Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/etYzchqTh8c5ooHrx5UDP7bDKlQ.roa
File: etYzchqTh8c5ooHrx5UDP7bDKlQ.roa (raw, json)
Hash identifier: xJ3c8JpVLWtS6Qwvs+RAmIWKweVkXGxqNYIn26W8lhg=
Subject key identifier: 7A:D6:33:72:1A:93:87:C7:39:A2:81:EB:C7:95:03:3F:B6:C3:2A:54
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0A49
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/etYzchqTh8c5ooHrx5UDP7bDKlQ.roa
Signing time: Wed 29 Sep 2021 02:52:52 +0000
ROA not before: Wed 29 Sep 2021 02:52:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18424
IP address blocks: 103.30.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 02:52:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7AD633721A9387C739A281EBC795033FB6C32A54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ef:3f:d5:a8:3d:76:28:d5:6a:66:f2:0e:1d:
d2:6b:d0:b7:2f:75:d1:a0:92:8f:cb:87:ae:ee:75:
97:62:5b:6c:54:6d:0f:71:28:fe:2a:59:29:58:9e:
c8:22:3d:a3:ee:9a:84:ac:47:3c:9d:a6:83:ce:72:
b0:49:64:8a:d3:01:bd:2f:3b:89:72:33:a2:83:6e:
24:ea:63:1c:e8:6c:b2:d4:33:9e:a8:30:a5:c4:47:
33:a5:ff:79:94:b4:94:98:3f:63:99:69:c3:4f:91:
e0:37:16:10:83:9a:9b:52:fd:b1:73:4a:f7:6b:8f:
7c:61:b5:9a:2b:1b:a1:c8:b3:70:85:21:df:2f:25:
23:46:f8:e5:2f:14:03:84:cb:05:95:7a:5e:7b:12:
54:ee:ee:ed:a9:f9:e6:cd:f6:7d:3d:0f:b4:91:ac:
3f:8d:80:f2:d3:17:03:04:23:4c:d7:62:0c:22:4e:
9c:b7:6f:38:e8:74:46:08:ef:ca:4e:ce:82:d0:4f:
45:05:da:76:c2:b5:fa:21:e4:f5:40:39:43:c4:77:
b3:b2:23:99:e5:6e:60:5b:74:56:24:91:d6:d5:aa:
3b:51:67:9e:16:3f:c9:58:9c:01:83:57:b2:42:7c:
6d:51:a9:89:31:4b:ad:41:0d:af:9a:08:98:9f:fd:
cf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D6:33:72:1A:93:87:C7:39:A2:81:EB:C7:95:03:3F:B6:C3:2A:54
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/etYzchqTh8c5ooHrx5UDP7bDKlQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.46.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:c4:dc:9a:46:25:ed:e4:43:ed:0b:7f:b9:55:dd:05:c5:71:
27:06:c3:f7:40:c1:b3:49:45:19:33:0c:57:18:95:8d:63:53:
1d:4f:5a:de:4e:c5:56:ff:1c:83:a9:67:58:b7:50:f8:e4:75:
11:1e:a8:b2:ee:a8:79:05:a5:9d:ab:04:83:13:0b:9e:b4:37:
ea:11:20:11:cf:cc:78:f6:93:a0:03:3c:9c:6e:83:e5:fd:b3:
ac:0f:6f:c9:6d:ed:d2:7d:11:c5:26:8e:99:df:84:da:33:d2:
cf:17:78:57:c2:2b:b1:09:7d:37:67:31:5f:d5:9a:90:ff:c2:
a0:fb:f2:18:44:32:c9:6e:10:c6:6b:5d:26:77:ff:1e:8f:a2:
2c:10:0e:d2:0c:e2:b6:de:38:2c:35:d9:30:cc:37:16:a0:29:
66:0d:41:f1:d9:86:a3:b5:27:83:85:74:20:59:67:eb:99:f5:
1d:86:05:2c:00:2e:25:1f:e4:27:50:c0:c4:2b:d5:5b:e7:a4:
e7:b7:0f:26:49:95:4d:14:11:ee:3a:d0:ae:32:92:0c:bb:e3:
8e:8c:bf:06:02:cf:cc:90:d2:ce:30:88:1f:8d:5f:eb:e2:ea:
b2:2e:ce:d9:05:6d:e3:1d:8a:db:5b:56:db:81:f9:21:2c:4a:
72:30:22:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org