Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/7GfsGXuKn8FVpJjGQ0E7Axw-sKA.roa
File: 7GfsGXuKn8FVpJjGQ0E7Axw-sKA.roa (raw, json)
Hash identifier: IMuo2zgK03+T4HU9SVUiA3QfQvFk82MyAkR/cq1Qd84=
Subject key identifier: EC:67:EC:19:7B:8A:9F:C1:55:A4:98:C6:43:41:3B:03:1C:3E:B0:A0
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0858
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/7GfsGXuKn8FVpJjGQ0E7Axw-sKA.roa
Signing time: Wed 04 Nov 2020 08:32:24 +0000
ROA not before: Wed 04 Nov 2020 08:32:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.30.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2136 (0x858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:32:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EC67EC197B8A9FC155A498C643413B031C3EB0A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:e3:ee:5c:ff:db:06:8a:ce:85:b0:88:01:
b7:f4:c1:36:38:ae:13:71:e0:9f:90:f0:99:47:6c:
f3:a4:6e:2d:9b:1f:db:a3:85:0d:1e:c4:71:ca:ac:
7d:60:2a:95:cf:df:27:bd:8e:c4:2a:ba:8d:fc:10:
65:1e:ec:19:4b:0b:62:e7:85:86:e0:12:79:59:96:
6c:b9:a3:2a:05:7f:33:c0:0c:9d:b0:b8:dd:7b:85:
16:81:0d:e6:d3:d6:2a:8f:0c:5e:cb:7c:ad:c6:ea:
d1:17:af:25:85:00:9a:1d:3a:7b:1d:99:5b:39:6b:
a3:da:3e:69:ad:2a:d7:f7:0b:10:4e:a2:87:4c:c6:
4f:52:15:a5:7e:54:fd:8d:51:52:94:51:31:91:72:
6a:69:e6:12:0f:e4:2d:bb:90:d4:0a:ab:09:71:2b:
83:98:3c:8e:63:a9:be:eb:6a:f2:78:e1:ea:51:83:
f6:db:41:13:d0:f6:4d:9e:89:18:ea:31:4f:86:b0:
53:88:38:10:26:d7:9d:29:5c:32:0d:b8:e2:58:de:
8a:04:7e:66:05:1b:58:ce:c7:56:a8:fe:d2:24:8e:
1c:6e:4f:25:d7:b7:55:3b:ba:ac:74:bd:be:bb:00:
84:e7:65:14:d6:76:f1:e7:35:71:f8:45:0a:88:39:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:67:EC:19:7B:8A:9F:C1:55:A4:98:C6:43:41:3B:03:1C:3E:B0:A0
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/7GfsGXuKn8FVpJjGQ0E7Axw-sKA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.47.0/24
Signature Algorithm: sha256WithRSAEncryption
05:cf:13:94:95:40:a6:48:d3:09:57:df:42:98:f8:db:13:16:
d0:e5:66:4b:dc:48:c1:b3:29:9f:c2:8a:0b:53:65:bb:e1:52:
e8:aa:ab:73:41:31:5b:32:cf:36:db:66:8c:48:b0:fb:a9:6f:
df:66:66:ef:09:59:a1:47:d1:2c:6a:d4:ab:fb:43:bf:8d:a3:
6b:3a:40:97:9e:ed:f9:44:32:ba:73:7d:f7:91:1c:32:9c:17:
3b:11:bc:87:56:15:75:6c:dd:d9:0d:4b:ab:0e:90:fc:de:a9:
ab:86:ea:75:92:47:c9:a9:05:57:86:fe:d6:be:6c:dc:67:95:
cc:ce:8c:be:13:92:10:44:b6:11:f0:e2:10:39:30:2e:02:57:
d6:2a:17:12:b1:3e:07:3f:99:ac:31:7c:c4:9f:e7:33:3e:eb:
ba:87:be:5f:48:a2:ea:73:d1:d6:43:cf:06:63:ec:e4:3a:49:
92:17:e2:10:3a:62:7b:ea:26:9f:28:85:72:98:cb:63:ee:92:
c2:c3:6a:65:6f:cc:8a:ce:8c:b4:d4:09:82:36:4f:0c:f3:da:
fc:2b:bd:f0:69:e7:0e:4b:54:2c:d5:3b:cc:e7:6a:d7:22:3c:
97:97:f6:39:92:a3:ca:08:bd:00:7e:2a:bc:bb:68:a3:d7:c0:
74:bc:0d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org