Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/7pNuafDtLCRY3WoGLxAg05bgljU.roa
File: 7pNuafDtLCRY3WoGLxAg05bgljU.roa (raw, json)
Hash identifier: xhaLSfyu9WTb9A0UXX/csUixBFC3uW8parxNtiIaMyI=
Subject key identifier: EE:93:6E:69:F0:ED:2C:24:58:DD:6A:06:2F:10:20:D3:96:E0:96:35
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 08B7
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/7pNuafDtLCRY3WoGLxAg05bgljU.roa
Signing time: Sun 07 Feb 2021 11:33:04 +0000
ROA not before: Sun 07 Feb 2021 11:33:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.17.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2231 (0x8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 7 11:33:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE936E69F0ED2C2458DD6A062F1020D396E09635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:8b:db:6c:ce:77:2b:e6:75:c7:e4:c6:9b:
14:f0:22:a1:e6:3a:bd:24:67:c2:12:f7:45:ad:80:
09:74:50:19:4f:51:b7:69:82:52:32:82:6e:86:e1:
b3:9b:a3:1d:e5:cb:88:a8:fe:aa:a7:56:e9:47:61:
77:f0:28:6e:2d:d9:54:bb:e4:ba:b3:08:87:79:bb:
0f:36:2b:9c:43:28:3e:9e:d5:cf:8d:14:0d:11:b4:
3d:88:34:2f:e7:2f:e1:9f:d3:7c:3b:02:fb:e9:f6:
f9:36:6c:07:d4:22:a4:c5:eb:d6:c6:8c:aa:5b:85:
a3:b4:df:01:32:f7:c6:30:2e:a2:38:21:88:57:06:
cd:3a:a8:1c:42:42:a8:6a:41:64:3b:02:92:5a:c3:
56:21:86:8b:af:49:3b:52:5e:38:f0:47:11:38:86:
06:fc:62:b9:95:a5:62:51:39:15:e1:cc:72:09:1b:
4f:35:ae:6d:1e:13:07:03:a0:4f:b1:71:ef:3c:73:
f0:6b:cb:98:98:ea:31:f5:04:21:0a:a9:58:3b:3a:
53:51:48:e2:64:17:29:df:83:c4:3d:37:1a:51:d1:
45:3c:d8:e6:08:25:52:bd:c9:3d:bf:e9:f0:25:ae:
98:5e:b7:09:92:d9:23:f7:c2:7c:ee:b7:b0:d4:23:
dd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:93:6E:69:F0:ED:2C:24:58:DD:6A:06:2F:10:20:D3:96:E0:96:35
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/7pNuafDtLCRY3WoGLxAg05bgljU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.17.8.0/22
Signature Algorithm: sha256WithRSAEncryption
36:eb:0e:35:00:43:10:cc:ec:e7:e1:3a:0c:ec:a8:3b:dc:16:
aa:09:2c:1f:4f:07:3a:a1:29:6e:17:c2:96:3a:ae:e1:3f:3a:
a2:3c:df:96:f3:79:38:54:76:17:bb:a5:ba:a7:7c:7b:22:48:
34:99:99:52:47:ae:77:a1:cb:24:62:d4:b3:cc:04:45:b5:1c:
1a:30:2b:89:ec:23:74:f4:8b:6a:07:3e:59:39:b3:5c:9d:47:
e5:b6:07:34:fc:40:c4:37:e9:18:01:8c:0f:ad:00:3d:9b:3f:
8a:38:a5:3e:da:26:f9:a8:8f:2f:55:80:11:b8:ee:06:a8:0d:
18:85:c5:d3:8c:01:6b:47:dd:a4:12:c4:ae:f9:2f:e6:b3:5a:
49:6b:03:51:dd:8d:26:6c:3f:05:a3:c6:1b:cf:39:27:01:b9:
da:1c:ec:e5:ab:f2:68:e5:41:e1:2f:b9:f3:30:f0:77:9c:93:
13:08:aa:9c:48:f8:c1:0c:9c:a9:bd:b1:b5:b1:2a:df:0d:cf:
c8:3e:15:ef:43:2c:78:40:a4:7b:07:ec:58:74:6c:3b:cb:76:
af:3a:7f:f8:27:b8:a8:94:c0:69:0d:bb:01:20:01:f1:59:cd:
f8:18:17:12:58:13:8d:25:3b:08:09:49:99:a1:a5:0a:33:41:
f2:99:25:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:18 2025 by rpki-client