Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/vpgIIY9vazGuAa6z9bmmsPjP2aE.roa
File: vpgIIY9vazGuAa6z9bmmsPjP2aE.roa (raw, json)
Hash identifier: JQ+uPeBXE8wJYApOOU2tMq53oFQIiFXnHmZbOvhzKQw=
Subject key identifier: BE:98:08:21:8F:6F:6B:31:AE:01:AE:B3:F5:B9:A6:B0:F8:CF:D9:A1
Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Certificate serial: 06
Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/vpgIIY9vazGuAa6z9bmmsPjP2aE.roa
Signing time: Tue 06 Dec 2022 11:09:30 +0000
ROA not before: Tue 06 Dec 2022 11:09:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38136
IP address blocks: 103.36.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Validity
Not Before: Dec 6 11:09:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BE9808218F6F6B31AE01AEB3F5B9A6B0F8CFD9A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:3e:b4:71:3e:87:1f:fa:50:f4:0a:49:71:33:
64:03:1f:e0:7d:3e:3b:05:89:ac:03:2c:e9:84:a8:
7a:62:54:27:77:30:a8:e3:3a:0c:5b:ee:8f:18:12:
5d:fe:c1:a6:53:fb:6a:ba:38:77:0d:45:7d:62:8b:
96:d8:c5:b4:72:8f:b5:1a:92:3e:24:08:99:c6:58:
b0:04:a9:e9:5c:fc:c0:db:11:a8:77:84:0e:1a:26:
57:0d:4a:3e:db:e6:53:c7:be:21:fe:0b:ff:13:58:
20:38:ce:9a:4c:79:40:ea:e7:5d:db:e6:c8:ec:19:
27:98:17:4a:c9:04:cb:87:43:71:54:6a:16:bc:94:
82:ac:88:d6:52:7d:0f:15:ee:50:8c:db:37:8f:bb:
69:92:27:1d:25:2c:69:c4:23:3a:5e:4f:3e:8a:b5:
79:52:a8:24:37:ec:e7:33:6e:f2:46:f3:a3:48:a5:
02:74:cb:47:ff:a0:e5:69:9f:97:87:8a:b8:be:cd:
3f:d0:2b:cc:df:b1:ef:17:ca:c4:37:cc:a1:fe:92:
a8:0d:ee:eb:b9:e9:6e:8f:e6:04:ff:0a:2f:38:ad:
9b:ad:6d:45:f0:88:56:8f:0f:86:ab:e5:93:a4:47:
ed:10:35:73:a1:45:2c:09:f3:11:ee:85:12:8d:01:
0c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:98:08:21:8F:6F:6B:31:AE:01:AE:B3:F5:B9:A6:B0:F8:CF:D9:A1
X509v3 Authority Key Identifier:
keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/vpgIIY9vazGuAa6z9bmmsPjP2aE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.24.0/23
Signature Algorithm: sha256WithRSAEncryption
54:a1:bd:7e:cf:48:cc:94:98:f5:ad:e5:ec:b4:7b:db:4b:14:
bb:a3:99:c1:98:39:09:60:14:c0:78:46:c4:00:57:8f:be:88:
23:f0:6b:16:8a:6c:7e:47:1d:d2:c1:0b:ff:1f:c1:9f:7c:c6:
06:f7:2f:ba:16:94:b9:d0:4f:b1:5d:70:7e:d5:1f:fd:78:d6:
61:58:2e:0a:98:e7:75:1d:a8:70:06:4b:14:e2:e4:2c:61:d6:
f1:c8:56:2c:02:09:04:ef:af:2d:bc:d4:a7:15:b0:9f:ed:e3:
0d:bb:37:8c:a4:f6:3a:6d:15:c4:37:85:70:cf:99:29:a8:03:
7e:4c:11:91:ad:82:0c:ff:75:b6:92:44:01:9b:f8:cc:fe:f4:
d5:4e:86:3a:13:11:04:b7:dd:ea:dc:64:7c:b4:ca:89:0a:46:
73:e9:b4:09:27:81:4e:2e:67:a5:e2:bc:e2:34:a8:de:cb:36:
bc:ec:39:ac:7c:90:23:d2:c3:4c:4d:11:cf:38:e7:a6:fc:d8:
87:bf:b3:19:e2:e5:fb:15:ee:b4:73:86:14:13:30:5c:b2:c7:
c2:97:e2:03:70:68:2e:bc:33:d1:f6:93:cb:f1:9e:b8:02:7a:
26:69:d3:2d:6f:ba:20:12:e0:ec:64:a7:14:b7:6a:b4:8f:de:
b4:c4:84:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org