Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/oA_AJ7iS1rkpUAldDMgEXBMSHLY.roa
File: oA_AJ7iS1rkpUAldDMgEXBMSHLY.roa (raw, json)
Hash identifier: zs5WSX0c45HTrtUYASopOD4Idr91nFR9caSRZid8y1k=
Subject key identifier: A0:0F:C0:27:B8:92:D6:B9:29:50:09:5D:0C:C8:04:5C:13:12:1C:B6
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 015B
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/oA_AJ7iS1rkpUAldDMgEXBMSHLY.roa
Signing time: Sun 07 Feb 2021 05:58:41 +0000
ROA not before: Sun 07 Feb 2021 05:58:41 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 60614
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347 (0x15b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Feb 7 05:58:41 2021 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=A00FC027B892D6B92950095D0CC8045C13121CB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c3:f6:34:5e:e5:7c:96:ce:a9:d6:63:ce:cf:
a2:ed:07:f2:d3:7e:c8:76:ab:e2:c2:44:13:23:e2:
ce:b6:59:2d:09:fe:45:0c:b9:3f:de:3f:02:40:d6:
ce:e0:e3:d4:cf:8b:b0:5e:4d:6e:1c:f9:f8:7b:ab:
3d:65:de:f1:4b:25:77:73:57:e9:97:50:5d:00:39:
a4:ee:b8:79:1a:5a:f0:50:97:cb:92:25:16:21:c7:
01:0b:25:39:28:27:0e:b5:09:69:3e:ca:c1:20:75:
d6:93:71:46:5c:d4:de:3f:c0:f8:8c:f8:be:2e:1d:
0b:05:d7:00:01:80:ae:28:b9:1b:93:b0:6a:81:23:
ac:da:28:5c:28:f5:6e:0b:34:7b:f6:a1:ac:30:b8:
eb:6b:1a:07:1c:43:55:ef:3d:28:79:80:81:0a:93:
03:71:0a:d6:40:c2:67:06:b0:c9:74:55:50:c6:23:
6a:af:72:5b:e9:64:9e:ac:b6:97:51:99:c0:d8:4c:
0c:84:67:b3:fe:0d:2b:c4:9d:4f:1a:d6:5c:ef:60:
b7:a6:4d:f3:c3:61:d1:a1:38:bf:35:c9:27:74:1b:
a8:c7:74:2c:ae:3a:1c:b8:e3:0c:41:78:c8:b3:33:
b2:1b:96:ad:57:18:6a:3b:ef:95:77:13:4c:94:ec:
8e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0F:C0:27:B8:92:D6:B9:29:50:09:5D:0C:C8:04:5C:13:12:1C:B6
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/oA_AJ7iS1rkpUAldDMgEXBMSHLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
29:07:3b:bb:27:df:21:4c:c1:bf:ce:a7:df:83:dc:38:8b:1b:
28:fb:ba:a7:d8:99:1f:1e:72:a7:7e:0b:61:8d:b9:3e:ad:4b:
08:f2:25:c0:e5:c2:29:1f:cf:79:a3:e2:fc:e6:f5:78:5c:6e:
de:4f:e5:db:df:cf:54:91:fc:5f:36:99:33:d5:0e:7c:c6:cc:
bd:24:e5:71:82:f4:64:0a:3e:57:68:f4:2f:33:77:5c:00:47:
58:c4:c5:b4:ce:7c:1f:08:c7:41:e9:00:72:33:5d:d8:0f:3a:
10:52:f4:bf:12:be:32:fe:19:5b:1c:51:d6:3d:15:88:03:66:
9c:90:c1:07:77:59:c1:f9:22:a9:83:e8:c5:7c:9c:73:d5:a7:
4b:36:20:a7:c1:9e:09:4e:46:63:c4:61:d7:6e:c0:b8:9a:40:
f3:7a:08:f0:e7:86:27:c1:0b:36:0d:da:a4:e5:97:a4:ae:2c:
a8:28:13:2c:9c:74:00:20:e0:3d:5c:d1:75:80:5f:e7:15:2d:
fd:0f:2a:ce:1d:50:f3:45:f1:77:86:e9:1b:07:58:4f:d7:be:
14:50:e3:80:6a:9d:0f:ea:de:96:f2:49:c9:1b:9e:85:a8:1d:
14:bb:78:d1:67:3f:04:dd:36:22:83:fd:63:78:dd:56:5b:9a:
8b:da:53:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org