Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DQWL/eAaJxoBHpNYfZbcihM2OqsRGCJo.roa
File: eAaJxoBHpNYfZbcihM2OqsRGCJo.roa (raw, json)
Hash identifier: BEh8l90+7jftxSMC/vFBmEwINO5PL0rgzD7luAFGxj4=
Subject key identifier: 78:06:89:C6:80:47:A4:D6:1F:65:B7:22:84:CD:8E:AA:C4:46:08:9A
Certificate issuer: /CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D
Certificate serial: 062E
Authority key identifier: 7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/eAaJxoBHpNYfZbcihM2OqsRGCJo.roa
Signing time: Thu 15 Sep 2022 02:37:59 +0000
ROA not before: Thu 15 Sep 2022 02:37:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131678
IP address blocks: 103.149.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1582 (0x62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D
Validity
Not Before: Sep 15 02:37:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=780689C68047A4D61F65B72284CD8EAAC446089A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:23:b2:79:08:14:bc:37:ef:8b:99:fb:42:7d:
fc:a2:5f:d1:8b:ae:44:66:8b:7d:28:02:b5:fc:c3:
e0:e8:86:ab:20:cf:ee:82:3f:25:11:e5:77:bb:b8:
44:3e:71:33:b4:a1:41:fa:b3:d8:53:04:7c:82:ac:
c4:cb:af:fc:fd:11:96:78:8f:ea:cb:5f:b5:b8:8a:
a0:ec:fd:e0:0b:c9:58:bc:a3:07:53:58:63:11:c0:
96:90:ad:f4:9b:8f:de:3e:1a:b5:50:c7:f0:c0:c2:
c4:34:d9:f2:e5:49:40:4d:17:9f:23:d6:4c:93:25:
6a:ad:7f:d3:89:2e:9d:b4:16:7c:12:6e:e7:d0:6a:
2c:4f:65:fa:9c:26:83:19:af:33:43:32:0f:32:6f:
e0:7b:d8:1f:cc:6b:45:7d:ae:65:01:3b:00:d6:85:
9c:17:3e:f3:1c:e9:0b:12:cf:cd:c8:a1:04:4b:1c:
08:7a:5c:85:12:31:ab:c9:23:11:38:ad:fc:5e:db:
3f:46:d6:7d:04:d9:11:bd:37:f2:c8:c4:50:1f:42:
f4:50:5d:fc:03:b6:92:22:d3:e6:37:ed:16:5c:b4:
2b:8f:d5:6c:54:2a:86:21:ef:55:9d:3e:7e:3c:90:
79:82:6a:52:f9:31:ee:7c:31:06:83:49:80:8b:b2:
76:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:06:89:C6:80:47:A4:D6:1F:65:B7:22:84:CD:8E:AA:C4:46:08:9A
X509v3 Authority Key Identifier:
keyid:7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/eAaJxoBHpNYfZbcihM2OqsRGCJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.66.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2e:a9:a4:cf:ff:71:06:ea:23:cd:01:9a:91:cc:87:8b:37:
51:9f:f0:d2:9b:15:b7:95:36:fc:7e:d9:53:d3:92:79:79:c7:
9b:0f:2a:07:d3:1f:dd:cc:23:e4:b9:73:01:ea:92:a3:41:6e:
64:6a:6b:5f:f3:2f:13:33:5a:47:fa:19:09:73:ee:4e:3c:ed:
82:91:33:59:a1:c8:fb:a1:85:9b:79:81:eb:c0:ab:2a:8d:08:
a0:40:9d:29:c8:1c:96:ec:46:2d:a9:fc:1c:b4:9e:7a:3c:1a:
84:fc:60:73:4f:3a:b3:29:1c:1d:2c:a2:a7:9f:53:9c:4f:01:
81:35:bf:fd:de:44:3c:62:c8:cd:f6:4f:df:65:7a:69:b0:41:
33:35:26:15:42:23:0f:02:da:1d:63:1e:d2:87:fc:cb:6c:32:
40:57:87:09:c5:d0:fb:c7:cb:94:4f:55:45:93:e2:ce:0e:e2:
a7:2a:1d:97:0b:3b:c8:e1:61:39:ac:51:ff:37:00:51:77:68:
7e:ab:6b:b8:3d:5d:41:ac:39:dd:bb:4f:ea:d2:f7:f9:26:ea:
6b:fb:8b:89:b7:73:2d:01:98:77:68:8c:ea:fd:7d:7d:84:de:
2a:0f:97:fc:af:66:93:84:0f:3d:b3:5d:75:c8:4a:46:ef:0c:
00:6e:cb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org