Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/XiKigk7QiCHYr0-GoXjbCf2Eyoo.roa
File: XiKigk7QiCHYr0-GoXjbCf2Eyoo.roa (raw, json)
Hash identifier: kjuX1O8zWFoN9xpBDs9FOJXnq2Wv0XEhoOvnCrAQWHI=
Subject key identifier: 5E:22:A2:82:4E:D0:88:21:D8:AF:4F:86:A1:78:DB:09:FD:84:CA:8A
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0218
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/XiKigk7QiCHYr0-GoXjbCf2Eyoo.roa
Signing time: Wed 29 Sep 2021 02:53:41 +0000
ROA not before: Wed 29 Sep 2021 02:53:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 60614
IP address blocks: 103.156.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 536 (0x218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 29 02:53:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5E22A2824ED08821D8AF4F86A178DB09FD84CA8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:2a:b7:b0:5d:69:ea:91:b2:52:0c:43:65:
3e:3a:f4:c0:51:d8:23:83:0c:e5:27:89:2c:91:66:
12:66:14:37:43:a3:a1:55:c6:fa:b7:ab:9e:4b:61:
b9:9b:af:17:ac:43:50:35:aa:f6:53:d5:60:12:80:
ef:ff:ee:43:dc:21:17:a9:d2:af:20:94:05:a5:3b:
f3:ff:e6:ad:e0:b0:7a:d8:ee:f3:ac:90:dc:64:c4:
9c:41:95:d1:97:91:a1:42:9d:4e:19:31:41:3f:b4:
31:51:45:8c:cd:b5:f1:1e:55:88:64:b4:79:73:3f:
26:27:b9:bc:22:77:b8:a1:03:78:7a:3a:b5:31:86:
bc:7b:75:58:ea:0e:99:e9:4d:89:d0:0a:bb:49:ea:
a8:e4:c3:02:cc:ee:b8:04:92:6d:69:30:45:91:53:
50:bb:f6:09:3d:1e:bf:09:08:be:12:91:75:a2:2b:
17:be:6a:d3:17:16:20:b7:63:a9:bc:a1:52:88:4f:
cf:b5:76:47:1d:61:da:cc:a0:5d:dc:43:a7:2c:0a:
4d:49:a6:ce:9a:9b:9c:58:2b:36:46:4c:46:31:8c:
a1:16:90:14:4d:4a:0b:91:b0:58:f0:d0:4a:f3:17:
f3:ab:ab:8d:49:15:be:a9:50:2c:ee:21:6e:e8:a1:
ca:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:22:A2:82:4E:D0:88:21:D8:AF:4F:86:A1:78:DB:09:FD:84:CA:8A
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/XiKigk7QiCHYr0-GoXjbCf2Eyoo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:09:c8:bd:f3:3a:d4:0b:1d:83:3b:52:f8:83:c0:5c:08:b0:
ab:eb:f3:96:41:03:a6:a0:86:a1:bd:66:74:5f:b1:82:a5:eb:
ff:0a:55:0d:5c:c8:0d:fe:ef:c3:3a:20:63:7a:a9:4b:9d:c6:
37:63:a2:16:12:f2:3d:aa:e6:7a:c7:5a:0e:40:c2:f4:5d:35:
a1:54:03:4b:aa:8b:f4:35:4f:01:bf:a0:4e:9e:26:ad:56:cc:
f0:bc:b3:7a:53:c9:91:7e:a8:06:e3:fc:c1:c6:e4:fd:e7:6a:
28:7a:69:39:e7:5d:d9:cc:7a:84:ce:80:1f:50:ad:5e:13:e6:
91:70:fa:e6:91:71:bf:f5:45:f2:99:ce:6e:38:61:0c:97:52:
ce:e7:21:3c:a5:ed:63:e6:b8:3c:72:b3:6c:9d:d1:f7:e9:9e:
e0:7f:de:18:03:11:ec:51:d8:ec:86:36:63:b2:fb:29:a3:e3:
6b:d0:dd:2d:3b:14:ab:e0:7d:26:4e:52:25:9e:2d:ba:a0:20:
e7:e1:87:5b:54:52:ce:cf:a4:5c:20:33:37:d5:60:ae:f5:e7:
5f:da:4a:2c:f6:1f:fb:2e:42:40:16:df:3a:c6:d1:85:e4:da:
3b:e9:22:fe:4f:a0:24:17:e5:2b:ad:e0:87:51:28:ff:7e:a0:
6f:77:15:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org