Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/2-nuZar9hbNFgK3smW7zocoYJVA.roa
File: 2-nuZar9hbNFgK3smW7zocoYJVA.roa (raw, json)
Hash identifier: fmi7969lNGPUxT3yZ1J24DpzsAEdyNt8ZT27qXLg2lc=
Subject key identifier: DB:E9:EE:65:AA:FD:85:B3:45:80:AD:EC:99:6E:F3:A1:CA:18:25:50
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 02A8
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/2-nuZar9hbNFgK3smW7zocoYJVA.roa
Signing time: Tue 01 Mar 2022 22:14:44 +0000
ROA not before: Tue 01 Mar 2022 22:14:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7480
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680 (0x2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Mar 1 22:14:44 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DBE9EE65AAFD85B34580ADEC996EF3A1CA182550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:29:c3:aa:74:17:43:c1:25:40:45:1e:24:
94:45:b2:f8:11:0b:80:5a:18:7a:70:82:ab:8f:6c:
48:5b:f4:fd:e5:d1:39:10:30:1a:29:7c:3c:4a:a2:
bd:13:48:59:68:30:3b:ff:d2:e3:d5:9f:2d:25:fd:
60:da:ba:8c:03:3d:62:15:a5:6a:bd:06:7c:dd:ca:
ed:23:8d:11:99:29:2c:6a:15:2f:2c:96:d8:b2:0c:
58:be:f8:11:67:16:fd:41:97:c9:85:87:11:99:8c:
cd:53:6e:7f:e0:c2:3c:e1:aa:a2:72:c2:93:25:ed:
26:28:d5:2a:04:2d:b8:4e:98:f5:fc:f4:e8:1c:fd:
ea:ab:2a:1b:80:f1:40:32:f8:f8:95:fd:9d:9e:a5:
4b:8b:11:dd:aa:8e:ba:b5:15:f5:39:c1:6e:b7:09:
94:88:2e:af:5b:6a:87:e4:96:9d:6e:8c:a2:8c:6c:
d3:18:99:99:e8:31:96:e1:e7:0e:e0:ae:ff:95:a5:
7b:32:73:21:e6:7c:9b:76:df:b2:d5:31:aa:7c:70:
ba:e7:b9:3a:4e:56:35:7e:fa:15:29:34:44:d0:bd:
09:ad:e0:a5:64:ed:e6:1a:29:b7:54:67:69:04:c4:
52:11:15:80:e0:13:e9:f1:ae:ae:1f:98:a5:fd:04:
4a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E9:EE:65:AA:FD:85:B3:45:80:AD:EC:99:6E:F3:A1:CA:18:25:50
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/2-nuZar9hbNFgK3smW7zocoYJVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:5e:1a:27:d2:99:39:71:6c:26:e5:4e:49:28:a5:76:25:8b:
00:5f:65:a9:c5:b2:30:c8:3a:aa:4f:ab:76:38:4d:de:8d:0c:
05:ad:9f:a0:b3:75:c9:92:01:a2:a0:33:38:aa:c5:fb:5b:44:
7f:69:43:6e:ee:ac:3e:e0:ee:96:90:bf:6b:68:f9:ef:c1:ed:
d9:b2:06:bf:cf:fb:2b:71:b1:dd:9e:fe:fe:7d:43:4d:85:8a:
a4:8f:9f:09:9c:40:3f:11:b4:48:1d:d8:71:7c:11:dc:82:40:
fb:6b:95:56:eb:5f:32:fb:02:f0:3d:30:da:20:3f:a8:73:08:
f5:ae:ce:ed:cf:e9:45:29:2d:eb:ca:8b:1e:e3:6b:3a:2b:38:
ab:54:9d:26:a9:f0:49:df:cd:58:28:06:a5:5e:e6:1d:37:f7:
9c:e4:3e:1b:a8:3c:74:bd:30:39:4d:2a:f8:2b:b4:5a:d1:86:
75:ff:21:04:5d:12:87:86:f2:19:86:43:92:d1:ef:4c:c3:cc:
d4:ca:4b:28:d8:34:07:8b:4a:35:6a:70:b8:4d:cd:2b:b6:50:
78:76:90:17:1b:bc:da:81:2a:01:4f:ab:83:13:54:02:27:13:
a7:7c:ea:1d:6e:5f:01:65:91:25:88:85:50:b8:01:63:7e:64:
61:60:1a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org