Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/LcXbK0ipMw_roNE4xDs354B84ys.roa
File: LcXbK0ipMw_roNE4xDs354B84ys.roa (raw, json)
Hash identifier: OYii4mpA5DQNkEayfaxi/uIhk85hgWIxBx5GnaBYk4A=
Subject key identifier: 2D:C5:DB:2B:48:A9:33:0F:EB:A0:D1:38:C4:3B:37:E7:80:7C:E3:2B
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 094F
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/LcXbK0ipMw_roNE4xDs354B84ys.roa
Signing time: Sun 07 Feb 2021 11:53:17 +0000
ROA not before: Sun 07 Feb 2021 11:53:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.30.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2383 (0x94f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DC5DB2B48A9330FEBA0D138C43B37E7807CE32B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:62:a4:8e:c6:c4:3c:80:7b:11:43:c9:76:ce:
b6:59:63:18:9d:5c:28:ab:63:3f:aa:46:65:ca:f7:
5e:57:c5:21:f8:a1:b7:6c:a5:e9:ff:16:11:eb:ce:
d0:fb:28:9d:93:95:a1:71:2b:c2:b2:fa:d0:14:fc:
a5:fb:71:36:c2:59:c8:95:ac:1f:9f:c0:19:b1:fb:
f6:ea:a0:ad:b9:2d:29:f8:29:80:ea:37:03:49:14:
17:34:17:f9:56:66:28:21:8b:68:4e:ef:69:4b:4f:
f0:5e:39:c6:71:0a:87:af:12:8e:35:52:93:a5:19:
77:17:e0:67:c7:69:96:f1:15:2a:46:24:48:90:db:
6e:85:32:2e:7b:76:db:9a:7c:81:7d:f4:66:ed:bb:
55:4a:a4:f8:b7:6e:a2:08:02:06:29:90:89:ed:67:
c9:75:64:aa:9f:07:33:0f:68:0c:53:bc:3c:3f:00:
b0:18:35:ba:7d:83:36:e3:4e:9e:b4:f7:29:63:4e:
f4:4e:b4:a1:a7:75:92:41:e1:b1:ba:5b:38:0c:29:
aa:44:22:21:af:17:75:a3:13:13:c1:c5:39:0d:ef:
a0:10:84:72:65:b2:fc:14:52:d1:ec:dc:7c:df:4c:
e9:46:b0:07:3d:d1:d6:2e:6e:e1:ec:5f:23:e5:63:
9d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C5:DB:2B:48:A9:33:0F:EB:A0:D1:38:C4:3B:37:E7:80:7C:E3:2B
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/LcXbK0ipMw_roNE4xDs354B84ys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.44.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:b8:9e:b7:ba:5d:c6:40:1f:20:f6:31:7b:64:51:82:6d:71:
5c:a1:b7:94:1b:7f:39:69:6f:87:90:68:ee:7e:8b:17:6f:19:
d2:0a:eb:0f:17:d0:08:b4:7a:33:a0:50:8b:bf:70:2f:a6:c7:
dc:64:96:b6:d1:59:9d:8d:fd:33:b8:88:09:56:96:72:d8:5a:
52:25:84:50:78:a6:8c:79:4d:a8:82:07:69:74:9c:d5:d7:31:
33:52:5f:3d:e8:e3:99:a1:57:bd:d1:a2:ec:58:dc:29:7a:5d:
09:ed:cc:96:84:c4:8d:d8:4d:08:65:f7:b7:0b:e4:0c:06:af:
d5:d1:93:dc:41:7d:0f:3f:76:74:73:59:41:a1:ea:b5:3b:bf:
2d:5a:77:4b:04:53:cc:e7:0d:75:55:65:4b:d7:b1:3f:00:09:
8b:36:49:84:dc:70:3d:c3:2c:50:ac:cd:52:22:40:cc:a3:0f:
94:57:8a:a7:f4:48:bb:c7:64:10:83:de:f9:4b:2f:03:fd:51:
af:af:3c:39:e2:e7:85:af:c2:85:1c:83:7c:25:88:12:12:a4:
36:5d:3f:25:ef:cb:fd:d1:0a:c3:99:41:b5:da:d6:3f:68:23:
73:20:8a:59:f9:89:54:ae:d4:70:f0:2b:e4:27:ba:f6:d3:3b:
01:cb:7b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org