Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUJIN/Re-hErXHwyc44wGLYXgeyDuk-mA.roa
File: Re-hErXHwyc44wGLYXgeyDuk-mA.roa (raw, json)
Hash identifier: 9D+fu4NPggaF77MtdlrM130gbPXNVmwOxLSarMW5DHQ=
Subject key identifier: 45:EF:A1:12:B5:C7:C3:27:38:E3:01:8B:61:78:1E:C8:3B:A4:FA:60
Certificate issuer: /CN=3C2AD8671B3753265286D32E46BF06FDF52D0FEF
Certificate serial: 10
Authority key identifier: 3C:2A:D8:67:1B:37:53:26:52:86:D3:2E:46:BF:06:FD:F5:2D:0F:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/Re-hErXHwyc44wGLYXgeyDuk-mA.roa
Signing time: Fri 18 Nov 2022 04:14:32 +0000
ROA not before: Fri 18 Nov 2022 04:14:32 +0000
ROA not after: Fri 03 Nov 2023 01:33:04 +0000
asID: 7483
IP address blocks: 103.24.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C2AD8671B3753265286D32E46BF06FDF52D0FEF
Validity
Not Before: Nov 18 04:14:32 2022 GMT
Not After : Nov 3 01:33:04 2023 GMT
Subject: CN=45EFA112B5C7C32738E3018B61781EC83BA4FA60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:ec:a8:01:f9:f5:a2:29:59:cb:77:1f:f5:
b7:80:da:8c:5a:85:f6:17:9d:26:c4:c0:71:3c:ec:
40:a1:ce:0a:ef:77:ea:cc:7c:be:d9:cf:20:44:fb:
43:c5:90:52:01:6f:3f:b5:7d:b4:6a:98:cc:20:e0:
3d:2b:ae:00:02:db:c1:45:d5:a2:a5:a3:a4:e5:54:
9e:8d:0d:18:46:02:b3:1b:0a:a3:2f:30:7c:69:a2:
dd:4d:a9:75:50:83:7f:c9:9e:87:5b:35:13:32:b9:
83:c6:84:3e:45:32:af:ad:98:a2:64:97:10:63:06:
20:84:77:43:53:e3:96:db:d7:08:db:36:be:71:97:
8b:4a:c5:88:a8:4a:7b:bc:7b:33:a3:c4:f7:eb:ce:
29:08:51:37:a9:74:4d:b6:9f:7e:26:3e:db:33:5f:
3f:46:0c:06:02:f8:df:40:58:a5:9c:9d:82:bd:0b:
71:e1:76:87:ef:36:93:91:7e:ac:1b:d7:f3:23:2c:
74:a7:28:6f:dd:13:8a:cf:43:9f:ac:4e:18:16:25:
d8:2d:52:45:ca:f3:b6:fb:81:62:89:2e:ae:13:eb:
70:08:66:0a:21:e2:ea:b1:a3:8f:a5:23:4b:4d:4c:
96:69:70:9d:4d:e7:2d:84:23:63:96:f5:ab:0d:8a:
ce:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EF:A1:12:B5:C7:C3:27:38:E3:01:8B:61:78:1E:C8:3B:A4:FA:60
X509v3 Authority Key Identifier:
keyid:3C:2A:D8:67:1B:37:53:26:52:86:D3:2E:46:BF:06:FD:F5:2D:0F:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/PCrYZxs3UyZShtMuRr8G_fUtD-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/Re-hErXHwyc44wGLYXgeyDuk-mA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.24.54.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:b1:74:c4:eb:42:a6:77:e3:2d:03:68:88:05:de:2d:2e:8d:
88:64:4e:93:ac:60:f1:2d:05:38:d4:ac:fa:60:04:ce:6f:ae:
d1:86:03:f2:dd:a3:6d:f7:4f:80:67:af:0e:61:b9:7e:40:84:
c3:fe:bb:ca:85:35:a9:a1:18:c0:53:c5:f5:c2:f7:38:f5:7f:
7a:bd:b9:50:49:b7:e8:f6:41:88:8e:4e:26:4a:6b:7b:99:45:
08:52:c7:f3:05:5f:5a:42:eb:38:5a:a6:90:cf:80:a8:5d:3e:
cc:2f:d8:14:1e:86:a6:99:e8:9f:a6:a7:c2:4f:7e:e9:ab:15:
b6:70:d0:17:60:95:38:f7:93:8f:f5:47:94:02:a4:a2:ef:43:
7f:3a:9a:44:4d:31:88:09:d7:00:3d:e0:97:27:25:df:fa:53:
eb:35:bc:90:33:4d:70:ba:b1:ba:94:14:a4:66:a6:3a:fa:20:
b6:02:25:4a:5a:35:25:33:43:bf:38:7b:6b:a3:47:7b:ea:36:
ec:3f:b8:9c:9b:f8:5f:38:8d:d4:21:17:96:f4:45:81:43:6f:
15:44:07:d1:b0:d0:f7:89:87:35:cd:a9:c8:77:3e:16:cd:1c:
af:94:25:32:ea:96:76:1d:32:47:1e:c4:3d:28:14:fd:42:f0:
b3:11:f0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:53 2025 by rpki-client