Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/5aFHiNT0d-B6kPC1SPYPYbA7QXg.roa
File: 5aFHiNT0d-B6kPC1SPYPYbA7QXg.roa (raw, json)
Hash identifier: wr8wBJVcPnw6gC8Xy4/IDtPR9pFQbm0+wxLIHGrfK+c=
Subject key identifier: E5:A1:47:88:D4:F4:77:E0:7A:90:F0:B5:48:F6:0F:61:B0:3B:41:78
Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3
Certificate serial: 0B70
Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/5aFHiNT0d-B6kPC1SPYPYbA7QXg.roa
Signing time: Wed 29 Sep 2021 02:53:22 +0000
ROA not before: Wed 29 Sep 2021 02:53:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.135.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2928 (0xb70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3
Validity
Not Before: Sep 29 02:53:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E5A14788D4F477E07A90F0B548F60F61B03B4178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c4:47:eb:58:61:2d:c9:0d:b9:88:f3:3a:9e:
1f:f8:57:02:50:f2:9a:1d:31:75:a7:78:7a:65:6a:
3b:ea:be:43:b4:73:74:67:c6:ed:99:b9:4c:53:fb:
45:0b:31:6d:75:e8:f1:70:70:84:89:86:81:c1:4e:
2e:f6:d2:7a:97:7e:83:46:db:25:87:4a:0e:f9:06:
c3:36:29:de:cf:8a:a5:7f:8e:ac:20:59:83:ad:89:
dc:ea:e0:d6:34:63:af:45:1c:ad:78:1d:fe:64:62:
21:57:be:ab:ca:69:42:da:3b:9f:4b:32:84:cf:d2:
11:3e:e3:41:75:c6:1a:ae:e2:a4:ec:52:d9:b6:c0:
69:93:01:f0:01:ef:dc:be:82:33:0f:97:3f:84:0a:
25:f3:59:92:b4:f4:55:38:6b:8e:fd:58:b8:5f:ff:
f2:99:07:d7:8d:4b:23:a7:ae:0e:26:f4:bc:6a:91:
4c:63:78:57:5f:d1:38:19:dd:46:86:96:09:cd:97:
f3:35:90:28:c8:5b:52:44:f6:fd:ff:fb:3c:30:ae:
87:b4:17:37:74:33:1d:8b:c1:89:3d:3b:d4:19:21:
39:88:4b:f2:ee:03:2d:69:60:c5:61:dd:8a:45:43:
08:8b:7e:e7:8f:21:da:20:43:5b:2a:69:de:63:b6:
ba:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A1:47:88:D4:F4:77:E0:7A:90:F0:B5:48:F6:0F:61:B0:3B:41:78
X509v3 Authority Key Identifier:
keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/5aFHiNT0d-B6kPC1SPYPYbA7QXg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.119.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:57:58:a7:c9:dc:06:a8:c9:59:f6:e1:e1:22:7e:0a:1d:99:
21:33:eb:df:10:f3:df:40:c8:52:7d:22:a6:d6:d3:6d:10:79:
06:91:96:42:e4:b7:8a:89:58:37:2d:8c:0e:59:28:a4:54:97:
a8:fc:bb:5d:c3:9a:90:9d:fc:28:a6:6f:3c:40:97:ea:6f:75:
3c:cd:af:f3:6e:27:55:ef:e3:b8:aa:c2:dd:d1:c5:1f:7d:20:
71:6d:ea:fd:f2:d2:61:de:5b:69:6e:9b:54:42:a7:a0:a0:47:
0a:07:1d:c8:f2:b3:d8:bd:aa:cd:41:66:2f:d1:78:c4:89:99:
e6:ed:73:71:bd:1b:7d:64:31:8a:38:b8:94:cb:e8:2d:b2:e5:
2b:2e:c2:13:c5:f9:0d:7f:d2:44:f5:22:8a:99:35:61:32:de:
19:e2:2e:e7:2a:8f:17:6c:ad:14:ac:0b:52:73:8f:d2:ab:e0:
f4:ed:c7:f8:2c:4a:49:8a:51:46:fc:4c:09:c8:d7:55:96:67:
b8:47:60:d4:a3:70:76:6f:36:8a:aa:59:e6:83:d2:5e:4e:9e:
2a:5b:8b:a5:19:41:0c:7e:f2:9e:8b:f6:bc:b6:d2:32:4c:28:
7f:17:e9:5b:a4:bf:21:74:8f:19:84:12:b4:7a:47:11:5e:a8:
e6:e6:a7:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org