Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/Az8XlFKSOHvCU8mx2QymDebt1ns.roa
File: Az8XlFKSOHvCU8mx2QymDebt1ns.roa (raw, json)
Hash identifier: SN2njMJwxtX2lgkE2XWfesmtqSwJjRv0JZ2D5o+okro=
Subject key identifier: 03:3F:17:94:52:92:38:7B:C2:53:C9:B1:D9:0C:A6:0D:E6:ED:D6:7B
Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Certificate serial: 091A
Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/Az8XlFKSOHvCU8mx2QymDebt1ns.roa
Signing time: Wed 29 Sep 2021 02:38:26 +0000
ROA not before: Wed 29 Sep 2021 02:38:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.103.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2330 (0x91a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Validity
Not Before: Sep 29 02:38:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=033F17945292387BC253C9B1D90CA60DE6EDD67B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:28:d8:7d:0e:84:76:30:b3:fe:39:01:cb:a9:
4d:b6:e4:d3:43:f9:fb:9a:15:07:75:d5:49:83:ca:
03:4b:93:cc:8b:a1:d2:e8:81:96:67:4b:15:f9:6c:
c3:6f:77:3b:cc:a6:61:10:99:9d:64:67:3b:47:8f:
cf:37:c2:c6:27:0c:e6:ab:74:55:61:b4:37:5f:a2:
f1:31:b4:6b:af:50:b4:fd:4e:7f:10:7c:5b:97:06:
9f:f0:ca:ea:8a:f4:b0:4b:fa:69:a3:06:02:0a:e9:
95:85:0e:ec:12:cf:38:66:4f:8e:74:67:51:d7:67:
87:d9:07:25:9d:43:d6:a8:9c:b5:5d:e2:9e:3b:9c:
12:b5:0e:d5:49:1e:1f:d9:ef:38:4b:4b:91:89:81:
80:14:fe:5f:8c:93:2f:2c:1c:0f:8f:45:fa:41:09:
6a:d4:79:24:64:e6:d5:2f:33:cb:ae:bc:53:40:a5:
29:55:98:e7:40:56:16:78:a3:9c:f7:bb:18:49:5e:
ef:e5:07:b9:94:e4:f5:23:f5:3a:3c:7f:d1:b1:f3:
68:e8:e3:74:0d:8c:80:5d:07:1c:de:dc:ee:e7:da:
2a:0f:f3:0e:6d:83:ef:e2:a0:86:36:f6:7a:e7:61:
d6:44:82:28:72:cf:47:05:b3:8f:a5:73:7e:4c:32:
74:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3F:17:94:52:92:38:7B:C2:53:C9:B1:D9:0C:A6:0D:E6:ED:D6:7B
X509v3 Authority Key Identifier:
keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/Az8XlFKSOHvCU8mx2QymDebt1ns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.80.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:a3:2c:6e:4e:a5:a9:8c:bc:d6:ff:92:98:ad:99:1b:4c:af:
4f:24:33:45:12:0e:83:94:91:77:9f:03:65:4b:f2:87:70:db:
65:6f:5c:55:41:77:94:d9:19:38:83:9e:71:81:8e:2e:40:d8:
35:86:a8:40:fa:6d:bc:42:89:87:5c:31:e4:53:dd:ea:5c:9d:
ea:9a:6e:27:17:9f:8c:64:2b:9a:47:8a:a4:19:ee:a2:ba:6c:
83:ab:24:61:26:e9:a4:bd:63:43:15:1b:14:0e:d6:c5:94:03:
1a:50:06:d4:61:be:18:18:8f:a9:c0:0c:2f:24:46:df:d1:ff:
bb:6f:7b:3d:08:5c:22:4c:ea:7f:33:02:e7:c0:8f:7d:74:47:
fb:2f:32:47:9f:7a:d7:45:d2:a5:27:5e:01:bf:3b:e7:7a:34:
78:ce:10:c3:39:22:4a:4c:33:c1:1e:4e:4b:44:d0:f2:86:2a:
a1:33:0e:c9:9e:43:89:4f:fe:f9:63:55:f6:7f:d4:bb:01:f6:
ea:17:6b:5b:d9:4b:c3:c3:56:fe:13:d8:bf:0a:33:29:69:07:
f5:b1:30:13:65:e6:1b:17:df:85:73:6d:22:05:e1:d2:17:96:
2a:de:0a:bd:00:fd:8e:aa:13:d8:37:16:33:bf:49:37:d9:41:
af:28:7a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org