Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/czFc6JdtpeUzNIK8qyheFPrauJI.roa
File: czFc6JdtpeUzNIK8qyheFPrauJI.roa (raw, json)
Hash identifier: fCUnPN8PYhXsdilly9ZbTGJLFGR0kRq9QdB7oNZjVbo=
Subject key identifier: 73:31:5C:E8:97:6D:A5:E5:33:34:82:BC:AB:28:5E:14:FA:DA:B8:92
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0336
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/czFc6JdtpeUzNIK8qyheFPrauJI.roa
Signing time: Thu 15 Sep 2022 02:34:45 +0000
ROA not before: Thu 15 Sep 2022 02:34:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38136
IP address blocks: 103.156.184.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822 (0x336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 15 02:34:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=73315CE8976DA5E5333482BCAB285E14FADAB892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:6f:c5:38:d2:7d:42:f2:13:e0:29:60:28:
fe:8d:8a:88:72:78:df:37:b3:73:13:8a:c0:8c:7b:
b8:26:a7:23:54:58:da:bb:ac:52:79:e5:c1:be:0d:
65:47:cf:22:13:83:4d:75:a9:eb:89:a1:55:99:6b:
72:fb:e1:e0:bf:f5:4d:d7:eb:0e:fc:fb:ef:89:02:
01:70:82:b3:8e:1f:2e:e3:03:64:6d:19:2d:42:70:
2b:3e:1c:51:fc:bb:11:15:bf:a1:ab:31:30:48:69:
66:dd:35:8e:77:97:57:90:7f:7d:c3:ea:d4:6e:78:
50:0e:70:63:92:bc:bd:af:4c:a9:e5:29:78:6b:2d:
a9:08:de:38:5c:ad:63:c4:e3:61:a2:6f:af:87:18:
7e:59:d3:90:04:73:ec:6b:09:4b:9f:f1:f4:b0:2e:
77:3e:5e:b7:9e:24:30:86:9a:f9:73:be:1f:c4:d4:
cc:7d:5f:67:37:85:ed:50:bb:7a:ce:c9:89:32:24:
d6:6b:51:f4:50:a8:2f:7a:75:e4:74:df:30:d1:1d:
c2:83:48:61:39:0a:40:62:7c:57:ff:9e:37:17:2d:
c9:49:65:66:35:c6:76:11:af:7b:2a:28:b3:79:45:
0c:28:d8:3b:39:4a:62:f7:b0:01:3b:78:e0:99:c6:
01:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:31:5C:E8:97:6D:A5:E5:33:34:82:BC:AB:28:5E:14:FA:DA:B8:92
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/czFc6JdtpeUzNIK8qyheFPrauJI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
00:18:db:84:01:46:eb:2b:13:ec:f7:5d:e0:68:96:f4:4c:f5:
bf:10:c5:66:31:e6:d2:8b:9f:c1:63:af:a3:de:84:ed:4b:e2:
38:a5:b5:81:11:97:20:24:82:ed:5d:05:6d:f9:ad:9c:3d:26:
3e:57:8a:37:49:4e:b6:4f:ef:b5:69:32:6b:2d:25:73:63:c8:
74:84:fe:6f:83:ba:e7:14:e3:8a:81:29:24:fb:6d:32:54:41:
66:fe:77:b9:5b:3e:95:4c:32:29:dd:ff:08:d5:30:a3:c1:a6:
69:cd:3c:23:db:ec:1b:ac:3b:ea:ab:83:20:37:3d:3f:5b:3f:
6d:77:b6:35:2a:6d:eb:20:ab:af:db:c5:98:f3:18:32:69:70:
7d:49:d5:a8:0e:e3:6b:ed:d6:2d:77:ea:78:64:12:04:d5:b4:
17:19:67:60:ea:27:b4:b2:8c:28:5d:7a:b9:80:8f:19:9d:fa:
92:73:e6:1d:dd:73:85:15:1b:10:ac:6f:86:c7:a0:41:90:cd:
90:84:eb:1e:a4:90:85:78:2a:c3:2f:96:67:5e:83:98:6e:9b:
36:c5:1c:ef:0f:7b:4f:77:ce:44:6e:df:11:ff:c9:45:e1:d7:
43:64:7a:cb:63:fa:3b:56:d8:10:de:f3:e2:3a:fd:d9:30:8d:
ed:8b:1b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org