Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/xifYqfZ_9CagWt1SgPGipmp0NxI.roa
File: xifYqfZ_9CagWt1SgPGipmp0NxI.roa (raw, json)
Hash identifier: Z7BLVOxlaJFxr0pFYnBRDtD5tE2372zLjzjkEPa/7hs=
Subject key identifier: C6:27:D8:A9:F6:7F:F4:26:A0:5A:DD:52:80:F1:A2:A6:6A:74:37:12
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0336
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/xifYqfZ_9CagWt1SgPGipmp0NxI.roa
Signing time: Thu 15 Sep 2022 02:34:45 +0000
ROA not before: Thu 15 Sep 2022 02:34:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7480
IP address blocks: 103.156.184.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822 (0x336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 15 02:34:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C627D8A9F67FF426A05ADD5280F1A2A66A743712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dd:96:18:2c:ec:6f:0e:89:0a:b2:f0:bc:36:
50:33:9f:79:b3:67:7c:37:9a:2b:16:ff:82:a9:26:
87:5f:ab:e2:52:9c:56:0e:c6:66:98:62:f3:64:9c:
4c:0f:4c:57:70:53:44:84:9e:f8:96:87:c1:95:95:
e1:7a:a4:b1:f3:72:0b:3b:c9:4a:e1:1c:a5:a6:dc:
d9:46:4e:ff:cc:7f:c2:e6:ef:c5:41:3b:bc:b4:54:
8e:90:6c:cb:08:b5:a9:76:8a:f1:6c:dd:59:20:d5:
89:9e:03:34:01:34:73:18:8f:8f:92:97:e6:78:b0:
6b:e8:ce:06:18:0d:0d:60:bc:40:fe:37:de:a9:53:
df:d9:fe:5c:4f:c3:08:47:17:ba:b3:97:d2:1a:c6:
7f:25:31:73:43:a3:c3:42:63:96:5f:9e:c1:cb:ac:
22:c9:ba:8d:47:a6:48:90:0d:93:12:53:b4:ba:82:
21:13:c2:34:8c:f0:71:34:16:e0:1b:ea:39:8c:a6:
0f:85:88:98:45:99:e7:c7:12:84:3c:49:4d:0c:6c:
d0:b0:33:fa:f0:54:82:88:e4:a2:9b:c4:83:3b:ed:
fe:41:a6:e9:f7:b7:1e:ef:04:51:65:f8:c3:85:de:
7a:ba:c6:5a:7d:3f:b1:7c:25:71:fb:31:c1:31:e6:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:27:D8:A9:F6:7F:F4:26:A0:5A:DD:52:80:F1:A2:A6:6A:74:37:12
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/xifYqfZ_9CagWt1SgPGipmp0NxI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:de:37:06:d7:41:08:f9:64:ff:cc:06:ea:ea:49:27:3c:3a:
b0:60:c0:b9:0b:14:a1:c6:9e:7d:30:0f:5c:2a:15:04:c7:9b:
1c:3c:a1:4e:5e:4e:f3:0c:34:70:48:57:0c:21:14:a8:f3:84:
1b:f0:ff:7b:f8:06:50:db:72:b0:60:b0:12:78:15:fa:92:55:
58:45:bd:32:43:bd:02:21:92:56:16:89:e2:14:24:fa:6a:e7:
64:47:24:b3:28:cf:6e:7b:48:a5:6c:ac:d8:72:80:4a:6a:c9:
eb:03:f0:ab:a7:df:df:5d:b9:fb:cd:a3:13:d6:d0:81:64:b4:
68:a6:2a:b1:f3:b1:c3:fd:40:a1:9e:83:82:64:f1:9a:6f:d5:
a1:40:35:10:a3:eb:e9:0c:4b:de:96:be:f6:c3:b2:0d:43:fa:
4f:22:e3:a8:ff:59:be:82:cb:f7:6d:c4:de:4a:2c:18:03:73:
8e:f4:40:2f:dc:b9:ea:d3:b6:03:ca:6a:49:75:aa:06:38:7f:
15:b1:8b:91:a6:0d:fe:d7:da:38:56:dd:5a:50:6d:aa:a9:fd:
36:40:cb:25:6a:9a:92:70:c5:be:b9:b0:ef:5b:c2:01:4b:f0:
3b:22:32:32:a3:b0:20:95:20:97:3c:09:e9:3a:c7:95:5c:12:
65:79:9a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org