Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/XOSO7z-2oWiaAlbaNUGbkeRyM3M.roa
File: XOSO7z-2oWiaAlbaNUGbkeRyM3M.roa (raw, json)
Hash identifier: 12jhDM31/cJ2dts8NaECEBiLeR9ouH1jo5+ujlHuzGo=
Subject key identifier: 5C:E4:8E:EF:3F:B6:A1:68:9A:02:56:DA:35:41:9B:91:E4:72:33:73
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 095D
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/XOSO7z-2oWiaAlbaNUGbkeRyM3M.roa
Signing time: Sun 07 Feb 2021 13:05:13 +0000
ROA not before: Sun 07 Feb 2021 13:05:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.30.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2397 (0x95d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 13:05:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5CE48EEF3FB6A1689A0256DA35419B91E4723373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c2:a2:48:88:0a:e5:dc:7c:dc:56:23:db:4e:
ea:8b:fb:3c:51:de:9a:81:ec:8d:20:72:30:16:48:
db:21:3e:d6:3e:3c:a3:e5:74:04:f1:97:b4:03:25:
0d:ab:db:3d:ce:b7:e0:97:96:36:80:e2:f2:73:cf:
ab:38:63:db:30:11:5b:e6:2b:d0:c6:e4:13:6d:86:
52:a2:3c:2d:ee:05:78:ba:11:a6:3c:c4:d5:77:56:
fb:c0:7c:a2:f1:20:46:c4:df:66:55:f5:1d:5c:1e:
76:f2:f9:37:a0:85:ae:fd:61:1d:fb:d9:4a:36:98:
f4:a7:67:d8:6e:8d:dd:9c:26:a2:31:5b:0e:b1:47:
25:13:84:ad:8b:8a:5d:b4:f0:bf:b7:55:e3:a6:10:
48:40:10:9e:17:27:3c:d2:dd:b2:3d:fe:08:d9:67:
a0:c5:3b:1e:5a:2c:97:73:f8:8e:8e:44:e3:bb:c5:
b9:ad:de:e2:b2:08:5c:24:35:29:32:28:9f:b6:3f:
66:4d:9c:b0:8b:3c:be:d1:8b:cd:a8:a2:f5:c3:61:
40:17:4d:6c:79:ac:c5:6c:f0:cf:09:88:3c:1c:b6:
9c:45:ac:25:6a:4c:bc:84:26:1b:2b:9e:86:a2:a5:
4d:48:ef:32:87:0d:fd:51:a5:2a:a9:e5:a9:f6:2d:
91:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E4:8E:EF:3F:B6:A1:68:9A:02:56:DA:35:41:9B:91:E4:72:33:73
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/XOSO7z-2oWiaAlbaNUGbkeRyM3M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.44.0/24
Signature Algorithm: sha256WithRSAEncryption
83:f0:dd:dd:6b:47:37:7a:48:fe:15:08:70:94:cf:f7:2b:d3:
bf:56:3c:8d:62:f7:55:da:35:1e:b4:cf:47:52:58:85:c3:fc:
72:e0:3e:86:1a:03:48:3d:58:9d:da:f8:20:5c:fe:59:7d:36:
52:db:b1:cc:5c:43:1c:44:73:17:01:1e:68:c9:82:1b:a7:05:
6f:2d:ea:48:31:94:8a:63:f8:1e:46:bc:bc:d4:ae:a9:18:3a:
7b:31:5e:bb:99:e7:12:ed:21:a1:b4:5c:34:31:84:fc:f1:93:
e4:ca:39:98:95:e1:9d:10:7e:fe:54:9c:53:54:11:23:1d:0d:
1a:01:5a:48:e3:c1:a0:e7:09:48:b0:f0:c0:17:97:ca:72:6a:
8a:c1:18:00:0a:a0:6a:e3:d8:fc:89:b3:c5:91:46:a7:40:be:
49:ef:ae:d4:93:4f:cd:c3:0f:67:7c:e5:98:55:f0:fe:57:e9:
cc:e9:09:64:a2:5d:79:44:60:5c:5d:65:2e:00:b4:30:56:0f:
f0:60:f7:d5:35:ba:fc:d4:a5:53:1f:88:9b:ed:d5:0f:5c:8d:
c6:2c:36:35:2c:f3:b6:b1:95:9e:ac:0f:76:4d:30:a7:2d:e9:
00:d2:f1:fc:74:bc:e0:c8:99:f8:8e:f7:12:74:bd:34:29:39:
d7:6a:6f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org