Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UQ9ACtbleKrBiwpcAogTxr4oU_E.roa
File: UQ9ACtbleKrBiwpcAogTxr4oU_E.roa (raw, json)
Hash identifier: 3nFpM3z3cvFAk7FMdz9wbAJZbdjw7CC/Odo4mBJX/Xs=
Subject key identifier: 51:0F:40:0A:D6:E5:78:AA:C1:8B:0A:5C:02:88:13:C6:BE:28:53:F1
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0B74
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UQ9ACtbleKrBiwpcAogTxr4oU_E.roa
Signing time: Tue 03 Oct 2023 07:12:10 +0000
ROA not before: Tue 03 Oct 2023 07:12:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2932 (0xb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Oct 3 07:12:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=510F400AD6E578AAC18B0A5C028813C6BE2853F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fc:73:14:b4:75:cb:69:b5:71:59:02:01:86:
78:13:62:95:92:c3:18:ce:4a:b4:41:04:34:43:25:
db:e0:ea:83:e0:88:aa:e6:61:41:f9:04:da:c1:72:
60:f8:d0:82:02:5e:af:79:f7:21:57:fc:2d:32:3c:
ff:b6:06:55:c5:ae:46:47:80:65:b0:69:05:59:10:
06:f0:81:f8:bb:f1:d8:47:72:42:0d:d1:43:05:0e:
3d:53:97:c0:c0:a6:54:4c:ba:33:7a:52:38:f7:f3:
76:e3:e8:2a:b9:48:b6:97:e4:4e:a1:97:8e:61:71:
59:b9:e2:64:81:64:71:00:5d:cf:45:fd:66:99:3f:
df:d5:c2:07:d7:a7:59:b3:8d:a4:f1:42:d7:1d:c9:
3d:f1:23:33:c1:99:d3:94:62:20:fb:7f:81:84:d9:
ab:04:d9:74:85:d6:20:52:a1:99:6e:a5:40:40:60:
d9:5c:68:be:a5:d3:fe:2a:4d:e1:7b:27:3c:e9:00:
85:50:11:ed:b5:f3:fc:d0:6f:06:e1:12:d8:99:39:
8c:57:8f:aa:6e:d7:3e:88:5c:e4:bd:92:05:31:77:
92:8b:86:e6:73:17:9c:48:65:c5:26:ab:ad:3e:11:
8c:8e:6f:5c:2e:ee:a6:8c:54:1a:a5:a1:29:52:69:
2b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0F:40:0A:D6:E5:78:AA:C1:8B:0A:5C:02:88:13:C6:BE:28:53:F1
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UQ9ACtbleKrBiwpcAogTxr4oU_E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
78:60:8a:53:17:69:54:ce:73:02:58:e3:23:e6:5d:77:eb:9d:
a4:b1:e0:81:e9:29:fc:73:d5:cb:15:bc:e3:e6:f5:4b:a0:a7:
18:6a:6c:af:25:f8:6a:0f:b7:30:ec:d1:92:4a:fb:8c:ce:cc:
2b:2d:85:a2:81:e7:5b:bd:93:78:03:35:bf:1a:58:0f:6c:bf:
4d:e7:37:08:3b:cf:7e:d0:ba:13:de:c5:93:53:db:8f:e9:fc:
75:a8:f8:8d:0c:23:79:0b:ce:28:7e:1a:e7:87:4b:af:aa:69:
9c:26:b9:a1:3b:23:0d:ef:8b:49:cc:b3:2f:25:d8:78:db:42:
c6:a7:0c:de:d8:22:81:50:00:7d:dc:17:63:72:77:f4:7f:fe:
bb:94:55:15:67:ad:28:c6:17:dc:3c:c3:c6:81:7d:94:1c:7b:
8e:03:79:90:dc:f0:ac:c5:3d:5b:88:fe:7c:cd:21:4a:cf:c3:
34:d2:21:c9:44:fa:41:75:99:38:eb:47:b1:e3:bf:a7:bb:8b:
a1:27:bf:26:27:06:d4:1b:aa:dc:b9:43:8b:b1:e4:eb:96:70:
1a:58:b5:31:6b:cc:7b:35:95:32:76:fb:6c:ad:9d:af:1b:ec:
18:ad:1d:df:e5:37:4f:31:23:15:7b:44:a4:64:43:94:db:a8:
7d:b9:3e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:19 2025 by rpki-client