Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qYVAUSiSjOC6N546Y_XXEdHBfL0.roa
File: qYVAUSiSjOC6N546Y_XXEdHBfL0.roa (raw, json)
Hash identifier: 9hCU1R6Xk4Q710IMrOx7IRvK6c2ufxbbCiQpAA8+hI8=
Subject key identifier: A9:85:40:51:28:92:8C:E0:BA:37:9E:3A:63:F5:D7:11:D1:C1:7C:BD
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 02CC
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qYVAUSiSjOC6N546Y_XXEdHBfL0.roa
Signing time: Wed 20 Apr 2022 10:08:30 +0000
ROA not before: Wed 20 Apr 2022 10:08:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 141173
IP address blocks: 103.156.184.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 716 (0x2cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Apr 20 10:08:30 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A985405128928CE0BA379E3A63F5D711D1C17CBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b2:80:0b:04:d8:6c:e7:6e:d0:91:8f:f1:e0:
0a:e6:03:08:71:34:79:83:82:3a:d2:92:54:11:71:
e4:4c:50:9f:58:4c:6d:bb:de:41:0d:4d:60:51:21:
d4:72:d1:13:68:01:49:60:11:ee:3d:0e:61:ec:7e:
e9:a0:db:59:39:ce:83:54:83:ec:04:8e:e3:5f:62:
2f:52:3b:df:a4:be:c4:38:f3:24:83:99:14:7b:c1:
23:64:a9:62:83:6f:8d:27:c9:ca:9e:f8:9f:7d:13:
92:49:4e:50:80:76:2f:9e:10:60:ea:fa:9a:f4:bd:
5e:24:cb:6f:d7:51:42:29:0d:f9:e8:14:11:4c:e4:
f0:57:bc:56:66:a5:0d:46:8a:24:9f:31:46:03:11:
f7:65:49:e6:e3:d9:5c:d5:5a:3b:08:d8:b4:ef:af:
e2:3f:33:ee:26:36:4c:e4:81:51:8e:7d:a1:01:79:
7d:88:a8:59:73:e0:2f:6f:5a:ae:4b:cb:44:ee:79:
18:04:26:b9:9a:ad:5b:eb:1e:36:3b:1b:a8:12:86:
22:62:99:43:f3:c8:c6:0d:a5:cd:2a:a1:41:91:0b:
23:cb:a4:6d:d5:2d:17:02:8d:2d:5c:84:76:94:af:
24:ba:6b:66:73:09:79:55:1a:ee:11:c3:ea:b2:11:
b9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:85:40:51:28:92:8C:E0:BA:37:9E:3A:63:F5:D7:11:D1:C1:7C:BD
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qYVAUSiSjOC6N546Y_XXEdHBfL0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/23
Signature Algorithm: sha256WithRSAEncryption
62:b7:68:5c:84:06:50:13:91:43:7a:39:6c:5d:6e:33:67:3a:
6c:3e:00:ab:f0:37:0f:59:da:2f:29:9d:39:cf:51:14:6f:3c:
6a:07:a9:44:a2:ab:97:5c:78:28:4e:7f:f4:25:88:e1:af:2f:
8a:cb:72:43:66:f7:1f:71:61:3c:f1:db:42:19:39:51:7f:2e:
e4:a2:10:b0:42:cd:a4:47:0c:e7:2d:97:cc:6f:47:d1:75:a3:
23:d6:7a:19:b0:cd:b3:f7:d2:ec:97:b1:3a:7f:55:4f:72:5a:
60:22:4b:33:30:cc:cb:7c:a3:a8:a6:9c:9b:5c:ff:65:e6:3c:
54:2f:6f:10:e4:7e:49:2b:a2:8a:f7:e1:70:72:6e:cc:e7:49:
61:dc:32:a1:94:a1:14:7e:b2:7c:75:74:e0:f1:f7:1c:20:d1:
6c:b1:31:82:c8:4f:63:e1:93:58:4b:de:ef:f6:0d:e5:8a:89:
c1:94:81:66:80:31:67:1a:2a:06:d4:75:b0:9a:65:34:0e:4b:
7f:6c:1a:4d:6d:4f:cf:95:58:d4:50:34:e1:4e:21:a2:2d:c3:
83:ee:60:7b:2c:eb:5d:41:fd:53:33:f6:1c:5e:79:e2:d7:4a:
9d:93:de:0f:1e:2c:bd:6b:0f:49:e6:b3:e2:76:dc:d6:5f:92:
15:99:78:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org