Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/K3Z7IKEU7_S0bJqdrDfdsJrglt0.roa
File: K3Z7IKEU7_S0bJqdrDfdsJrglt0.roa (raw, json)
Hash identifier: 3OrFLI2I66NlQgNL7IBPaIF+jinAv5QsFpY6AVS1/ns=
Subject key identifier: 2B:76:7B:20:A1:14:EF:F4:B4:6C:9A:9D:AC:37:DD:B0:9A:E0:96:DD
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0A47
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/K3Z7IKEU7_S0bJqdrDfdsJrglt0.roa
Signing time: Wed 29 Sep 2021 02:52:51 +0000
ROA not before: Wed 29 Sep 2021 02:52:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18424
IP address blocks: 103.30.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2631 (0xa47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 02:52:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2B767B20A114EFF4B46C9A9DAC37DDB09AE096DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:80:22:25:9c:36:df:7e:b8:8b:91:c0:9e:b3:
98:bc:e2:7d:da:63:37:22:9a:66:35:7b:8c:27:14:
6c:31:95:30:26:d6:3f:c3:73:c6:a2:a9:69:cc:7c:
ac:90:a6:a9:01:9b:cd:72:cd:51:d5:6f:65:3e:e0:
af:bb:20:ef:41:b8:7b:9f:32:3f:b3:1a:92:f3:85:
8b:0e:aa:c2:cf:eb:20:19:14:64:86:af:75:07:3f:
2b:6a:05:0e:74:35:82:de:52:8e:af:f9:d0:97:6d:
46:5f:73:fa:c6:ad:9e:05:3d:70:1d:3e:d7:ab:f7:
cc:06:2c:21:05:cf:88:65:85:10:ef:6b:f0:ca:91:
5d:9b:77:08:8f:e0:d1:a1:cf:e6:50:05:74:52:60:
3e:90:7a:06:b2:06:c7:9d:47:a2:4f:8b:8e:4a:3e:
87:79:2d:dd:64:aa:66:d3:cd:c9:1c:2c:6e:05:88:
25:38:0e:df:e4:12:6b:6a:09:bb:7e:52:fe:1d:0b:
7a:8a:00:97:d0:96:de:28:9e:d3:9f:c9:49:a1:bc:
6c:6d:a3:84:f2:fc:1f:d0:81:88:84:aa:af:62:16:
72:2f:e4:88:86:cd:b9:0f:f7:00:f0:a8:fd:ff:c5:
6c:72:63:4e:ee:b7:89:29:5d:68:5c:4c:f4:22:57:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:76:7B:20:A1:14:EF:F4:B4:6C:9A:9D:AC:37:DD:B0:9A:E0:96:DD
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/K3Z7IKEU7_S0bJqdrDfdsJrglt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.45.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4a:93:cc:b2:ce:e1:60:9c:25:0d:c7:46:8e:08:95:22:92:
71:d2:9a:d8:d8:2c:3c:02:93:42:79:ff:a3:7c:6f:5b:ab:f4:
12:3c:22:01:91:fc:a0:b7:d8:d4:28:c8:1d:57:4b:48:0d:4e:
8b:16:5a:07:1f:43:58:7e:29:de:fa:1c:d3:62:c9:b3:b7:04:
73:04:bf:38:14:53:49:87:09:0a:34:a2:8a:53:7d:92:85:5f:
4c:79:a7:63:30:9a:ab:95:7b:26:e9:7b:b6:90:7c:72:49:f2:
0e:24:7c:69:a7:a3:3b:b0:f0:48:a4:d1:0f:92:59:93:12:4e:
dc:0c:88:8e:3f:94:00:fb:15:73:4e:8a:8e:ed:07:3b:d7:9c:
4c:ea:0a:19:a6:b7:b1:64:75:d3:20:22:96:78:70:2c:c1:df:
73:db:cd:31:75:7f:8e:92:df:00:73:72:83:11:d1:27:ab:c2:
22:a9:5b:bb:7c:56:44:71:f6:20:8d:d4:07:ea:fc:9d:85:6f:
dd:67:d4:c6:1e:52:90:12:2b:fe:bd:61:17:3f:9c:10:8f:93:
df:a1:40:41:18:6a:0c:9b:c2:b6:d3:11:38:68:fa:02:f1:22:
d2:5e:07:c4:2a:d7:07:e9:73:a8:a8:a9:38:69:af:74:9d:bc:
2e:53:94:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org