Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/0F8TOQ-JAz-zaPYiQwKBHbhzjcY.roa
File: 0F8TOQ-JAz-zaPYiQwKBHbhzjcY.roa (raw, json)
Hash identifier: Dn9bimlf69Q/ZWgIm9cnVWdWk3Uego+RcU/EemcD/4I=
Subject key identifier: D0:5F:13:39:0F:89:03:3F:B3:68:F6:22:43:02:81:1D:B8:73:8D:C6
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0856
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/0F8TOQ-JAz-zaPYiQwKBHbhzjcY.roa
Signing time: Wed 04 Nov 2020 08:32:12 +0000
ROA not before: Wed 04 Nov 2020 08:32:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.30.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2134 (0x856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:32:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D05F13390F89033FB368F6224302811DB8738DC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3d:b9:59:37:f7:39:d7:1b:f3:e3:8f:f7:5c:
6e:1d:43:2f:12:b7:cc:78:98:19:6f:a4:1c:2e:2e:
e2:b8:69:c3:88:5b:3c:a3:6d:03:e1:a7:80:9a:78:
00:1d:b5:13:4c:5d:4d:af:5b:e4:87:95:e3:ab:76:
ec:4c:52:e9:e5:b2:d0:bc:d8:9e:aa:0e:b1:af:22:
17:ca:8e:a9:e4:ce:e5:00:bd:4c:f5:ff:fb:cd:d8:
d5:cb:dc:71:56:27:91:e1:db:17:7c:be:73:31:2c:
85:7a:f0:82:0f:d3:69:9d:e0:95:28:7e:72:27:46:
8b:42:a5:dc:4b:75:62:04:1f:d8:fe:29:56:3a:9b:
5c:27:78:95:80:fe:96:39:94:2c:c3:d1:08:2b:2a:
02:b7:22:17:8c:76:a3:12:c5:aa:e1:fc:36:fb:b8:
eb:59:5b:b2:bf:4d:6d:8d:1c:32:a3:da:66:30:85:
97:05:bd:af:ce:2b:c8:1b:d9:59:73:68:f5:03:a2:
ba:0e:84:0e:e2:b1:b8:1f:b1:e0:00:61:2f:0e:89:
e8:b3:75:d1:76:97:9e:ad:06:86:b0:55:38:6f:57:
23:13:41:e0:43:b7:cf:4a:9f:2b:49:32:1e:17:a9:
b2:51:9d:3d:18:f1:64:7e:c6:cc:17:5c:94:b8:89:
eb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5F:13:39:0F:89:03:3F:B3:68:F6:22:43:02:81:1D:B8:73:8D:C6
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/0F8TOQ-JAz-zaPYiQwKBHbhzjcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.46.0/24
Signature Algorithm: sha256WithRSAEncryption
19:9b:a5:48:95:97:de:b2:0f:2a:0c:bf:85:d1:6e:17:21:8d:
e4:68:e4:73:de:12:74:8b:17:a1:3a:51:82:1e:ce:0a:ee:eb:
9d:9a:21:cb:cd:c6:e3:e6:22:e4:64:a8:af:88:91:4d:1f:89:
01:08:a2:2d:be:4c:94:14:02:52:7d:f7:cb:df:02:df:19:94:
83:09:62:c7:55:e5:6f:b7:cb:4a:a5:76:77:e9:1d:d1:d8:1c:
2b:20:25:79:94:b3:bd:2e:2b:bc:6a:0e:2b:a9:51:07:72:ed:
b2:ff:a5:2f:c3:bd:4b:f8:e8:76:e8:e7:8c:83:60:ac:2a:ce:
54:af:2c:e2:cd:94:78:37:dd:19:5b:21:b7:40:9c:91:6d:56:
35:13:de:cd:c3:16:93:c7:18:20:3a:a5:d8:6a:64:a4:ff:60:
f7:b5:eb:cf:00:58:8e:3f:36:2f:f1:55:ec:a8:08:09:7b:9c:
e4:8a:85:ee:66:90:c3:f8:37:37:e8:ce:bc:e2:93:3b:50:0e:
4a:bb:e3:af:d9:a3:25:43:8f:af:51:d5:f6:58:e9:0e:05:28:
1a:4f:76:08:8e:75:26:07:f0:e6:81:8c:fa:f9:d1:f8:22:de:
8c:39:d4:fb:a2:66:a2:75:c0:c2:73:2d:83:f4:58:03:22:b9:
1d:fb:b1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org