Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/D4Ivep9Jce7rQeHDbvGzneWKNZc.roa
File: D4Ivep9Jce7rQeHDbvGzneWKNZc.roa (raw, json)
Hash identifier: EQYo3LlHEoEwg/iJ14on9lEIcxScrw8F9o/a7G8iAyk=
Subject key identifier: 0F:82:2F:7A:9F:49:71:EE:EB:41:E1:C3:6E:F1:B3:9D:E5:8A:35:97
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 020F
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/D4Ivep9Jce7rQeHDbvGzneWKNZc.roa
Signing time: Wed 29 Sep 2021 02:53:38 +0000
ROA not before: Wed 29 Sep 2021 02:53:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 141173
IP address blocks: 103.156.184.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 527 (0x20f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 29 02:53:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0F822F7A9F4971EEEB41E1C36EF1B39DE58A3597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:43:60:8c:86:84:13:33:51:5d:12:c1:0f:6a:
c4:b2:0e:9f:2a:77:8c:e2:1e:bb:a7:c2:f8:57:77:
e0:3c:b7:3e:7a:17:c7:d6:87:84:b5:ca:4c:2d:bc:
24:82:88:d9:cb:f9:fb:1e:95:93:c3:14:56:f4:9e:
1f:62:03:71:62:85:4b:00:ce:a3:9b:08:c9:cd:c7:
4e:69:d3:d0:31:d7:5e:de:e4:a7:d9:eb:e6:43:d4:
ec:de:e4:04:c5:77:03:dc:b0:58:af:82:63:72:45:
2f:fe:79:1e:4c:d3:86:a9:87:3d:bd:c5:db:77:7c:
b0:4d:b5:28:89:0a:84:ff:60:03:f3:93:42:1d:28:
89:e6:ae:d5:c8:3f:57:37:8e:16:f6:e4:89:fa:15:
bc:60:76:69:7e:bb:c6:ee:80:e5:79:3b:45:fc:00:
7c:e3:d1:58:01:a4:67:3a:ff:93:98:19:21:3b:da:
fc:37:9c:06:4b:a9:a7:55:3e:04:01:aa:bb:19:4a:
1c:41:f3:83:0a:9b:77:69:3b:24:57:ab:e2:b2:79:
7b:0f:ad:1e:44:49:ef:8d:27:bb:67:01:5a:66:b1:
cf:1e:b3:38:cc:84:3d:f4:c3:34:f8:2e:02:a3:d6:
e9:da:a9:7b:bf:81:44:c9:6d:9f:ca:b7:52:b8:83:
4e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:82:2F:7A:9F:49:71:EE:EB:41:E1:C3:6E:F1:B3:9D:E5:8A:35:97
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/D4Ivep9Jce7rQeHDbvGzneWKNZc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:10:ad:a6:44:6f:d1:72:74:78:59:65:dc:c4:61:49:86:f5:
ad:72:f8:0a:0a:9b:09:24:a9:f0:77:25:ec:15:74:9a:e5:b5:
0a:24:64:e2:a9:bb:ef:0d:48:7f:e0:c9:ea:95:e2:20:b9:b3:
eb:33:ad:84:00:5d:cd:c7:ba:48:29:80:47:f9:5f:c0:bf:d6:
5a:ac:cc:a2:0c:06:f9:41:67:ab:b7:5e:90:ca:44:8b:04:33:
cf:2d:93:8d:3f:4e:b6:bb:36:2d:9c:c5:45:23:d9:72:60:7c:
77:62:f5:58:2c:55:68:32:48:83:3b:8f:7f:5b:94:73:bf:93:
43:01:bb:c7:e6:ca:37:a0:59:d7:a0:f8:85:e3:7a:fd:97:0d:
c1:61:f1:d7:39:45:ec:cd:93:df:9f:65:95:74:48:af:cf:57:
0a:37:34:7e:c4:ff:89:82:cd:57:07:7d:68:ae:e8:4c:3b:6d:
8d:43:b7:28:1e:f4:e5:28:45:65:23:d0:35:b3:ff:fd:d0:9c:
6c:1e:73:69:35:5b:34:8a:06:10:f3:09:b1:63:70:ba:20:f9:
d0:ea:27:53:e5:5f:4b:ae:f6:18:1e:72:b2:de:75:1b:52:85:
bb:de:c7:77:ab:ed:9b:ea:05:e6:6c:12:01:76:2c:9c:ad:85:
f2:41:34:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org