Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/H9HIc7O5zQG4vZMkSbykPhd2bHg.roa
File: H9HIc7O5zQG4vZMkSbykPhd2bHg.roa (raw, json)
Hash identifier: 9f6cfiVM1xbH4ej315N+IP5bGQvTXqjDWzK8mzfPL98=
Subject key identifier: 1F:D1:C8:73:B3:B9:CD:01:B8:BD:93:24:49:BC:A4:3E:17:76:6C:78
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 094D
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/H9HIc7O5zQG4vZMkSbykPhd2bHg.roa
Signing time: Sun 07 Feb 2021 11:53:15 +0000
ROA not before: Sun 07 Feb 2021 11:53:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.30.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2381 (0x94d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1FD1C873B3B9CD01B8BD932449BCA43E17766C78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fc:93:a5:f2:3d:3e:e8:5b:59:6c:a8:cf:1c:
9a:4e:33:7f:fa:d1:c5:1f:95:70:f8:e2:50:2a:a3:
2f:63:22:88:83:64:ab:fc:e6:2b:66:b2:a4:ab:fe:
5c:18:1a:f8:56:8d:b8:07:c7:39:34:16:be:0c:f5:
5d:1f:eb:39:35:54:32:a7:cd:d2:1a:f0:81:66:1a:
2c:d7:7c:a7:30:9c:b3:98:f4:43:24:b2:05:4a:a9:
83:45:6d:b9:d0:d3:a1:42:6e:c7:6a:5f:7e:04:29:
35:38:b1:b4:87:8a:42:91:3a:fd:0e:a0:e0:30:ac:
0d:eb:08:d1:08:46:4c:73:27:3c:c5:1c:08:9a:da:
4e:59:da:a8:84:48:ec:e6:7a:76:78:76:47:d2:e3:
09:b3:1c:70:90:5c:ed:1a:4c:16:35:f6:00:b8:b0:
b7:3a:49:9a:60:74:c2:b3:b4:02:89:4d:06:71:72:
51:72:39:2b:39:eb:31:73:65:45:c7:22:07:99:0e:
9e:52:f4:50:5e:59:7b:dd:89:66:ab:33:ed:7b:3b:
c0:e7:45:7e:26:41:4d:10:05:7b:0d:13:a3:8d:64:
16:d1:12:20:23:2c:5e:10:7f:33:f0:29:68:1a:07:
fc:3b:76:96:99:0d:d1:8d:d0:a1:d4:51:2f:a4:ae:
31:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D1:C8:73:B3:B9:CD:01:B8:BD:93:24:49:BC:A4:3E:17:76:6C:78
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/H9HIc7O5zQG4vZMkSbykPhd2bHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.46.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:56:10:44:4a:66:5f:5f:99:30:d1:e6:1f:9b:3c:71:77:20:
d2:a3:df:f7:b8:18:0e:aa:44:60:0b:ce:73:9a:ad:9b:6b:b5:
f0:23:d0:4c:04:ef:e4:4d:11:c3:fa:b5:e6:c1:89:20:13:ab:
8a:28:5b:2a:d4:a8:56:d9:dc:3e:26:88:ec:4a:91:28:77:23:
b8:fa:cf:64:e4:c1:da:62:61:a3:b1:43:4c:8e:cc:9d:4a:01:
d5:1b:60:53:d7:21:1c:8c:14:b1:ea:a2:66:73:c3:14:82:3b:
b2:97:b4:57:cb:05:98:50:3a:08:d4:df:49:db:ae:cb:e0:72:
14:77:14:99:70:d5:2d:46:52:07:96:93:65:14:cb:04:56:61:
4b:73:03:75:cf:4f:ee:83:a3:ac:0a:dc:6a:f2:7c:97:7c:f6:
f2:e2:77:14:e1:7f:51:0d:9c:97:6a:8c:a9:01:17:cb:40:88:
b8:4d:f9:6c:7a:31:0f:08:7c:1e:97:d5:67:23:e5:f9:b7:a5:
13:cc:d7:98:34:e5:8c:bf:68:b6:85:c6:c4:01:9f:88:f7:4a:
f5:b2:8a:3d:49:24:a8:b0:3a:ef:69:2f:f0:5c:12:c2:6c:96:
d4:de:1e:f4:4a:82:d9:ce:5c:1d:6f:2c:1a:ee:27:0e:02:f8:
4c:b0:bb:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org