Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/Ja0KQV0BDTUUvHiiL1SB1fTDxMU.roa
File: Ja0KQV0BDTUUvHiiL1SB1fTDxMU.roa (raw, json)
Hash identifier: ZQhy5gipzOQNqUtqFh/b3b+20V9g5rEPb+CfkJny3g8=
Subject key identifier: 25:AD:0A:41:5D:01:0D:35:14:BC:78:A2:2F:54:81:D5:F4:C3:C4:C5
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0A16
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/Ja0KQV0BDTUUvHiiL1SB1fTDxMU.roa
Signing time: Tue 23 Aug 2022 05:59:07 +0000
ROA not before: Tue 23 Aug 2022 05:59:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 103.122.18.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2582 (0xa16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Aug 23 05:59:07 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=25AD0A415D010D3514BC78A22F5481D5F4C3C4C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e4:b7:b3:70:1a:c5:cd:44:38:12:fc:84:c7:
86:7c:5a:81:03:86:ca:55:92:6d:9a:59:f4:94:88:
b1:c6:6a:06:15:bd:c7:a3:74:97:ac:e4:b0:ba:ff:
a4:0e:1e:9f:37:67:3e:2a:a8:dc:99:0d:f9:ee:fd:
7e:1c:38:6d:f4:68:60:e8:2c:62:4a:30:ec:f1:3a:
2d:03:20:1e:37:d9:ec:10:88:ed:a0:07:f0:c1:a8:
5d:44:55:1a:a0:f1:d1:57:7e:a5:de:7d:70:d9:0d:
d7:e6:a3:3d:da:53:e5:9f:f7:10:ff:3e:4d:a0:98:
9f:5d:34:b3:19:4a:bf:ed:9e:32:1f:20:cb:0b:d8:
35:4f:44:19:0a:6f:4e:71:df:91:e8:a3:d7:8a:e6:
1c:11:0a:96:4d:b8:7d:09:9a:b7:fa:a1:ba:6c:ca:
f7:45:82:34:38:4c:c5:75:e7:ed:25:66:93:c7:e1:
82:1e:be:1c:d0:38:6e:4c:a2:ab:81:90:d3:d9:4e:
64:92:85:83:b8:4b:9a:38:7d:9f:0b:48:31:54:7f:
26:69:85:c0:b3:c7:af:d6:18:c1:2b:36:fd:f2:f3:
85:6e:f0:af:d7:a4:3c:46:5d:cf:be:92:23:1c:62:
f0:ed:d8:8f:11:98:dc:b0:59:b4:95:81:13:9e:2c:
d5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AD:0A:41:5D:01:0D:35:14:BC:78:A2:2F:54:81:D5:F4:C3:C4:C5
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/Ja0KQV0BDTUUvHiiL1SB1fTDxMU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.18.0/23
Signature Algorithm: sha256WithRSAEncryption
28:33:e8:d1:be:c9:23:22:02:70:d6:7c:bb:23:72:87:a4:24:
d9:c0:85:9b:15:32:c0:cd:5f:98:0a:71:6f:ad:87:ba:84:2a:
97:aa:be:67:29:6a:b5:72:20:05:71:33:b8:41:f5:d2:df:66:
db:73:98:be:c6:77:9b:a4:21:e8:fa:e5:da:df:41:a5:15:07:
57:fc:38:9d:98:fe:e8:6a:50:91:b1:62:fe:39:12:cf:14:d4:
63:5d:fc:17:70:70:ca:2b:31:d2:6b:55:21:65:f0:8c:4c:ed:
78:9b:24:d1:15:fe:19:67:8c:1d:52:c1:ef:f1:87:29:33:40:
55:da:5d:f2:cd:a7:45:ab:46:52:83:c4:72:e3:1f:9f:c1:60:
6a:85:dd:eb:ca:b7:03:36:00:28:0c:10:5c:36:27:25:9b:fb:
3f:26:c9:b6:0c:e0:be:0c:15:08:96:8a:58:22:a3:2d:da:81:
55:d0:3f:58:6b:1b:49:68:93:7e:f5:b0:0a:26:7d:f7:6f:b1:
5b:92:31:f6:ea:92:62:c9:a2:eb:0b:48:16:6b:af:89:92:32:
b6:fd:af:e0:ea:05:5e:84:be:46:1c:d4:88:b5:25:58:c6:d3:
a4:b5:41:dc:9f:7a:02:62:6b:eb:4e:9c:5d:bc:a5:70:6b:f1:
93:3c:be:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org