Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/NPu7FqdE0yu34OMLkZYlpF1bg_I.roa
File: NPu7FqdE0yu34OMLkZYlpF1bg_I.roa (raw, json)
Hash identifier: FXPhJXtKNMeY+TJngno+kDf3NnePX4aWTJJgjOzxjEE=
Subject key identifier: 34:FB:BB:16:A7:44:D3:2B:B7:E0:E3:0B:91:96:25:A4:5D:5B:83:F2
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 020E
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/NPu7FqdE0yu34OMLkZYlpF1bg_I.roa
Signing time: Wed 29 Sep 2021 02:53:38 +0000
ROA not before: Wed 29 Sep 2021 02:53:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38136
IP address blocks: 103.156.184.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 29 02:53:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=34FBBB16A744D32BB7E0E30B919625A45D5B83F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d2:e8:8b:24:45:96:b9:6c:06:cf:a7:f4:6e:
0e:5d:f0:45:e6:66:dc:cb:a3:38:6a:6d:a6:58:2c:
98:c0:31:0d:0d:20:b2:a8:43:da:9a:f0:09:ee:16:
56:85:41:af:1b:de:69:cf:bc:fd:f4:93:86:89:c6:
8e:f4:c3:f5:96:24:30:f1:d5:74:8c:68:00:39:14:
36:b5:7a:ed:35:24:89:c8:08:d8:6c:90:32:b5:f6:
60:81:90:02:09:06:af:8b:9b:c1:ec:3b:41:89:a4:
98:ce:4c:99:ed:87:09:ca:bd:c4:77:b0:92:fd:eb:
93:e9:14:91:74:86:b6:05:2e:dc:73:00:ed:8d:52:
a5:0b:1f:40:fe:14:7c:a9:10:aa:b9:00:63:06:b5:
ef:f4:87:c0:4d:88:06:43:33:6d:f4:82:f5:e6:fa:
96:df:8e:b2:c8:6d:3c:54:30:c4:93:bf:67:7a:93:
2c:7b:99:02:54:60:6a:a6:d7:94:55:11:c7:11:05:
08:13:73:f8:54:28:48:13:51:fd:de:65:8e:f2:58:
c2:06:8f:39:02:63:e8:fc:eb:c0:e3:9a:30:58:1a:
7f:dc:71:e3:98:89:9e:d4:7d:cd:2d:1e:3d:4b:2c:
94:17:28:8e:48:11:5b:1e:22:a8:2f:e7:32:85:55:
85:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FB:BB:16:A7:44:D3:2B:B7:E0:E3:0B:91:96:25:A4:5D:5B:83:F2
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/NPu7FqdE0yu34OMLkZYlpF1bg_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
df:41:b3:ab:11:c8:cd:a4:12:9a:90:0e:2e:56:44:18:0f:08:
b0:73:48:d6:81:bb:1b:d8:c0:27:e4:d4:23:76:9a:d8:7f:60:
b4:a7:b9:c1:b2:4b:d7:95:57:2c:c3:c0:b6:73:27:83:19:6e:
f5:90:e3:48:50:32:32:b1:fb:f9:23:f2:af:2a:2b:d2:65:f6:
31:bb:f4:6e:3a:04:30:da:14:43:68:d4:a2:bd:af:d8:e3:6c:
ed:b5:08:49:f3:dd:42:73:c7:a4:b1:76:7a:3b:63:7d:fe:3a:
27:5b:d1:74:53:2a:63:46:98:24:96:f4:fc:cb:bd:3d:36:40:
dd:41:14:b1:e6:c1:9e:3c:87:d2:f8:e8:0f:e0:9c:3f:a7:17:
09:ba:0d:5f:bb:f3:52:b5:f0:69:a3:07:6f:cb:b9:c5:5d:81:
37:e7:e8:ab:0b:32:41:0a:f4:78:6b:fd:44:6f:23:1a:0f:3c:
7a:10:cb:f5:21:5a:75:0d:db:b3:9f:93:0c:c8:d8:14:cc:ba:
9b:77:b8:d4:f7:ad:dc:bc:2e:82:e3:0f:fb:1f:0f:de:17:69:
a4:30:11:36:d6:17:bd:ed:56:8b:af:23:75:6b:ef:d4:11:98:
16:4f:b6:31:9d:74:fe:e3:62:ce:33:d6:bc:97:6d:1c:14:6f:
60:bb:85:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org