Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/6-wNqnj0DkkHhbivABC_SMMKEq8.roa
File: 6-wNqnj0DkkHhbivABC_SMMKEq8.roa (raw, json)
Hash identifier: LnfgTAgQP/5V1NugYY08o4uK/fIcw1VfsCjftYl6uDY=
Subject key identifier: EB:EC:0D:AA:78:F4:0E:49:07:85:B8:AF:00:10:BF:48:C3:0A:12:AF
Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3
Certificate serial: F0
Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/6-wNqnj0DkkHhbivABC_SMMKEq8.roa
Signing time: Wed 22 Dec 2021 01:38:54 +0000
ROA not before: Wed 22 Dec 2021 01:38:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.161.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3
Validity
Not Before: Dec 22 01:38:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EBEC0DAA78F40E490785B8AF0010BF48C30A12AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ca:87:3f:14:46:5b:1c:06:03:74:aa:9f:a2:
20:35:5d:d8:2b:ed:b5:ff:8c:27:8a:89:a6:5e:27:
63:81:11:a0:5f:95:33:fd:bd:b8:df:61:23:ef:c0:
a0:24:a5:5a:e8:5d:b8:20:e1:fb:86:73:f2:d7:69:
2e:08:dc:88:9a:82:ad:91:6c:af:d7:57:ef:e0:60:
dd:8f:3a:ad:96:85:62:16:a7:19:03:a2:d0:4d:57:
6e:de:43:3c:e4:8c:0b:31:6b:af:00:b6:9d:8e:3d:
84:fa:d1:6a:94:c5:06:c5:62:d5:80:1a:b5:d9:63:
74:03:20:b8:eb:64:d6:43:f7:56:5d:8a:62:7b:b8:
d9:54:e4:e9:2d:b0:cc:14:4e:17:5e:7c:7c:0d:cb:
ab:3d:88:db:44:b2:5d:05:94:70:f3:81:0a:6d:fe:
68:64:58:93:9d:30:34:76:44:af:f2:50:f3:99:80:
70:50:4b:d2:41:ff:4b:20:fe:9f:d4:12:a0:c2:e0:
c0:03:7b:53:32:a4:e1:ec:16:2c:03:b4:66:45:86:
ec:28:36:5c:e8:89:1b:26:bc:02:85:e7:6a:02:fc:
10:b4:06:fd:b7:d9:0e:00:85:a2:54:ae:af:7b:26:
2a:a6:47:88:d0:97:19:31:97:aa:3b:c4:98:ab:61:
f2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:EC:0D:AA:78:F4:0E:49:07:85:B8:AF:00:10:BF:48:C3:0A:12:AF
X509v3 Authority Key Identifier:
keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/6-wNqnj0DkkHhbivABC_SMMKEq8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.6.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:f0:23:6d:77:10:59:d8:1f:68:b1:d1:81:d3:d5:04:70:9e:
42:01:76:0a:79:44:bd:71:b3:37:b4:1b:c9:42:65:16:4b:dd:
49:40:a6:99:57:10:20:27:8a:22:86:41:95:9a:f7:e8:7f:54:
6b:3b:8a:9d:7d:9b:4d:4d:c3:39:c9:7d:eb:bb:dc:a7:19:35:
f8:ae:83:89:00:89:8b:ec:06:b0:0b:98:69:10:ce:54:12:59:
aa:86:ff:9e:6a:cc:61:be:63:dc:34:c2:c4:df:9c:b6:bf:af:
14:b1:81:08:96:bf:4a:90:7c:d9:9b:c7:9e:81:73:19:ff:2b:
c5:bf:46:36:a7:1b:0e:03:c2:cf:9f:6a:00:f5:23:8c:4f:8c:
95:6a:60:6d:a5:40:14:70:35:3f:c5:c1:1a:58:a8:aa:62:62:
b3:8b:ba:4d:5e:77:0e:95:c5:51:8b:22:e4:10:bc:52:0f:6c:
3c:6e:b6:59:e7:d2:a1:43:69:07:84:1e:3a:b6:c8:c8:0d:05:
a0:db:a7:6d:7a:e4:64:4e:33:f4:ae:a0:05:c3:a1:84:cf:12:
f1:f0:61:d6:8e:07:55:9d:f8:05:a5:6e:d0:1b:e1:92:5c:8c:
85:d7:8e:aa:5a:78:2c:cd:3f:e1:d9:d6:94:6a:e5:9a:15:97:
72:5f:20:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org