Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/1NqZb3jKrPd3eMFFFCtlzgutKAA.roa
File: 1NqZb3jKrPd3eMFFFCtlzgutKAA.roa (raw, json)
Hash identifier: AYFOuvAnDrEoYvXx4rucsQxvpno0TudX00Q6Bn9RhWY=
Subject key identifier: D4:DA:99:6F:78:CA:AC:F7:77:78:C1:45:14:2B:65:CE:0B:AD:28:00
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0951
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/1NqZb3jKrPd3eMFFFCtlzgutKAA.roa
Signing time: Sun 07 Feb 2021 11:53:18 +0000
ROA not before: Sun 07 Feb 2021 11:53:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.30.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2385 (0x951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D4DA996F78CAACF77778C145142B65CE0BAD2800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:69:7e:8a:60:2f:2f:8b:bc:32:25:c5:78:
5a:c8:5e:8b:cb:e0:a5:e2:f1:03:42:51:c9:a5:3e:
79:88:72:69:c5:1d:57:f8:f4:f7:0f:0d:d0:12:5f:
cf:24:87:23:63:7b:7c:31:e9:55:6e:74:1e:64:c0:
b2:c6:08:2f:0d:03:93:a3:21:85:f1:38:74:7f:a0:
f7:66:ae:bb:1f:ae:40:ca:a0:01:51:01:0d:4d:6a:
7b:35:ce:38:41:a0:82:98:16:5e:3d:c3:34:f1:c6:
51:d1:3c:78:13:65:20:e1:39:e0:0b:ee:0a:87:ec:
eb:43:b1:21:9e:ad:ad:71:c6:00:65:4e:00:53:d4:
cd:f9:08:86:17:b3:5c:6e:95:32:c8:41:15:a8:d7:
6b:e9:9e:c3:76:55:66:6a:e4:43:71:96:40:06:c0:
8b:44:1d:05:f5:ca:83:e9:e7:e6:b3:48:8c:0c:7c:
33:d8:a5:7d:22:a9:60:a5:9b:0c:c4:60:9c:91:3a:
34:62:eb:8f:a9:47:36:f4:31:64:08:f0:7f:c8:1c:
5c:10:77:b3:f3:b8:8a:34:6d:24:bb:d4:50:46:c4:
f3:63:c5:f1:c7:6a:82:d8:64:27:44:5f:8a:2d:73:
44:f9:d3:aa:d0:4e:3e:7d:f8:91:86:36:2e:71:de:
d0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DA:99:6F:78:CA:AC:F7:77:78:C1:45:14:2B:65:CE:0B:AD:28:00
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/1NqZb3jKrPd3eMFFFCtlzgutKAA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.45.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:33:38:e8:a2:56:aa:98:e0:64:44:d9:c1:5c:fb:87:6e:01:
57:4f:2d:20:89:d9:f8:1c:2c:92:9f:57:1b:25:2f:01:ed:4a:
c9:6f:b4:db:fa:ca:4a:e4:db:c3:19:82:76:cc:0a:10:6b:9f:
ef:af:5b:50:d2:9c:a1:8d:43:4e:33:f5:72:e7:60:39:35:10:
5b:f1:fb:8c:da:0c:b9:d9:05:59:80:2e:2f:c1:34:a8:86:e3:
70:e5:f7:1e:30:79:11:3c:84:28:a4:4b:ae:03:76:f0:f2:50:
0f:ad:c9:79:eb:61:3b:27:3d:9b:23:5a:d0:c4:d2:84:88:21:
2c:62:b2:93:ac:6e:2d:95:bc:06:8e:df:be:a4:9e:57:de:1a:
e9:8f:88:26:3c:5c:0b:8f:1f:29:00:8d:bb:a5:84:be:ee:36:
42:8a:cd:5d:39:32:75:74:34:87:2b:bc:d7:d6:b5:b2:69:e4:
3a:77:2e:cd:f5:11:2f:cd:26:53:3f:eb:1e:9f:55:81:61:bb:
1e:d1:50:43:fb:32:31:87:c4:af:9c:d7:5a:d2:12:30:5d:1c:
36:c4:68:e3:95:b9:58:be:bd:4b:d8:17:9f:41:a7:bf:a6:06:
be:46:43:7b:2c:35:fa:54:5f:35:cf:95:87:61:0f:b4:05:db:
01:02:71:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org