Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/jeoIHq_Y8p7ib_oNBKRN6rjLXo4.roa
File: jeoIHq_Y8p7ib_oNBKRN6rjLXo4.roa (raw, json)
Hash identifier: OHrj0uCxh2KW40FWWCTnEwQY7Qw7PlKx9tWxdsq3z18=
Subject key identifier: 8D:EA:08:1E:AF:D8:F2:9E:E2:6F:FA:0D:04:A4:4D:EA:B8:CB:5E:8E
Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3
Certificate serial: 0D51
Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/jeoIHq_Y8p7ib_oNBKRN6rjLXo4.roa
Signing time: Fri 01 Sep 2023 08:06:08 +0000
ROA not before: Fri 01 Sep 2023 08:06:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131618
IP address blocks: 103.135.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3409 (0xd51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3
Validity
Not Before: Sep 1 08:06:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8DEA081EAFD8F29EE26FFA0D04A44DEAB8CB5E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4c:9b:eb:36:14:80:67:04:c4:ea:cd:92:56:
8c:d5:a5:35:13:19:b7:3d:44:e5:01:ca:8a:a6:ce:
94:94:62:dd:9b:47:80:bb:c2:ed:70:89:11:41:53:
1b:2c:2d:68:4a:56:bf:bc:cb:22:bd:ab:f6:12:c3:
2d:1c:5b:83:56:ed:05:76:67:be:32:09:af:47:7b:
1a:e7:74:8c:55:d2:1c:b5:8b:98:4e:1b:61:c4:db:
ec:2f:c2:eb:05:35:29:0f:60:40:9e:aa:5d:25:af:
49:5d:b7:ab:bb:56:20:ae:98:9d:3f:90:82:06:e8:
70:98:54:1c:80:88:08:2e:f6:3e:5e:a2:7d:3b:de:
0f:c7:15:c3:cb:69:d1:ab:8b:0a:1f:62:6f:5d:e0:
04:5a:1f:93:c5:c6:5b:9e:3d:d6:c0:aa:d4:5b:12:
fb:12:41:88:eb:8c:62:7f:88:8d:8d:25:85:c3:f8:
d8:f4:c0:c5:d1:44:11:6f:ca:ca:83:01:d4:ee:4b:
eb:58:41:51:dd:44:68:27:b6:78:39:44:d8:81:1b:
d3:ad:c6:07:88:79:8c:db:8b:82:87:2c:6e:d7:77:
fa:92:70:4c:36:d4:9e:b5:bb:91:92:62:64:3e:ee:
cf:a5:41:a2:35:1a:e3:1c:1c:50:7b:ce:ee:a6:3d:
19:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EA:08:1E:AF:D8:F2:9E:E2:6F:FA:0D:04:A4:4D:EA:B8:CB:5E:8E
X509v3 Authority Key Identifier:
keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/jeoIHq_Y8p7ib_oNBKRN6rjLXo4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.118.0/24
Signature Algorithm: sha256WithRSAEncryption
56:de:07:0f:b7:7b:fe:5c:3e:35:e0:7e:df:1c:b3:85:22:0b:
c1:e9:36:49:07:16:81:ab:11:eb:ee:5d:e2:aa:ee:4e:92:1a:
fc:a8:a5:5e:d0:c9:24:74:d5:b5:1e:0b:c2:9e:c4:ae:58:2e:
93:07:b6:7f:4c:33:1a:51:37:cc:60:4b:4e:bf:7b:6a:00:3d:
f2:56:25:76:0b:f5:2d:38:48:8d:6b:39:63:18:6b:13:6b:f2:
72:02:d3:48:43:d1:81:95:4b:66:3e:ce:84:b5:d5:d1:be:58:
f8:d1:d7:91:79:9c:b9:48:33:9f:c0:b1:1d:70:3d:a3:6e:00:
3f:b8:e8:45:ad:ed:cd:77:8a:41:d3:8f:35:f2:33:15:13:08:
47:30:26:dc:d7:87:29:d3:06:d7:e6:23:54:f9:05:a5:b1:0a:
65:8f:bb:60:88:2b:b7:db:8e:89:ba:be:90:68:49:55:91:d4:
f2:e0:e2:31:4f:3d:93:ae:fb:98:d3:5c:b9:6b:60:40:cd:dc:
88:2f:30:65:e1:2d:db:cc:f0:4d:79:1a:fc:9e:da:e7:68:28:
8e:6f:e1:57:cd:8b:7b:6e:f8:f2:95:a6:59:28:bc:b3:3a:c7:
cc:b0:87:1d:3b:d5:d3:cb:83:f4:2a:a9:59:19:5e:f5:50:ee:
e9:82:10:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:22 2025 by rpki-client