Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Eu4TP4KHi3EybNzdGnl8jW_Eewk.roa
File: Eu4TP4KHi3EybNzdGnl8jW_Eewk.roa (raw, json)
Hash identifier: vIyD1ctT143N6Tt2ZYSE656PbOcW0BfenZBkyAtnkxM=
Subject key identifier: 12:EE:13:3F:82:87:8B:71:32:6C:DC:DD:1A:79:7C:8D:6F:C4:7B:09
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0B89
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Eu4TP4KHi3EybNzdGnl8jW_Eewk.roa
Signing time: Mon 16 Oct 2023 03:57:28 +0000
ROA not before: Mon 16 Oct 2023 03:57:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.1.220.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2953 (0xb89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Oct 16 03:57:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=12EE133F82878B71326CDCDD1A797C8D6FC47B09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b1:01:98:53:ba:06:3e:a2:40:f6:aa:5c:60:
5d:62:21:fd:9a:73:b5:7f:45:01:f6:57:31:e0:7b:
5a:bf:9e:d3:48:01:b0:05:41:91:34:c7:98:af:77:
0b:24:5f:a1:98:89:de:c8:56:aa:77:ae:74:87:74:
b1:65:99:06:28:88:02:50:f8:1b:48:5d:1e:26:c0:
c3:bc:98:6a:a6:3d:4e:3b:4f:e5:6f:cd:5f:6b:9f:
ea:2c:fe:48:f6:42:ad:a8:df:9f:15:f6:46:07:5c:
ca:08:d8:b3:bb:a0:04:8a:1c:f8:1b:e2:0f:47:7d:
a8:26:3e:a6:47:bc:e6:2c:ad:fd:76:f4:0b:cc:10:
f3:da:b3:4b:f3:05:bc:7c:e4:9a:a5:51:e0:9e:d7:
62:e5:d9:9b:4f:55:7d:10:73:39:5a:b0:8e:c9:16:
7a:9f:94:7d:3b:26:f6:94:ce:13:77:f3:c0:a8:c0:
85:da:68:0f:08:66:b5:a7:bf:2b:69:de:1a:7c:4c:
15:15:a7:88:90:70:1d:c8:02:40:5c:80:9f:4a:3b:
79:ab:5b:1a:f3:bf:e2:d2:94:e8:64:1b:55:f2:31:
7f:91:55:be:88:15:be:2a:b5:e1:4b:1b:d6:5d:c4:
84:36:68:a2:a4:6b:52:b7:fa:5b:7d:2a:b1:cb:97:
3c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:EE:13:3F:82:87:8B:71:32:6C:DC:DD:1A:79:7C:8D:6F:C4:7B:09
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Eu4TP4KHi3EybNzdGnl8jW_Eewk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.220.0/22
Signature Algorithm: sha256WithRSAEncryption
74:c9:32:92:7d:45:45:57:0b:fd:50:b4:13:4f:bd:c9:83:59:
b4:f2:a9:b3:7c:74:82:16:9f:74:f8:b7:7c:0f:9e:88:dd:14:
a4:aa:2f:9e:e4:66:7f:f4:96:b8:f3:d2:5e:5b:a3:7f:64:31:
96:dc:40:75:1a:28:ae:f9:22:16:76:ca:30:01:9f:14:ff:06:
cd:a8:71:0b:c6:66:da:75:5f:c4:d5:15:70:86:38:75:40:1a:
dc:17:73:a3:0c:49:4a:c0:6b:c6:1e:de:42:ed:32:c7:5b:af:
5d:ca:68:23:d4:a5:c1:4e:5f:05:66:9b:58:38:b5:c0:03:be:
c5:d2:9d:5b:f0:6f:3f:b7:60:c0:10:d0:3c:6a:ec:6f:51:20:
00:39:d9:fa:a3:7d:57:34:f2:98:47:95:ab:d3:90:2f:06:ed:
62:77:1e:a6:57:95:6a:1d:43:4f:88:c1:f5:c6:23:2d:76:68:
de:23:19:65:b1:ce:ae:a6:99:90:34:9d:1a:d6:6f:f6:74:23:
1a:7f:e6:83:38:2c:eb:ae:d2:39:5d:91:df:7b:64:e4:90:32:
81:ef:98:67:f5:c1:99:f6:8c:c6:c4:76:52:1a:98:c5:b7:aa:
8b:26:54:e9:b7:ec:a4:81:2a:97:b1:0a:37:17:0c:d8:dd:f6:
c6:92:c7:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:45 2025 by rpki-client