:ef:11:10:af:6a:89:9f:47:06:
65:e5:2c:b3:23:52:bf:41:1b:1d:cb:84:c8:6f:8f:
b6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:07:86:13:56:71:57:C6:F7:9F:B1:30:6E:10:C9:9F:A6:EF:E8:09
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/0QeGE1ZxV8b3n7EwbhDJn6bv6Ak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.140.0/24
Signature Algorithm: sha256WithRSAEncryption
37:c8:b8:29:58:ec:a0:ba:b4:da:be:a3:f9:06:b8:c3:63:a0:
7c:18:79:ed:15:f1:44:89:6b:1e:d5:57:15:d5:9e:b6:47:29:
1f:0d:3c:ab:b2:af:b2:9a:9b:de:ae:ce:ae:9b:13:de:d8:1c:
82:5d:9f:9b:d9:ce:fe:60:7c:fd:cc:e1:6d:02:c6:93:eb:09:
14:57:da:f1:d9:f5:9a:3d:bb:6c:1d:7b:56:3d:32:69:27:0f:
f9:f7:b5:5e:70:3a:d9:5b:56:88:37:fe:57:54:23:35:98:f9:
33:40:f3:b3:a7:7c:85:e5:16:58:ed:47:05:46:6b:0a:20:92:
7c:47:ee:16:4a:52:b9:b7:84:86:9c:e7:bd:bf:4d:80:67:42:
e1:9a:26:59:46:26:15:13:a5:df:29:17:7d:8e:f6:87:e0:d3:
07:0e:fb:8a:48:b8:ab:64:ab:af:1c:e9:23:c0:0e:1b:c8:5a:
4c:39:fa:c4:73:71:a0:d2:af:44:69:ce:76:7f:44:97:db:8f:
d1:bf:5a:ca:b0:bc:6d:03:a4:65:e3:dd:ee:51:43:21:ee:6b:
a2:7f:cf:8b:f4:02:12:06:a9:57:62:12:c3:fc:00:5e:86:a3:
b8:82:30:17:f1:e1:6d:cb:30:30:1a:1d:16:a1:65:5f:f8:0b:
aa:51:8e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org