Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/bHnT-GvZp1YgXgO-d79WmMWYo30.roa
File: bHnT-GvZp1YgXgO-d79WmMWYo30.roa (raw, json)
Hash identifier: kFkncVIMI1PqPKy6/BSZyN48Ab1KL2sn/SaiBRK2xZY=
Subject key identifier: 6C:79:D3:F8:6B:D9:A7:56:20:5E:03:BE:77:BF:56:98:C5:98:A3:7D
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 011C
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/bHnT-GvZp1YgXgO-d79WmMWYo30.roa
Signing time: Sat 19 Dec 2020 07:02:47 +0000
ROA not before: Sat 19 Dec 2020 07:02:47 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 60614
IP address blocks: 103.156.184.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284 (0x11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Dec 19 07:02:47 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=6C79D3F86BD9A756205E03BE77BF5698C598A37D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:02:8f:75:38:1b:da:58:ae:97:ac:83:fd:20:
f9:49:b0:23:9f:bd:f7:8b:37:62:70:68:0c:2b:62:
a5:b9:5c:9e:ee:ed:8a:6c:2e:e1:7e:f3:d6:74:19:
ac:90:b9:d0:4b:40:73:43:74:6f:ec:a6:b1:4a:1b:
68:1f:35:9e:a2:a2:6c:12:e8:6c:3f:2e:9e:cf:7c:
db:82:b4:8e:4b:d4:6f:17:d2:16:2f:45:b9:1a:46:
18:82:c2:93:c4:4c:df:86:f6:a8:c5:4c:af:63:ee:
b5:0b:cb:a8:7a:74:88:77:87:6e:ae:ba:f6:62:2f:
a6:67:e3:f2:51:0c:d5:b9:4a:8d:27:e7:0a:b5:76:
2a:e7:d3:6a:31:5f:d0:44:42:57:13:77:40:44:61:
8a:74:a6:53:d0:23:80:b2:81:ce:65:1e:7a:ff:11:
3d:91:c8:01:4c:87:a4:03:49:f1:32:cd:09:88:ac:
48:64:c2:f5:5f:71:fb:88:f0:0b:25:6b:43:08:41:
9a:0b:e8:28:27:31:eb:f9:5a:f0:d4:78:d8:76:de:
0f:75:84:53:04:0a:12:79:9f:93:08:c6:99:f3:40:
07:63:f7:66:f7:74:8a:e0:54:8e:e0:fa:3c:ec:1c:
19:6b:49:93:9d:d6:c7:d3:b0:36:bb:fd:94:44:f3:
94:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:79:D3:F8:6B:D9:A7:56:20:5E:03:BE:77:BF:56:98:C5:98:A3:7D
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/bHnT-GvZp1YgXgO-d79WmMWYo30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:d0:83:b3:9f:13:44:8b:91:29:a8:d7:e1:b3:3a:e2:f9:4d:
83:32:17:3c:b1:b8:dc:80:eb:e0:e8:e3:50:b2:00:1b:e6:77:
ac:e1:58:4f:53:cf:ac:e5:d1:24:0e:41:92:71:8d:93:9b:24:
87:32:98:25:ec:71:33:9a:cf:f8:8c:69:f3:d6:ce:ae:87:50:
da:4f:34:95:de:ae:fd:10:c5:30:67:df:4e:78:b9:1c:34:c7:
87:5b:d6:0b:c5:2d:58:c6:08:37:0b:a7:f0:c3:08:50:6e:a4:
4d:55:f4:62:cf:6c:94:2d:b0:fd:26:55:be:2c:a7:3c:50:a0:
47:f6:86:ad:b4:b0:9c:83:26:88:ee:20:16:f0:55:4b:c6:65:
13:07:9b:47:42:98:ac:25:75:00:4d:53:8c:e8:3e:ca:59:af:
0c:8d:cf:e7:41:e1:0c:4a:26:22:70:39:2e:3c:ca:4b:76:3f:
e1:9b:e5:28:87:3c:90:3d:ca:48:ca:03:b5:7b:33:27:14:6a:
f3:44:39:93:51:43:8a:d1:c7:4a:f2:b2:77:25:f5:f3:91:8a:
e0:35:e0:ae:7e:03:2a:8f:4e:99:5a:d3:48:78:99:7a:44:7f:
89:b8:2d:75:8f:e6:5a:53:f6:b9:e4:de:a1:0f:8d:1b:91:e7:
25:0e:6f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org