Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/rPMdIzHu6AxHgYMsCHxCKcVW8S4.roa
File: rPMdIzHu6AxHgYMsCHxCKcVW8S4.roa (raw, json)
Hash identifier: HoTLretWsnJBhy+xgjAaPbpvkdVuNknHcM+zl62cMNw=
Subject key identifier: AC:F3:1D:23:31:EE:E8:0C:47:81:83:2C:08:7C:42:29:C5:56:F1:2E
Certificate issuer: /CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8
Certificate serial: 0848
Authority key identifier: 33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/rPMdIzHu6AxHgYMsCHxCKcVW8S4.roa
Signing time: Thu 21 Jan 2021 09:53:23 +0000
ROA not before: Thu 21 Jan 2021 09:53:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.16.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2120 (0x848)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8
Validity
Not Before: Jan 21 09:53:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ACF31D2331EEE80C4781832C087C4229C556F12E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a0:70:71:8e:c5:52:5d:4c:71:47:f9:88:0a:
29:b7:65:5b:20:af:c2:04:24:c7:ef:42:e2:db:ec:
f2:85:c4:56:99:c6:6b:51:e9:f0:34:3e:8f:a9:52:
e9:99:06:63:b9:e0:79:bf:e3:b0:02:99:be:54:70:
2e:16:5b:a4:98:08:56:56:24:5e:d3:bd:67:b9:10:
6f:0e:89:cf:5e:5b:04:64:ad:1c:72:eb:89:58:8d:
47:35:0e:ae:c3:3c:8a:b3:7e:69:ef:96:32:e4:55:
29:11:21:f2:b6:ec:d9:10:ec:cc:e1:d0:d8:fb:4b:
59:3e:f8:23:96:02:03:22:64:4c:d5:43:36:d2:45:
c0:8c:8b:ae:e2:07:0e:8b:40:e0:75:9e:07:6a:f4:
33:ea:44:d1:9b:b8:5e:b0:99:35:62:15:f4:e1:14:
f7:57:bf:b5:fe:0f:03:cb:84:22:e2:aa:30:4a:bd:
af:e0:88:36:45:68:ee:0b:4e:e4:a1:05:fd:67:43:
b4:0a:3b:6f:06:2b:9f:f5:87:87:2c:7b:35:1a:92:
ae:c0:f7:fa:ff:1d:dd:34:a5:cf:96:f5:b6:9d:a5:
59:04:76:81:04:61:69:d0:13:a4:a2:fc:b9:ba:38:
2c:ee:bb:97:86:6b:ab:f2:4a:ed:95:19:cc:29:2d:
55:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F3:1D:23:31:EE:E8:0C:47:81:83:2C:08:7C:42:29:C5:56:F1:2E
X509v3 Authority Key Identifier:
keyid:33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/M6gOdbovKw_UMSGJp-Q-Q1Po06g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/rPMdIzHu6AxHgYMsCHxCKcVW8S4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.16.240.0/22
Signature Algorithm: sha256WithRSAEncryption
56:db:06:ab:d3:60:c5:74:20:8c:25:ed:c4:91:6c:38:02:5e:
29:e4:d5:13:73:ea:44:f8:2f:9a:ff:90:cc:f6:7c:23:4c:45:
58:a6:27:3a:50:82:a4:4a:51:84:d0:fe:da:d8:ef:c3:16:ec:
f2:99:67:80:e0:ce:c0:1f:5b:89:da:ea:93:d5:66:04:78:f4:
cc:48:47:0a:e6:f9:53:d6:88:b2:d9:db:fa:f2:20:9b:c0:25:
83:d5:ca:5c:7d:72:ad:64:a7:61:c4:3c:f2:a5:ac:12:a9:2d:
46:a2:42:8b:1e:87:57:25:65:a9:e5:da:08:35:69:0e:87:90:
9f:e8:8a:53:b5:ea:8f:d7:e0:36:19:08:d7:de:af:f8:9d:1d:
2c:48:96:c8:e8:95:bf:03:03:d9:29:26:d0:76:80:8a:2b:41:
75:39:16:9e:b6:ae:38:c4:c8:ae:a6:d2:1c:b3:cd:44:4e:59:
76:a4:ca:b1:9b:15:94:75:d7:6a:01:1c:82:96:31:fb:88:24:
ab:4e:ce:8c:02:81:8d:74:1e:d8:31:11:a8:0c:19:81:34:eb:
97:4d:c9:ae:18:19:ef:31:dc:68:03:db:f6:23:9b:de:b6:0d:
33:1e:2e:dd:2a:1c:d7:eb:8c:44:31:e6:12:47:55:b0:c8:e5:
4e:1b:69:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:46 2025 by rpki-client