Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/DIh3SBBdCGEG6orNAb-jzfGFgpg.roa
File: DIh3SBBdCGEG6orNAb-jzfGFgpg.roa (raw, json)
Hash identifier: e3P9YtirYGyqpXcnQ95BK9+tS4CJxYp6oYeq0UQ4A1A=
Subject key identifier: 0C:88:77:48:10:5D:08:61:06:EA:8A:CD:01:BF:A3:CD:F1:85:82:98
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0955
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/DIh3SBBdCGEG6orNAb-jzfGFgpg.roa
Signing time: Sun 07 Feb 2021 11:53:20 +0000
ROA not before: Sun 07 Feb 2021 11:53:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.30.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0C887748105D086106EA8ACD01BFA3CDF1858298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ac:5f:c8:16:d6:b3:56:26:e3:08:1e:f7:44:
32:b5:71:e2:2f:4e:fb:ad:d2:60:e5:c3:ac:cd:b5:
33:9d:8c:e8:41:bd:aa:f0:4d:b6:09:b2:19:cb:e5:
46:8a:21:17:4b:42:0b:8f:66:bc:d8:ff:1a:e9:3f:
6a:7e:37:0a:4a:90:a3:5d:73:02:27:4c:73:59:f9:
02:f4:1b:33:49:16:10:64:18:13:e9:59:f6:e6:a6:
38:6c:6b:35:e4:19:be:3f:06:2f:42:f8:50:c3:7b:
05:ac:ff:aa:61:4f:73:d7:c2:0b:2b:1e:f0:d4:c5:
38:5f:95:bc:e5:e7:b7:0f:d8:c7:3d:87:06:7f:22:
4d:80:07:2c:ac:c6:a4:f8:7c:e0:45:9b:34:22:e1:
ff:7a:03:f3:d0:0c:82:e7:61:24:91:8a:e6:f2:0d:
85:64:86:27:0b:0a:5c:c9:1a:ab:60:4b:29:b2:40:
ea:0b:dc:da:79:63:6b:d4:3d:9a:68:de:7a:cf:8d:
51:f0:44:71:e2:e7:01:e6:66:f9:0d:3a:45:70:37:
3a:b2:e0:dd:20:85:74:1b:00:e9:ce:1b:a2:45:57:
bb:c7:2e:f9:64:dc:6f:d3:bc:0f:1b:b7:de:91:e0:
3d:df:08:42:bd:8a:5b:a6:e4:54:3a:ff:de:68:97:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:88:77:48:10:5D:08:61:06:EA:8A:CD:01:BF:A3:CD:F1:85:82:98
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/DIh3SBBdCGEG6orNAb-jzfGFgpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.47.0/24
Signature Algorithm: sha256WithRSAEncryption
36:26:1d:97:5e:b9:26:61:93:c2:d3:37:e1:9c:11:2b:2b:19:
13:31:77:af:28:7e:26:a2:88:07:dd:cd:83:35:4c:bc:f2:88:
40:9e:9a:e3:00:bc:c8:b3:a1:53:7c:02:b0:57:e6:db:77:9b:
78:55:2b:b9:6a:4b:b8:12:f1:56:f3:bf:5d:bf:52:3d:92:c7:
d8:28:08:f8:26:03:5c:1a:0f:8e:f7:c9:64:83:2b:5c:c3:d7:
e5:82:7c:2b:26:89:8e:c6:2d:f8:45:4f:02:28:bd:18:a1:55:
df:db:1a:86:60:87:8f:e8:80:ca:63:ae:5f:02:c7:00:70:03:
13:75:3c:64:31:ce:e6:9c:78:71:9c:4d:d1:8f:09:d2:46:17:
1c:86:b8:e1:f5:26:ef:aa:df:d6:91:e3:19:71:80:67:e6:c5:
a4:7d:a9:78:3e:e8:3e:e2:ef:02:3f:4f:1b:99:81:1b:ee:19:
00:a3:ac:68:6f:75:0b:29:85:0c:b6:d7:3f:b0:89:b0:e1:16:
69:c4:2f:3b:34:20:fe:e9:79:74:ed:4a:c0:b5:26:be:1a:cb:
a8:12:51:17:f0:1f:08:09:c0:29:ab:85:95:0f:e5:cc:8c:9a:
ca:71:ab:c0:4d:04:66:5b:55:af:97:2f:af:02:a2:20:08:bd:
0f:b4:9b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org