Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/J4vu3mFJo1ev0PaQvsNjmyaPqzA.roa
File: J4vu3mFJo1ev0PaQvsNjmyaPqzA.roa (raw, json)
Hash identifier: C/XSMm9T9RpAMvdpZ/NtGK8kOC7RgmrUqPSVUcFjk+E=
Subject key identifier: 27:8B:EE:DE:61:49:A3:57:AF:D0:F6:90:BE:C3:63:9B:26:8F:AB:30
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 02D2
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/J4vu3mFJo1ev0PaQvsNjmyaPqzA.roa
Signing time: Wed 27 Apr 2022 18:02:22 +0000
ROA not before: Wed 27 Apr 2022 18:02:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7480
IP address blocks: 103.156.184.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722 (0x2d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Apr 27 18:02:22 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=278BEEDE6149A357AFD0F690BEC3639B268FAB30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:06:bb:21:2c:f3:78:e3:dc:c2:b2:82:e1:0d:
b6:3b:d4:ac:1c:da:bc:52:f4:d1:04:09:95:67:7e:
e1:b3:61:1e:3b:bd:9b:86:1c:b9:af:4d:ed:76:67:
64:d5:e0:19:0e:08:41:7b:30:7d:db:5c:f4:5c:44:
3a:d2:88:14:2f:70:5d:e6:88:d5:e5:d6:02:48:27:
2b:6f:ab:30:79:58:63:b8:d1:31:3c:c6:b9:ce:77:
11:6d:80:e8:ea:6c:3c:da:0a:56:0c:0a:d4:98:a9:
1e:64:5d:0d:20:7b:d7:79:92:74:f2:e9:ed:71:1a:
18:f4:05:cd:af:c1:b1:16:33:e9:99:f0:1f:2b:ea:
f3:c8:7e:6d:8b:01:9a:50:5b:b1:dd:80:54:8e:ff:
51:2c:38:ba:a5:93:29:fc:41:6e:4f:61:8a:60:2d:
d8:ca:41:bd:9e:6c:fe:6f:67:f1:c2:4f:d2:04:50:
a2:43:14:cb:9c:c1:6d:33:bd:6d:af:12:33:e9:c7:
3c:4a:f8:ad:0b:58:ad:75:4d:ed:fd:aa:da:34:40:
ec:ba:62:35:a1:72:4a:25:a4:9f:82:ea:a0:bd:dc:
fa:b8:e1:80:63:0d:4d:ee:93:fa:65:3f:74:00:b9:
26:ab:6a:e7:af:49:83:19:a4:88:0b:b1:01:1c:08:
59:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8B:EE:DE:61:49:A3:57:AF:D0:F6:90:BE:C3:63:9B:26:8F:AB:30
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/J4vu3mFJo1ev0PaQvsNjmyaPqzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:b8:03:38:71:39:35:c7:af:97:c0:ee:85:8f:9e:9b:8a:f5:
20:32:82:d7:46:9a:6f:61:8f:27:98:c7:65:91:db:0d:be:20:
37:6f:59:c8:3a:9d:83:43:57:28:43:53:0f:38:cd:0e:1a:25:
c1:0d:54:20:59:a3:18:da:a0:dc:5e:55:0a:bd:26:12:97:f3:
14:90:87:d1:c8:5f:6f:ff:67:a5:e5:05:06:74:e3:67:7d:73:
20:4c:7a:56:56:59:83:6b:c6:f4:8a:26:ba:30:0f:a6:d3:bf:
ee:1a:41:5f:ff:76:d3:9a:0c:67:e0:4a:31:08:c0:8e:bd:67:
da:32:3c:44:d3:27:4a:15:be:d2:65:2d:c4:31:24:2f:88:1a:
48:93:be:16:c2:f7:f7:e1:01:a9:2b:e2:53:75:27:af:ef:31:
7e:93:69:cd:2b:0d:47:98:1b:81:77:b0:d6:d3:17:91:62:b5:
6f:ad:fe:15:9b:b6:73:2e:ef:67:6b:32:1b:98:b2:3b:fb:66:
76:ce:be:93:43:2c:c0:74:50:e9:46:63:b0:6a:e4:20:28:b2:
af:e7:c9:50:12:11:52:5f:f4:c5:cf:4f:7a:49:9e:f8:44:9a:
72:96:aa:e2:8c:ab:d2:c9:e3:0e:e4:f0:88:3a:aa:12:05:33:
db:8f:05:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org